Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/AS24203.roa
File: AS24203.roa (raw, json)
Hash identifier: PiioCRun01W3USZE21jLudCAK52GzKjTWQkIrQ39VD0=
Subject key identifier: D7:53:28:98:75:EA:60:E2:C5:DE:3E:D0:DF:BC:10:04:CA:64:B3:31
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 44FB8971E221DC27083BBED71C2A86876B852ACA
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/AS24203.roa
Signing time: Mon 30 Jun 2025 03:27:12 +0000
ROA not before: Mon 30 Jun 2025 03:22:12 +0000
ROA not after: Mon 29 Jun 2026 03:27:12 +0000
asID: 24203
IP address blocks: 27.111.48.0/24 maxlen: 24
27.111.49.0/24 maxlen: 24
27.111.50.0/24 maxlen: 24
27.111.51.0/24 maxlen: 24
27.111.52.0/24 maxlen: 24
27.111.53.0/24 maxlen: 24
27.111.54.0/24 maxlen: 24
27.111.55.0/24 maxlen: 24
27.111.56.0/24 maxlen: 24
27.111.57.0/24 maxlen: 24
27.111.58.0/24 maxlen: 24
27.111.59.0/24 maxlen: 24
27.111.60.0/24 maxlen: 24
27.111.61.0/24 maxlen: 24
27.111.62.0/24 maxlen: 24
27.111.63.0/24 maxlen: 24
112.215.0.0/16 maxlen: 16
112.215.19.0/24 maxlen: 24
112.215.23.0/24 maxlen: 24
112.215.36.0/24 maxlen: 24
112.215.44.0/24 maxlen: 24
112.215.45.0/24 maxlen: 24
112.215.47.0/24 maxlen: 24
112.215.50.0/24 maxlen: 24
112.215.60.0/24 maxlen: 24
112.215.63.0/24 maxlen: 24
112.215.64.0/24 maxlen: 24
112.215.65.0/24 maxlen: 24
112.215.66.0/24 maxlen: 24
112.215.71.0/24 maxlen: 24
112.215.79.0/24 maxlen: 24
112.215.83.0/24 maxlen: 24
112.215.84.0/24 maxlen: 24
112.215.88.0/24 maxlen: 24
112.215.101.0/24 maxlen: 24
112.215.102.0/24 maxlen: 24
112.215.103.0/24 maxlen: 24
112.215.104.0/24 maxlen: 24
112.215.122.0/24 maxlen: 24
112.215.123.0/24 maxlen: 24
112.215.124.0/24 maxlen: 24
112.215.126.0/24 maxlen: 24
112.215.127.0/24 maxlen: 24
112.215.128.0/24 maxlen: 24
112.215.133.0/24 maxlen: 24
112.215.140.0/24 maxlen: 24
112.215.145.0/24 maxlen: 24
112.215.146.0/24 maxlen: 24
112.215.147.0/24 maxlen: 24
112.215.148.0/24 maxlen: 24
112.215.149.0/24 maxlen: 24
112.215.151.0/24 maxlen: 24
112.215.152.0/24 maxlen: 24
112.215.153.0/24 maxlen: 24
112.215.154.0/24 maxlen: 24
112.215.156.0/24 maxlen: 24
112.215.157.0/24 maxlen: 24
112.215.158.0/24 maxlen: 24
112.215.160.0/24 maxlen: 24
112.215.161.0/24 maxlen: 24
112.215.165.0/24 maxlen: 24
112.215.167.0/24 maxlen: 24
112.215.168.0/24 maxlen: 24
112.215.169.0/24 maxlen: 24
112.215.170.0/24 maxlen: 24
112.215.171.0/24 maxlen: 24
112.215.172.0/24 maxlen: 24
112.215.173.0/24 maxlen: 24
112.215.174.0/24 maxlen: 24
112.215.175.0/24 maxlen: 24
112.215.179.0/24 maxlen: 24
112.215.183.0/24 maxlen: 24
112.215.184.0/24 maxlen: 24
112.215.185.0/24 maxlen: 24
112.215.198.0/24 maxlen: 24
112.215.200.0/24 maxlen: 24
112.215.201.0/24 maxlen: 24
112.215.207.0/24 maxlen: 24
112.215.208.0/24 maxlen: 24
112.215.209.0/24 maxlen: 24
112.215.210.0/24 maxlen: 24
112.215.211.0/24 maxlen: 24
112.215.212.0/24 maxlen: 24
112.215.219.0/24 maxlen: 24
112.215.220.0/24 maxlen: 24
112.215.221.0/24 maxlen: 24
112.215.222.0/24 maxlen: 24
112.215.223.0/24 maxlen: 24
112.215.224.0/24 maxlen: 24
112.215.225.0/24 maxlen: 24
112.215.226.0/24 maxlen: 24
112.215.227.0/24 maxlen: 24
112.215.228.0/24 maxlen: 24
112.215.229.0/24 maxlen: 24
112.215.230.0/24 maxlen: 24
112.215.231.0/24 maxlen: 24
112.215.232.0/24 maxlen: 24
112.215.233.0/24 maxlen: 24
112.215.234.0/24 maxlen: 24
112.215.235.0/24 maxlen: 24
112.215.236.0/24 maxlen: 24
112.215.237.0/24 maxlen: 24
112.215.238.0/24 maxlen: 24
112.215.239.0/24 maxlen: 24
112.215.240.0/24 maxlen: 24
112.215.241.0/24 maxlen: 24
112.215.242.0/24 maxlen: 24
112.215.243.0/24 maxlen: 24
112.215.244.0/24 maxlen: 24
112.215.245.0/24 maxlen: 24
112.215.246.0/24 maxlen: 24
112.215.251.0/24 maxlen: 24
112.215.252.0/24 maxlen: 24
112.215.253.0/24 maxlen: 24
202.152.240.0/24 maxlen: 24
202.152.243.0/24 maxlen: 24
203.78.112.0/20 maxlen: 20
203.78.112.0/24 maxlen: 24
203.78.113.0/24 maxlen: 24
203.78.114.0/24 maxlen: 24
203.78.116.0/24 maxlen: 24
203.78.117.0/24 maxlen: 24
203.78.118.0/24 maxlen: 24
203.78.119.0/24 maxlen: 24
203.78.120.0/24 maxlen: 24
203.78.121.0/24 maxlen: 24
203.78.122.0/24 maxlen: 24
203.78.123.0/24 maxlen: 24
203.78.124.0/24 maxlen: 24
203.78.125.0/24 maxlen: 24
203.78.126.0/24 maxlen: 24
2400:9800::/32 maxlen: 32
2400:9800:c::/48 maxlen: 48
2400:9800:10::/48 maxlen: 48
2400:9800:12::/48 maxlen: 48
2400:9800:14::/48 maxlen: 48
2400:9800:15::/48 maxlen: 48
2400:9800:500::/45 maxlen: 45
2400:9800:510::/45 maxlen: 45
2400:9800:520::/45 maxlen: 45
2400:9800:530::/45 maxlen: 45
2400:9800:540::/45 maxlen: 45
2400:9800:550::/45 maxlen: 45
2400:9800:590::/45 maxlen: 45
2400:9800:5a0::/45 maxlen: 45
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 22 Jul 2025 22:08:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:fb:89:71:e2:21:dc:27:08:3b:be:d7:1c:2a:86:87:6b:85:2a:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Jun 30 03:22:12 2025 GMT
Not After : Jun 29 03:27:12 2026 GMT
Subject: CN=D753289875EA60E2C5DE3ED0DFBC1004CA64B331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:05:7c:0d:ed:3c:74:75:7c:cf:19:9d:da:fb:
8a:7b:91:19:82:03:94:b1:84:e7:3d:7e:62:e8:53:
ef:fc:ea:22:6a:a3:31:71:50:be:94:e6:5f:8a:fd:
16:76:bb:10:be:38:b3:00:15:68:94:bf:70:da:d6:
51:1a:53:23:18:64:ea:a7:f4:da:81:d5:1c:ba:ab:
ca:77:41:e3:5e:9a:eb:4f:55:5f:1b:80:7b:25:48:
20:78:89:a6:a1:b6:de:1e:c3:a0:27:1d:e2:73:f7:
0f:ca:d9:23:e4:5d:51:35:59:da:29:6d:78:19:28:
9b:50:97:e7:e8:ce:3c:11:fa:dc:04:34:ad:37:d0:
0e:67:fa:b5:7b:61:c4:23:cd:56:5c:72:6f:2e:fc:
bd:b2:a8:fd:75:72:73:b0:e6:b5:63:3a:a9:f1:87:
38:2a:cb:48:2a:5e:0c:2e:1b:83:56:72:bd:69:29:
b3:23:61:f9:40:b3:4d:2d:58:ce:22:de:8c:65:e4:
80:79:98:10:e2:76:93:09:d5:f2:1a:1b:01:6c:fb:
dc:1c:2d:62:29:9a:87:44:0b:60:90:ae:6d:04:bf:
b7:14:83:c2:75:83:23:48:a2:c8:6d:de:ec:5c:07:
f7:b1:65:50:c7:62:b1:11:ea:db:0d:9f:be:ad:86:
38:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:53:28:98:75:EA:60:E2:C5:DE:3E:D0:DF:BC:10:04:CA:64:B3:31
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/AS24203.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.111.48.0/20
112.215.0.0/16
202.152.240.0/24
202.152.243.0/24
203.78.112.0/20
IPv6:
2400:9800::/32
Signature Algorithm: sha256WithRSAEncryption
81:eb:bc:e1:86:96:15:11:f3:20:07:3e:15:84:4c:50:49:23:
4d:1d:a2:25:e4:c9:d9:f8:1a:3a:c1:e1:a6:9f:32:d3:c6:df:
41:df:5f:99:72:fc:cf:f8:cc:0f:d3:a1:f2:f5:75:ab:38:38:
ca:8c:58:85:43:31:6c:4e:61:11:0f:80:ea:e4:6b:97:8c:a9:
1c:e4:6e:b5:22:d1:5d:10:7b:ac:b5:5e:fb:07:bc:5c:83:da:
2b:62:1a:62:64:1c:04:db:3d:25:b8:11:3e:ee:ed:9a:94:c8:
31:0f:82:01:5e:25:59:a7:ae:bd:5e:69:2b:d6:28:99:f3:43:
54:d5:62:6a:9c:86:fd:44:c3:94:b3:df:a9:1d:07:69:7d:f7:
10:f5:53:aa:be:2e:1e:73:86:13:0b:0a:92:45:3f:46:d7:bd:
e2:d4:24:13:ff:c7:09:f5:43:20:36:5b:6b:5b:f0:0c:e9:5f:
8d:1b:b6:31:5a:04:d7:dc:2b:ac:10:79:a2:0f:f5:fd:f7:e0:
50:42:1a:f0:56:bb:1e:69:79:c4:e0:3d:bc:f6:75:b0:59:c5:
a1:8c:76:80:bf:ba:59:62:07:47:38:cd:ff:34:c9:88:f5:1e:
ed:98:56:cc:dc:8e:f5:b3:2d:28:ec:dc:27:16:af:d2:f4:00:
76:1a:9d:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 06:49:23 2025 by rpki-client