Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135485.roa
File: AS135485.roa (raw, json)
Hash identifier: jHShWPB4tfCoSLqmvFu6JBZYmCnAUs9QQ6k9ghpvD/o=
Subject key identifier: 25:31:25:8A:06:F6:05:96:D8:9E:1D:CF:DE:5C:5B:BC:7F:C9:5E:C0
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 147F1C1EFCEE1B6FEFADD64C2B3FA95AC553CE1E
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135485.roa
Signing time: Thu 23 Jan 2025 04:00:00 +0000
ROA not before: Thu 23 Jan 2025 03:55:00 +0000
ROA not after: Thu 22 Jan 2026 04:00:00 +0000
asID: 135485
IP address blocks: 103.78.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:7f:1c:1e:fc:ee:1b:6f:ef:ad:d6:4c:2b:3f:a9:5a:c5:53:ce:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 23 03:55:00 2025 GMT
Not After : Jan 22 04:00:00 2026 GMT
Subject: CN=2531258A06F60596D89E1DCFDE5C5BBC7FC95EC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:56:81:dd:71:44:28:ea:7e:f1:e7:0e:f3:54:
c0:9b:01:4f:82:15:5b:25:54:bc:9d:05:b8:77:32:
16:3f:41:45:7e:59:93:09:fe:25:33:94:6a:88:1f:
66:4f:75:1b:36:61:01:fe:51:c2:88:c7:0f:74:27:
29:bd:da:c4:6d:a8:33:c8:39:69:2e:14:51:35:ab:
7d:6d:d8:74:57:8c:ad:0b:4b:ac:a0:cc:97:75:e9:
3f:10:6e:4c:d6:a4:9c:3d:a7:3f:f9:f6:0f:53:a6:
9f:f6:84:a2:47:94:37:f1:67:8a:85:c4:78:cb:1f:
70:5b:c0:38:02:bc:4f:69:76:8b:a2:95:ed:05:38:
6f:d8:72:ec:57:33:48:35:67:10:fd:77:8a:6d:0a:
94:b8:f8:38:4a:76:30:3e:8e:4e:b2:f1:04:02:26:
41:ef:d1:44:82:43:02:f2:f6:4d:cf:7f:20:f1:1d:
ad:41:bc:6d:08:a5:17:d8:fa:60:80:18:ec:cc:41:
72:f6:d9:60:45:7d:59:3b:c0:52:e2:7c:8c:8e:43:
4f:96:4e:39:93:72:35:0b:05:52:24:32:bc:3e:b3:
11:7c:9a:1a:38:9d:e1:43:a4:3a:5e:15:5d:3c:3b:
66:28:04:e6:c4:d8:ea:7b:25:4a:5b:57:da:4f:bc:
5f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:31:25:8A:06:F6:05:96:D8:9E:1D:CF:DE:5C:5B:BC:7F:C9:5E:C0
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135485.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.78.106.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:4e:40:af:56:e2:f5:b4:20:a5:d6:ef:4b:59:a5:04:31:ce:
f7:3a:68:ec:e9:19:fa:13:df:d8:2e:3e:6c:f0:7e:fb:e7:fe:
c5:71:f9:62:27:b4:e7:25:a8:39:dd:b4:d0:30:ba:0c:0a:3b:
8b:bc:b4:d8:9c:8e:71:c0:bb:98:67:be:61:26:f9:64:f3:d4:
41:f1:74:73:9b:59:59:bb:be:a5:c7:b2:92:ac:d6:54:9f:b0:
c6:09:2c:e0:fb:71:94:f1:6d:6f:e2:9d:29:ea:1c:4d:3d:f1:
84:d0:5c:0e:c4:d9:ce:5f:fe:a6:d5:db:c0:24:0a:75:7f:ca:
70:d0:3c:e3:13:52:2b:44:be:da:aa:f1:15:c4:07:d3:39:a4:
63:2d:c3:27:d4:70:62:26:f0:71:c9:9c:b6:87:d3:e8:95:b3:
15:50:e4:6a:84:60:a4:00:14:95:e8:cd:d7:fb:28:30:3a:48:
5e:41:f6:c9:06:e9:f8:aa:82:58:57:98:08:80:36:e5:3f:f3:
6c:ca:75:78:b8:50:10:c8:82:5c:5a:10:44:48:03:26:88:67:
8e:59:51:2e:89:0a:0f:20:66:56:83:45:26:3a:a4:0d:55:fd:
b9:e5:69:50:7e:37:b3:d5:6b:3f:94:5f:5b:9d:04:19:88:28:
d2:7c:aa:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:32:13 2025 by rpki-client