Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AS38482.roa
File: AS38482.roa (raw, json)
Hash identifier: sJmX4BJtBEA24zr2/KbNtfDUkvfnp1j2N9VP6NJOCTM=
Subject key identifier: A1:3B:93:E7:B1:0F:99:E0:1F:14:CD:73:4E:58:6C:62:8A:C0:13:D6
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 4C5B59B7CDD3A640F4C4E27C94EAA712F713EB97
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AS38482.roa
Signing time: Wed 06 Mar 2024 09:17:08 +0000
ROA not before: Wed 06 Mar 2024 09:12:08 +0000
ROA not after: Wed 05 Mar 2025 09:17:08 +0000
asID: 38482
IP address blocks: 112.78.135.0/24 maxlen: 24
112.78.136.0/24 maxlen: 24
112.78.137.0/24 maxlen: 24
112.78.139.0/24 maxlen: 24
112.78.141.0/24 maxlen: 24
112.78.144.0/24 maxlen: 24
112.78.146.0/24 maxlen: 24
112.78.149.0/24 maxlen: 24
112.78.152.0/24 maxlen: 24
112.78.170.0/24 maxlen: 24
112.78.176.0/24 maxlen: 24
112.78.186.0/24 maxlen: 24
117.102.65.0/24 maxlen: 24
117.102.70.0/24 maxlen: 24
117.102.73.0/24 maxlen: 24
117.102.79.0/24 maxlen: 24
117.102.80.0/24 maxlen: 24
117.102.82.0/24 maxlen: 24
117.102.83.0/24 maxlen: 24
117.102.84.0/24 maxlen: 24
117.102.85.0/24 maxlen: 24
117.102.86.0/24 maxlen: 24
117.102.88.0/24 maxlen: 24
117.102.90.0/24 maxlen: 24
117.102.92.0/24 maxlen: 24
117.102.94.0/24 maxlen: 24
117.102.95.0/24 maxlen: 24
117.102.98.0/24 maxlen: 24
117.102.101.0/24 maxlen: 24
117.102.102.0/24 maxlen: 24
117.102.103.0/24 maxlen: 24
117.102.104.0/24 maxlen: 24
117.102.107.0/24 maxlen: 24
117.102.113.0/24 maxlen: 24
117.102.114.0/24 maxlen: 24
117.102.116.0/24 maxlen: 24
117.102.118.0/24 maxlen: 24
117.102.120.0/24 maxlen: 24
117.102.122.0/24 maxlen: 24
118.99.74.0/24 maxlen: 24
118.99.85.0/24 maxlen: 24
118.99.86.0/24 maxlen: 24
118.99.116.0/24 maxlen: 24
182.253.0.0/24 maxlen: 24
182.253.1.0/24 maxlen: 24
182.253.2.0/24 maxlen: 24
182.253.3.0/24 maxlen: 24
182.253.5.0/24 maxlen: 24
182.253.11.0/24 maxlen: 24
182.253.15.0/24 maxlen: 24
182.253.17.0/24 maxlen: 24
182.253.18.0/24 maxlen: 24
182.253.19.0/24 maxlen: 24
182.253.23.0/24 maxlen: 24
182.253.25.0/24 maxlen: 24
182.253.27.0/24 maxlen: 24
182.253.28.0/24 maxlen: 24
182.253.29.0/24 maxlen: 24
182.253.30.0/24 maxlen: 24
182.253.34.0/24 maxlen: 24
182.253.40.0/24 maxlen: 24
182.253.41.0/24 maxlen: 24
182.253.45.0/24 maxlen: 24
182.253.46.0/24 maxlen: 24
182.253.47.0/24 maxlen: 24
182.253.60.0/24 maxlen: 24
182.253.68.0/24 maxlen: 24
182.253.70.0/24 maxlen: 24
182.253.71.0/24 maxlen: 24
182.253.85.0/24 maxlen: 24
182.253.100.0/24 maxlen: 24
182.253.101.0/24 maxlen: 24
182.253.190.0/24 maxlen: 24
182.253.195.0/24 maxlen: 24
182.253.201.0/24 maxlen: 24
182.253.204.0/24 maxlen: 24
182.253.205.0/24 maxlen: 24
182.253.210.0/24 maxlen: 24
182.253.213.0/24 maxlen: 24
182.253.221.0/24 maxlen: 24
182.253.222.0/24 maxlen: 24
182.253.226.0/24 maxlen: 24
182.253.236.0/24 maxlen: 24
182.253.237.0/24 maxlen: 24
182.253.238.0/24 maxlen: 24
182.253.239.0/24 maxlen: 24
182.253.240.0/24 maxlen: 24
202.169.38.0/24 maxlen: 24
202.169.39.0/24 maxlen: 24
202.169.41.0/24 maxlen: 24
202.169.43.0/24 maxlen: 24
202.169.46.0/24 maxlen: 24
202.169.49.0/24 maxlen: 24
202.169.51.0/24 maxlen: 24
202.169.52.0/24 maxlen: 24
202.169.54.0/24 maxlen: 24
202.169.55.0/24 maxlen: 24
202.169.58.0/24 maxlen: 24
202.169.62.0/24 maxlen: 24
203.142.64.0/24 maxlen: 24
203.142.69.0/24 maxlen: 24
203.142.70.0/24 maxlen: 24
203.142.80.0/24 maxlen: 24
203.142.81.0/24 maxlen: 24
203.142.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 16:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:5b:59:b7:cd:d3:a6:40:f4:c4:e2:7c:94:ea:a7:12:f7:13:eb:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Mar 6 09:12:08 2024 GMT
Not After : Mar 5 09:17:08 2025 GMT
Subject: CN=A13B93E7B10F99E01F14CD734E586C628AC013D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b9:04:2b:10:74:64:52:2e:aa:ea:8d:bf:2c:
0e:36:7a:86:b6:28:71:7b:07:0b:ac:a2:7c:72:8e:
40:9b:b0:d9:bc:0a:80:57:d2:8d:4f:ed:18:38:a6:
b0:07:3d:88:a7:c2:5d:5f:83:26:22:6d:92:d6:33:
0b:0d:33:ff:18:3f:d2:4b:b2:a8:84:7b:53:f3:dc:
5e:f7:d7:5e:0a:fa:48:e2:db:b9:49:b7:18:3c:b4:
41:26:75:f4:a4:51:9d:2c:71:da:e8:d3:33:1d:43:
53:9e:18:22:4b:4a:fa:b7:c9:82:23:5e:73:a6:29:
86:10:69:e7:f9:79:e5:6e:b3:15:42:73:9e:3b:18:
13:4f:ff:8e:10:05:78:c6:a0:fd:d5:a9:2d:79:a9:
55:79:01:87:be:20:56:0b:6b:35:27:83:6c:39:41:
da:bc:35:ad:1d:38:71:49:41:59:c9:08:a7:b2:d8:
9d:51:4e:c1:3c:1a:01:31:1a:5f:cd:ed:b7:5f:2a:
7f:1a:c0:78:5f:2c:83:b8:8a:f2:cd:fd:1e:cf:0a:
a4:71:2d:4a:06:b6:50:b7:0e:c2:18:31:2c:94:ca:
bc:ff:9e:39:d3:16:c6:16:5a:72:fa:e3:c7:dc:b5:
e1:12:3f:1e:e2:2b:b7:ab:33:93:00:e0:62:1b:23:
22:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:3B:93:E7:B1:0F:99:E0:1F:14:CD:73:4E:58:6C:62:8A:C0:13:D6
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AS38482.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.78.135.0-112.78.137.255
112.78.139.0/24
112.78.141.0/24
112.78.144.0/24
112.78.146.0/24
112.78.149.0/24
112.78.152.0/24
112.78.170.0/24
112.78.176.0/24
112.78.186.0/24
117.102.65.0/24
117.102.70.0/24
117.102.73.0/24
117.102.79.0-117.102.80.255
117.102.82.0-117.102.86.255
117.102.88.0/24
117.102.90.0/24
117.102.92.0/24
117.102.94.0/23
117.102.98.0/24
117.102.101.0-117.102.104.255
117.102.107.0/24
117.102.113.0-117.102.114.255
117.102.116.0/24
117.102.118.0/24
117.102.120.0/24
117.102.122.0/24
118.99.74.0/24
118.99.85.0-118.99.86.255
118.99.116.0/24
182.253.0.0/22
182.253.5.0/24
182.253.11.0/24
182.253.15.0/24
182.253.17.0-182.253.19.255
182.253.23.0/24
182.253.25.0/24
182.253.27.0-182.253.30.255
182.253.34.0/24
182.253.40.0/23
182.253.45.0-182.253.47.255
182.253.60.0/24
182.253.68.0/24
182.253.70.0/23
182.253.85.0/24
182.253.100.0/23
182.253.190.0/24
182.253.195.0/24
182.253.201.0/24
182.253.204.0/23
182.253.210.0/24
182.253.213.0/24
182.253.221.0-182.253.222.255
182.253.226.0/24
182.253.236.0-182.253.240.255
202.169.38.0/23
202.169.41.0/24
202.169.43.0/24
202.169.46.0/24
202.169.49.0/24
202.169.51.0-202.169.52.255
202.169.54.0/23
202.169.58.0/24
202.169.62.0/24
203.142.64.0/24
203.142.69.0-203.142.70.255
203.142.80.0/23
203.142.85.0/24
Signature Algorithm: sha256WithRSAEncryption
05:98:80:a8:c5:6e:f6:10:9f:30:1e:2c:93:04:00:a3:10:67:
1d:5d:53:6a:a1:4d:cf:c0:2b:63:88:2e:32:87:d9:db:0b:0e:
c4:5b:fa:69:79:e6:07:8f:dc:49:65:b7:f0:05:9e:86:3c:43:
6e:62:2b:23:6c:48:0d:fb:93:c8:d8:75:51:bc:b6:22:b5:58:
a3:eb:3f:f1:18:2c:eb:f5:a9:70:44:6f:24:6b:12:6a:32:d9:
6b:0a:d2:ce:b8:e9:bd:3c:c5:6b:67:61:1c:57:2a:56:92:31:
fa:c2:7c:b5:5e:65:26:22:e1:b9:62:3e:09:46:10:6b:c4:de:
ed:3d:37:b8:56:07:27:9e:07:e7:9c:99:cd:c8:a0:9b:0e:f7:
de:cc:4e:05:86:45:45:6c:45:d0:33:e0:bc:3a:21:85:be:81:
ec:fc:6d:33:b3:92:64:8a:6d:55:bb:84:bf:1b:a0:16:b7:60:
3d:4c:6d:b4:35:24:d9:31:aa:a5:3c:99:ac:56:34:d3:b5:fb:
69:e1:0a:f9:18:bb:7f:e3:69:d9:f5:e6:0c:f0:10:e6:a3:3f:
26:72:70:57:35:e5:76:2e:9a:56:20:4d:c0:39:7e:7b:1b:f5:
a2:3d:22:aa:a1:c3:f7:18:50:3f:ed:17:56:67:34:14:d7:fb:
73:fe:1a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 18:54:26 2024 by rpki-client on console-fra.rpki-client.org