Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS17995.roa
File: AS17995.roa (raw, json)
Hash identifier: 1VM17KqIaKP5ZqrdJnwMoXR5++JyWUXs96UlBd6Rdjs=
Subject key identifier: B4:54:CC:CF:47:BB:40:71:27:3D:49:9C:DD:8B:DC:AE:29:F0:F6:15
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 6C1DCB8662E64FD0E2E273DEE44639336D80FDC1
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS17995.roa
Signing time: Fri 22 Mar 2024 10:33:57 +0000
ROA not before: Fri 22 Mar 2024 10:28:57 +0000
ROA not after: Fri 21 Mar 2025 10:33:57 +0000
asID: 17995
IP address blocks: 103.6.200.0/22 maxlen: 24
103.16.188.0/22 maxlen: 24
103.16.232.0/22 maxlen: 24
103.105.64.0/22 maxlen: 24
103.105.68.0/22 maxlen: 24
103.124.188.0/22 maxlen: 23
103.124.220.0/22 maxlen: 23
103.124.228.0/22 maxlen: 23
103.125.4.0/22 maxlen: 23
103.125.8.0/22 maxlen: 23
103.125.212.0/22 maxlen: 24
103.127.8.0/22 maxlen: 23
103.127.12.0/22 maxlen: 23
103.127.52.0/22 maxlen: 23
103.150.108.0/23 maxlen: 24
103.150.110.0/23 maxlen: 24
103.150.112.0/23 maxlen: 24
103.150.114.0/23 maxlen: 24
103.157.114.0/23 maxlen: 24
103.157.190.0/24 maxlen: 24
103.157.191.0/24 maxlen: 24
103.158.66.0/23 maxlen: 24
103.158.68.0/23 maxlen: 24
103.161.188.0/23 maxlen: 24
103.163.10.0/23 maxlen: 24
103.163.128.0/23 maxlen: 24
103.164.16.0/23 maxlen: 24
103.164.98.0/23 maxlen: 24
103.164.100.0/23 maxlen: 24
103.164.102.0/23 maxlen: 24
103.164.104.0/23 maxlen: 24
103.164.106.0/23 maxlen: 24
103.164.108.0/23 maxlen: 24
103.164.110.0/23 maxlen: 24
103.164.112.0/23 maxlen: 24
103.164.114.0/23 maxlen: 24
103.164.116.0/23 maxlen: 24
103.164.118.0/23 maxlen: 24
103.164.120.0/23 maxlen: 24
103.164.122.0/23 maxlen: 24
103.164.124.0/23 maxlen: 24
103.164.136.0/23 maxlen: 24
103.164.190.0/23 maxlen: 24
103.164.194.0/23 maxlen: 24
103.164.212.0/23 maxlen: 24
103.164.214.0/23 maxlen: 24
103.164.216.0/23 maxlen: 24
103.164.218.0/23 maxlen: 24
103.164.220.0/23 maxlen: 24
103.164.222.0/23 maxlen: 24
103.165.32.0/23 maxlen: 24
103.165.34.0/23 maxlen: 24
103.165.36.0/23 maxlen: 24
103.165.38.0/23 maxlen: 24
103.165.40.0/23 maxlen: 24
103.165.42.0/23 maxlen: 24
103.165.58.0/23 maxlen: 24
103.165.60.0/23 maxlen: 24
103.165.122.0/23 maxlen: 24
103.165.124.0/23 maxlen: 24
103.165.126.0/23 maxlen: 24
103.165.128.0/23 maxlen: 24
103.165.130.0/23 maxlen: 24
103.165.132.0/23 maxlen: 24
103.165.134.0/23 maxlen: 24
103.165.136.0/23 maxlen: 24
103.165.138.0/23 maxlen: 24
103.165.140.0/23 maxlen: 24
103.165.194.0/23 maxlen: 24
103.165.196.0/23 maxlen: 24
103.165.198.0/23 maxlen: 24
103.165.200.0/23 maxlen: 24
103.165.202.0/23 maxlen: 24
103.165.204.0/23 maxlen: 24
103.165.206.0/23 maxlen: 24
103.165.208.0/23 maxlen: 24
103.165.210.0/23 maxlen: 24
103.165.212.0/23 maxlen: 24
103.165.214.0/23 maxlen: 24
103.165.216.0/23 maxlen: 24
103.165.218.0/23 maxlen: 24
103.165.220.0/23 maxlen: 24
103.165.222.0/23 maxlen: 24
103.165.224.0/23 maxlen: 24
103.165.226.0/23 maxlen: 24
103.165.228.0/23 maxlen: 24
103.165.230.0/23 maxlen: 24
103.165.232.0/23 maxlen: 24
103.165.234.0/23 maxlen: 24
103.165.236.0/23 maxlen: 24
103.165.238.0/23 maxlen: 24
103.165.240.0/23 maxlen: 24
103.166.104.0/23 maxlen: 24
103.167.218.0/23 maxlen: 24
103.182.180.0/23 maxlen: 24
103.182.182.0/23 maxlen: 24
103.182.184.0/23 maxlen: 24
103.182.186.0/23 maxlen: 24
103.182.188.0/23 maxlen: 24
103.182.190.0/23 maxlen: 24
103.182.192.0/23 maxlen: 24
103.182.194.0/23 maxlen: 24
103.182.200.0/23 maxlen: 24
103.182.202.0/23 maxlen: 24
103.182.204.0/23 maxlen: 24
103.182.206.0/23 maxlen: 24
103.182.208.0/23 maxlen: 24
103.182.222.0/23 maxlen: 24
103.182.224.0/23 maxlen: 24
103.182.228.0/23 maxlen: 24
103.182.230.0/23 maxlen: 24
103.182.232.0/23 maxlen: 24
103.182.234.0/23 maxlen: 24
103.182.236.0/23 maxlen: 24
103.182.238.0/23 maxlen: 24
103.182.240.0/23 maxlen: 24
103.182.242.0/23 maxlen: 24
103.182.244.0/23 maxlen: 24
103.182.252.0/23 maxlen: 24
103.182.254.0/23 maxlen: 24
103.183.0.0/23 maxlen: 24
103.183.12.0/23 maxlen: 24
103.183.14.0/23 maxlen: 24
103.183.18.0/23 maxlen: 24
103.183.20.0/23 maxlen: 24
103.183.22.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 30 Apr 2024 21:55:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:1d:cb:86:62:e6:4f:d0:e2:e2:73:de:e4:46:39:33:6d:80:fd:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Mar 22 10:28:57 2024 GMT
Not After : Mar 21 10:33:57 2025 GMT
Subject: CN=B454CCCF47BB4071273D499CDD8BDCAE29F0F615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ca:d2:11:35:8d:e5:e1:27:fb:fe:1d:2b:42:
f5:d9:d3:87:f0:dd:df:74:81:0c:81:56:73:e1:2e:
09:2b:0a:c3:68:aa:53:43:c8:05:a4:89:93:65:15:
54:e4:6f:32:3b:99:55:2d:26:42:8d:bf:6a:6f:79:
10:18:e9:89:e7:06:50:dd:49:10:6b:8c:3e:6e:3a:
ae:76:b1:04:f6:c0:67:99:24:a4:f7:04:47:8c:7f:
39:66:dc:55:d1:f1:cb:92:b0:ce:c9:99:c3:8e:7d:
41:98:6f:0b:aa:96:c9:fd:c2:eb:8f:be:1a:74:d3:
2d:4e:5e:3a:78:d2:6d:14:99:4d:8d:55:2e:41:71:
21:92:39:75:5e:d4:99:0c:b4:f1:ef:8c:f5:fa:cc:
21:43:07:71:46:d0:bd:43:25:2a:ef:1b:bb:5b:a1:
b9:75:36:21:1c:19:6f:15:7f:ef:c8:0d:e4:48:16:
60:d4:78:eb:ad:f9:f8:1b:b4:f2:03:62:f2:8f:a7:
65:0f:12:5d:3c:2a:95:54:be:ab:ab:82:e4:d5:98:
77:1c:79:73:78:a6:56:f3:ae:3f:f4:df:c4:4a:66:
54:2b:99:cd:b2:dd:d7:de:c5:97:6d:59:97:1e:5c:
1a:8a:9f:a1:ef:d4:b2:ca:ab:e1:ed:45:f7:79:15:
e9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:54:CC:CF:47:BB:40:71:27:3D:49:9C:DD:8B:DC:AE:29:F0:F6:15
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS17995.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.6.200.0/22
103.16.188.0/22
103.16.232.0/22
103.105.64.0/21
103.124.188.0/22
103.124.220.0/22
103.124.228.0/22
103.125.4.0-103.125.11.255
103.125.212.0/22
103.127.8.0/21
103.127.52.0/22
103.150.108.0-103.150.115.255
103.157.114.0/23
103.157.190.0/23
103.158.66.0-103.158.69.255
103.161.188.0/23
103.163.10.0/23
103.163.128.0/23
103.164.16.0/23
103.164.98.0-103.164.125.255
103.164.136.0/23
103.164.190.0/23
103.164.194.0/23
103.164.212.0-103.164.223.255
103.165.32.0-103.165.43.255
103.165.58.0-103.165.61.255
103.165.122.0-103.165.141.255
103.165.194.0-103.165.241.255
103.166.104.0/23
103.167.218.0/23
103.182.180.0-103.182.195.255
103.182.200.0-103.182.209.255
103.182.222.0-103.182.225.255
103.182.228.0-103.182.245.255
103.182.252.0-103.183.1.255
103.183.12.0/22
103.183.18.0-103.183.23.255
Signature Algorithm: sha256WithRSAEncryption
8e:08:c7:a9:9b:f8:70:50:56:25:c3:cf:7f:46:91:94:a2:7b:
27:d3:8f:17:90:f0:5b:73:9c:67:0f:e2:d8:5c:9f:4a:bf:0d:
80:17:39:b7:3c:d4:61:2e:c6:fd:1b:74:a5:24:2b:3b:1b:62:
86:8c:ec:90:59:98:43:fb:2b:ac:c7:8b:6e:43:c6:78:ae:84:
bf:b7:da:ad:9f:d4:b9:90:bd:d3:4a:2d:5c:3a:3e:ff:72:47:
97:18:de:eb:4b:14:f8:30:32:69:d0:bd:49:87:d7:d5:82:66:
ca:93:eb:32:0c:d3:bf:7f:6d:5f:1c:cd:20:f5:53:fe:18:c2:
3f:bf:e8:59:01:1c:50:6a:00:fc:d6:7a:68:5a:fb:88:d2:4a:
cb:dc:4d:12:57:47:48:53:c3:37:c0:90:a0:6f:f4:b9:dd:6f:
71:1e:a9:d5:02:50:d6:5c:f5:b6:37:74:05:a8:5b:56:21:5d:
cb:06:f3:a7:8a:86:f9:f0:6b:83:a4:5a:86:c6:9c:c5:9c:28:
26:53:4d:5d:ac:0a:52:b9:5e:3b:09:da:e8:55:18:65:da:6b:
5f:60:d1:c5:f9:0f:db:4a:5d:ab:66:fa:c0:5c:06:4d:5d:96:
d9:23:99:57:f8:8e:e1:35:b1:31:bd:7b:5d:ea:c3:81:af:21:
b1:bb:84:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 21:40:21 2024 by rpki-client on console-ams.rpki-client.org