Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135445.roa
File: AS135445.roa (raw, json)
Hash identifier: Qv8LkHqbSKUw+SV5N8udt4MFOmcQZh+ZAhDYdc2Qle8=
Subject key identifier: C9:F6:A0:29:D4:1F:87:9A:BC:07:35:07:00:AC:A5:82:A8:E1:DE:0B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 49044E32157E4CB66AE4323476DDF51D43E05DB8
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135445.roa
Signing time: Fri 28 Mar 2025 04:00:00 +0000
ROA not before: Fri 28 Mar 2025 03:55:00 +0000
ROA not after: Fri 27 Mar 2026 04:00:00 +0000
asID: 135445
IP address blocks: 124.158.128.0/24 maxlen: 24
124.158.129.0/24 maxlen: 24
124.158.130.0/24 maxlen: 24
124.158.131.0/24 maxlen: 24
124.158.132.0/24 maxlen: 24
124.158.140.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:04:4e:32:15:7e:4c:b6:6a:e4:32:34:76:dd:f5:1d:43:e0:5d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 28 03:55:00 2025 GMT
Not After : Mar 27 04:00:00 2026 GMT
Subject: CN=C9F6A029D41F879ABC07350700ACA582A8E1DE0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e0:d5:05:ad:fc:f8:75:b4:80:3b:17:b7:58:
8c:46:fa:27:50:21:99:76:09:17:7e:73:5d:2a:9c:
03:6f:1a:79:76:8d:eb:90:af:2f:57:c7:de:81:a0:
af:68:b1:a0:c4:6d:a7:f5:59:1c:ea:d6:fc:a9:f1:
0d:c0:56:28:fb:19:24:f3:50:30:ef:7b:ed:87:8d:
29:da:57:91:f2:78:34:06:b5:49:8e:c3:22:6b:c9:
31:0c:c4:25:43:09:83:9b:dd:5c:51:60:f4:cb:6b:
b1:00:f5:08:3e:65:ab:18:28:08:15:c0:47:a5:fc:
29:16:73:30:36:29:09:8b:cc:0e:fb:56:e1:58:7b:
56:d4:53:24:e2:66:73:29:62:53:d7:fc:f3:78:5c:
27:01:1d:fa:50:2e:2b:52:92:d8:7d:5a:48:26:11:
25:6c:46:cf:0f:28:e8:1a:85:5e:2a:98:74:84:70:
4e:67:22:eb:77:5c:d6:b3:14:09:e4:65:14:a1:63:
da:b6:62:4d:a7:52:37:4f:f7:4e:d5:29:35:e4:bf:
c2:ee:59:7a:05:30:f5:e1:09:24:94:f4:42:78:d6:
51:1c:3d:7b:c7:95:bb:41:d2:a3:9c:d6:e5:7e:3f:
0d:19:3f:8a:b9:1e:45:ae:b6:07:3c:88:44:39:15:
fc:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F6:A0:29:D4:1F:87:9A:BC:07:35:07:00:AC:A5:82:A8:E1:DE:0B
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135445.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
124.158.128.0-124.158.132.255
124.158.140.0/23
Signature Algorithm: sha256WithRSAEncryption
43:a0:d5:4a:4c:de:00:da:2e:bf:7d:71:13:7a:b0:d0:07:81:
c9:1d:59:61:bf:d5:54:40:38:0e:40:7c:0d:44:43:98:f2:e4:
34:f5:c9:19:c8:e9:8b:33:34:60:e1:d4:3d:00:d7:95:90:c9:
34:58:7e:c1:f4:ce:09:be:73:26:6b:8b:79:dd:5c:1f:28:73:
0f:24:74:6f:8a:bb:c1:cc:b2:64:19:c3:22:1f:0d:f0:49:6c:
16:e1:8d:5c:59:96:93:1c:c0:0a:3e:59:26:db:ac:96:7d:c4:
dc:91:7d:23:b5:27:36:63:69:06:31:ef:1c:b0:d9:05:aa:ee:
eb:89:5d:16:b9:2c:7e:d3:49:40:07:33:43:71:e4:af:03:6a:
b4:bb:40:95:b0:59:c5:ed:91:61:3d:8e:b6:11:32:e4:76:f3:
41:0d:f6:42:f3:50:ed:0d:24:c9:71:8c:7f:e8:2b:bf:c2:12:
b9:06:0e:be:75:cf:01:3e:64:a8:a6:39:07:25:46:df:4d:c3:
86:08:4b:a4:c5:68:d1:a3:27:1d:88:7d:aa:06:ba:76:d3:9f:
48:9c:09:11:de:88:eb:62:3b:32:d8:de:a8:8b:00:71:c6:28:
23:b9:3d:50:61:4e:e8:42:1b:67:d8:62:e5:ce:40:2a:f3:ec:
a3:f1:c7:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:34 2025 by rpki-client