Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38758.roa
File: AS38758.roa (raw, json)
Hash identifier: wRyUmio8w06cIW9H18vEJhtTtBtp85bD0Qkx/ZtIDBg=
Subject key identifier: 82:E5:62:2E:94:BD:F7:F1:5E:28:F4:22:48:24:BB:F2:15:25:E0:93
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 50622CEE055DA6F8E8442899B07C5B4673CAEAAA
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38758.roa
Signing time: Wed 09 Jul 2025 08:00:00 +0000
ROA not before: Wed 09 Jul 2025 07:55:00 +0000
ROA not after: Wed 08 Jul 2026 08:00:00 +0000
asID: 38758
IP address blocks: 103.142.110.0/23 maxlen: 24
103.149.226.0/24 maxlen: 24
103.166.190.0/23 maxlen: 24
103.166.194.0/23 maxlen: 24
103.166.196.0/23 maxlen: 24
103.166.200.0/23 maxlen: 24
103.183.4.0/23 maxlen: 24
103.233.108.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 23 Jul 2025 16:16:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:62:2c:ee:05:5d:a6:f8:e8:44:28:99:b0:7c:5b:46:73:ca:ea:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jul 9 07:55:00 2025 GMT
Not After : Jul 8 08:00:00 2026 GMT
Subject: CN=82E5622E94BDF7F15E28F4224824BBF21525E093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:85:14:f6:f5:94:b6:22:72:1a:84:6d:af:fc:
cb:42:95:e7:84:9f:a3:9c:f7:57:73:e9:b7:55:3a:
c3:de:27:05:c4:98:09:22:9d:42:6a:45:b6:52:7f:
4a:31:2a:08:7e:a2:9d:db:ff:45:8c:d3:8c:d3:a9:
47:1a:86:3d:13:f5:48:1f:1a:56:58:3d:68:06:bd:
af:a8:04:11:c2:57:f9:cc:58:85:2a:4f:ec:67:5c:
8c:74:26:0d:91:82:24:1c:71:5f:a8:e5:c4:db:61:
a1:af:3c:66:78:f1:b8:16:c1:b0:69:09:d1:ec:67:
2c:39:8e:4c:22:e0:da:87:f9:ac:63:e0:21:e5:22:
7b:e8:25:01:67:44:38:47:20:cd:c0:bc:c4:d8:b4:
87:ee:24:69:70:fe:29:1c:ca:92:c1:d6:e7:02:bb:
3e:9e:c8:b9:f2:79:b5:34:44:b3:78:97:a9:c3:77:
bf:e3:42:db:15:4e:a2:e5:e8:30:c6:c8:65:87:e2:
5d:cf:83:8f:7a:35:2e:4d:be:69:7d:f4:97:1c:cd:
d2:b8:4a:b2:a6:3e:af:1c:18:19:b1:a8:4e:95:24:
e7:89:ea:87:e7:11:2b:be:e2:8c:13:10:e7:8e:da:
6a:5c:14:ba:bc:2c:33:18:cb:58:ee:b1:c3:12:79:
c9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:E5:62:2E:94:BD:F7:F1:5E:28:F4:22:48:24:BB:F2:15:25:E0:93
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38758.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.142.110.0/23
103.149.226.0/24
103.166.190.0/23
103.166.194.0-103.166.197.255
103.166.200.0/23
103.183.4.0/23
103.233.108.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:07:67:75:34:d2:a0:aa:30:f5:c2:6d:21:a9:c3:02:e3:8b:
05:13:ad:cd:d3:76:f3:87:6c:6f:48:8a:c4:12:5e:dd:64:20:
91:3d:69:de:67:8f:13:40:d4:b1:83:5b:69:fe:6e:91:68:7b:
f6:1a:fa:cc:4e:2c:3f:ba:83:da:91:b6:01:c6:d0:5b:90:02:
0a:ab:fd:89:06:f3:43:6d:f5:ed:a0:c7:3d:b2:3f:ec:b9:81:
55:b2:a3:9e:9e:ef:15:75:5b:c8:40:0e:58:a7:ce:42:ba:d7:
d8:15:75:5c:18:6a:d4:e6:c3:2f:56:f3:ad:28:9c:4a:f5:78:
cc:92:b1:82:66:43:93:11:e0:f7:2f:b0:e1:1d:f5:d1:0c:ff:
6a:2b:c6:3e:48:c2:c3:bd:04:13:c6:70:7c:09:00:3a:55:47:
b5:e0:5c:f5:f6:49:f3:1e:c2:86:59:20:3e:b2:5a:d4:af:ad:
77:62:fc:4c:b6:f1:c9:8d:91:14:67:06:1a:6e:96:bc:2d:b4:
45:e1:7e:04:3d:8b:49:26:b4:a8:6f:97:64:35:ba:8b:73:70:
8b:9f:cd:3d:2e:be:16:69:c9:9b:5f:77:78:9e:d6:a8:48:72:
80:7b:5e:9b:1f:ff:37:a4:d4:16:da:b2:c4:ce:1e:a7:31:e6:
f1:96:20:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 16:52:35 2025 by rpki-client