Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/3130332e3136342e31372e302f32342d3234203d3e203137393935.roa
File: 3130332e3136342e31372e302f32342d3234203d3e203137393935.roa (raw, json)
Hash identifier: HXG6M2lkHdM7H0q8sMHL2RuqzQnwYr9btslEMX8iQ9s=
Subject key identifier: 13:DB:39:DF:9E:83:6E:9E:F4:14:55:E6:50:53:C7:CD:35:D3:1B:06
Certificate issuer: /CN=A51BB787CE84E18D5A972818D11BBD38618D7D30
Certificate serial: 4E60495CB3B3EC38608DC40144A76D7A7962E686
Authority key identifier: A5:1B:B7:87:CE:84:E1:8D:5A:97:28:18:D1:1B:BD:38:61:8D:7D:30
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51BB787CE84E18D5A972818D11BBD38618D7D30.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/3130332e3136342e31372e302f32342d3234203d3e203137393935.roa
Signing time: Tue 25 Mar 2025 05:00:01 +0000
ROA not before: Tue 25 Mar 2025 04:55:01 +0000
ROA not after: Tue 24 Mar 2026 05:00:01 +0000
asID: 17995
IP address blocks: 103.164.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/A51BB787CE84E18D5A972818D11BBD38618D7D30.crl
rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/A51BB787CE84E18D5A972818D11BBD38618D7D30.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51BB787CE84E18D5A972818D11BBD38618D7D30.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 06:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:60:49:5c:b3:b3:ec:38:60:8d:c4:01:44:a7:6d:7a:79:62:e6:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A51BB787CE84E18D5A972818D11BBD38618D7D30
Validity
Not Before: Mar 25 04:55:01 2025 GMT
Not After : Mar 24 05:00:01 2026 GMT
Subject: CN=13DB39DF9E836E9EF41455E65053C7CD35D31B06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:17:1d:c9:d2:a0:fd:90:53:ea:e2:8f:aa:93:
7f:58:54:9b:bd:a5:f1:f1:3e:e7:ab:02:11:87:a6:
d6:43:ec:97:17:50:18:76:0e:06:5a:be:ae:e8:38:
f6:5e:fe:a0:0b:d4:17:bd:ab:f6:8d:d2:f5:86:62:
3d:b9:99:5c:b4:e2:7d:d7:46:99:89:47:43:b3:56:
28:dc:96:93:78:1b:46:e1:7a:c3:f5:6d:a4:af:5e:
15:1d:27:c5:98:e8:ba:4b:41:27:70:9e:10:79:99:
a3:cc:e1:18:fd:ea:76:80:3f:da:3e:36:29:7e:64:
4e:4d:6d:dc:66:07:38:4a:9f:90:1b:04:73:f1:a5:
9d:37:77:fc:c7:1d:56:cf:07:f9:f2:41:a0:1f:1d:
cc:56:21:49:6b:45:32:68:ef:89:de:3b:63:e0:f9:
37:eb:1a:5d:c0:59:44:b2:d7:df:03:72:d8:4e:7c:
3e:50:22:ac:30:9c:96:84:0d:ad:21:c4:52:0a:7b:
00:8c:91:48:3c:d0:28:a5:e7:b2:19:37:a9:bc:84:
00:cd:1f:7c:42:a0:ed:78:bf:b1:83:3d:b6:1b:72:
fa:c1:63:ae:fb:12:0d:da:c2:36:bc:79:4b:10:70:
5b:27:91:7e:c5:00:65:36:cb:e4:49:ad:64:10:86:
10:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:DB:39:DF:9E:83:6E:9E:F4:14:55:E6:50:53:C7:CD:35:D3:1B:06
X509v3 Authority Key Identifier:
keyid:A5:1B:B7:87:CE:84:E1:8D:5A:97:28:18:D1:1B:BD:38:61:8D:7D:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/A51BB787CE84E18D5A972818D11BBD38618D7D30.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51BB787CE84E18D5A972818D11BBD38618D7D30.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/3130332e3136342e31372e302f32342d3234203d3e203137393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.164.17.0/24
Signature Algorithm: sha256WithRSAEncryption
48:2a:dc:d6:ed:33:6a:87:e8:d1:56:3f:7d:fa:5a:c9:7d:17:
12:bc:36:10:63:6d:0e:06:56:c5:34:89:f1:19:79:0a:de:c0:
5d:ed:96:30:c7:77:0c:2a:21:f3:80:99:33:25:13:f4:cb:ed:
73:06:26:8a:3f:41:9b:6a:7c:45:58:7b:2c:ed:5f:e4:91:cb:
1f:0c:00:e5:36:62:b5:a5:99:13:71:8e:c0:68:f8:2e:40:65:
cd:4b:1f:ae:91:55:1b:ae:90:90:0b:5a:08:60:f3:01:c4:cf:
d6:f8:7c:5e:39:c8:7a:3a:e9:c8:89:5d:4b:7d:6b:39:87:8d:
26:85:11:39:8d:38:af:cc:1d:4d:84:ad:2a:9a:3d:0a:d3:38:
97:8a:8b:eb:3b:e7:37:4f:77:f0:f5:a4:3f:0a:21:ff:40:9a:
0d:cd:6e:6e:e0:c4:7f:10:f6:73:12:35:74:a2:b6:1a:67:09:
a5:55:32:53:79:ef:a1:57:64:f6:58:eb:ec:f4:5e:4f:8f:91:
4a:5a:c0:f9:49:da:f4:12:f0:8c:62:6d:a8:e8:02:98:c2:a5:
f4:71:ac:d6:e5:f3:e4:23:49:ca:b5:8b:1f:37:d7:8d:fd:7c:
8d:a1:2b:2c:74:da:57:fb:2c:c0:60:20:0b:dc:f3:96:be:45:
65:ed:f5:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:59:42 2025 by rpki-client