Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0a788b4a-d451-49fb-b7cd-719810870f1a/0/3130332e3235322e35312e302f32342d3234203d3e203539313334.roa
File: 3130332e3235322e35312e302f32342d3234203d3e203539313334.roa (raw, json)
Hash identifier: jXXWxkm8pnllb3VSFA8uhDiro1y3hrU3S7FOIya7wEk=
Subject key identifier: EC:35:92:53:55:3A:A4:BF:43:68:98:5F:9A:75:20:5F:08:A5:93:BB
Certificate issuer: /CN=095AAB2FD179056DA8846FA0E90F79F7D901792C
Certificate serial: 6F5189B77190BD7F50856A4727BF14D8C42AA68E
Authority key identifier: 09:5A:AB:2F:D1:79:05:6D:A8:84:6F:A0:E9:0F:79:F7:D9:01:79:2C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/095AAB2FD179056DA8846FA0E90F79F7D901792C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0a788b4a-d451-49fb-b7cd-719810870f1a/0/3130332e3235322e35312e302f32342d3234203d3e203539313334.roa
Signing time: Tue 23 Jul 2024 11:00:01 +0000
ROA not before: Tue 23 Jul 2024 10:55:01 +0000
ROA not after: Tue 22 Jul 2025 11:00:01 +0000
asID: 59134
IP address blocks: 103.252.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/0a788b4a-d451-49fb-b7cd-719810870f1a/0/095AAB2FD179056DA8846FA0E90F79F7D901792C.crl
rsync://repo-rpki.idnic.net/repo/0a788b4a-d451-49fb-b7cd-719810870f1a/0/095AAB2FD179056DA8846FA0E90F79F7D901792C.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/095AAB2FD179056DA8846FA0E90F79F7D901792C.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 19:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:51:89:b7:71:90:bd:7f:50:85:6a:47:27:bf:14:d8:c4:2a:a6:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095AAB2FD179056DA8846FA0E90F79F7D901792C
Validity
Not Before: Jul 23 10:55:01 2024 GMT
Not After : Jul 22 11:00:01 2025 GMT
Subject: CN=EC359253553AA4BF4368985F9A75205F08A593BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:a5:8b:9d:d2:68:a1:2f:48:db:d2:9b:cf:44:
6d:77:50:55:0d:e8:ea:d0:d3:8c:45:6b:f3:b7:48:
4c:33:da:68:1d:02:1d:40:c6:b2:70:20:6a:2b:50:
da:5e:70:f5:52:9a:fb:46:59:40:49:fb:ae:d1:fa:
f7:2c:a6:6d:d3:7c:8c:94:f0:a8:12:28:f3:1f:7f:
a9:b7:cf:6e:69:4d:98:45:c6:7f:bf:b0:93:6d:07:
da:8f:db:90:1d:2c:85:df:e4:32:d7:1f:2c:1b:50:
01:86:b9:57:75:96:3e:94:33:cf:41:e9:4d:1a:4a:
b0:60:f4:03:28:72:40:58:1e:1d:5d:e8:2b:39:49:
37:3f:21:e0:ef:4b:1a:0a:87:ca:05:18:60:ee:5e:
fc:c4:78:a8:62:bd:07:4a:81:33:cb:ad:52:a2:eb:
3f:60:1e:de:a8:ef:fe:77:40:8c:6e:b3:07:1e:8d:
5d:56:b1:58:fe:7e:c4:3e:40:48:76:4b:79:e9:d6:
c8:88:2c:c0:d5:81:36:f8:16:ed:4e:5b:cc:f9:57:
42:32:49:02:56:4a:0d:54:fb:06:e9:37:c1:e9:d6:
1f:61:0a:5d:03:b3:3d:3c:5f:9c:ec:77:44:71:cd:
31:8f:95:bd:f1:1f:aa:9a:c1:df:22:f8:ac:02:17:
2c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:35:92:53:55:3A:A4:BF:43:68:98:5F:9A:75:20:5F:08:A5:93:BB
X509v3 Authority Key Identifier:
keyid:09:5A:AB:2F:D1:79:05:6D:A8:84:6F:A0:E9:0F:79:F7:D9:01:79:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0a788b4a-d451-49fb-b7cd-719810870f1a/0/095AAB2FD179056DA8846FA0E90F79F7D901792C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/095AAB2FD179056DA8846FA0E90F79F7D901792C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a788b4a-d451-49fb-b7cd-719810870f1a/0/3130332e3235322e35312e302f32342d3234203d3e203539313334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.252.51.0/24
Signature Algorithm: sha256WithRSAEncryption
64:5a:a8:0b:51:25:18:4f:70:96:fe:4a:99:a7:89:5f:54:5b:
20:6d:b7:8b:2b:7b:fb:28:fc:dd:55:72:d8:4b:7a:5f:a0:0d:
55:05:03:d2:c5:bb:27:50:f7:26:54:20:b9:54:37:5c:0b:cb:
79:bd:1e:1f:2d:9d:c3:ac:45:55:ef:01:cd:3d:b4:b9:5d:d4:
f6:c3:53:ad:d1:8d:2a:c8:34:9b:bb:6e:a5:3d:75:99:53:f0:
7a:19:73:94:e9:82:a7:27:d6:6a:6b:c9:24:6e:ea:49:74:b6:
c4:2d:3f:f2:24:d8:1f:47:f6:d6:d3:84:f9:a4:a9:f9:e4:69:
06:15:90:dc:6e:08:97:3f:cf:63:66:b8:0e:55:1c:7f:e6:65:
51:de:4c:8b:2d:4f:92:80:30:9e:38:54:66:17:54:17:14:82:
10:38:61:37:57:1f:06:4c:27:77:b6:26:f5:1f:da:90:07:2b:
93:d9:05:1e:2d:7e:dd:fb:10:5e:a5:65:25:2e:27:c2:f5:53:
fa:93:06:4d:b0:da:46:6f:72:9a:f9:4b:43:40:a3:ba:00:b7:
a4:5c:0b:2d:97:0c:e1:64:f7:d5:02:9e:74:28:c6:a0:2c:15:
11:21:37:59:e1:e1:55:b5:69:a2:f3:d2:8d:e4:bd:5b:dd:09:
41:d9:31:a8
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUb1GJt3GQvX9QhWpHJ78U2MQqpo4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDk1QUFCMkZEMTc5MDU2REE4ODQ2RkEwRTkwRjc5RjdE
OTAxNzkyQzAeFw0yNDA3MjMxMDU1MDFaFw0yNTA3MjIxMTAwMDFaMDMxMTAvBgNV
BAMTKEVDMzU5MjUzNTUzQUE0QkY0MzY4OTg1RjlBNzUyMDVGMDhBNTkzQkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDupYud0mihL0jb0pvPRG13UFUN
6OrQ04xFa/O3SEwz2mgdAh1AxrJwIGorUNpecPVSmvtGWUBJ+67R+vcspm3TfIyU
8KgSKPMff6m3z25pTZhFxn+/sJNtB9qP25AdLIXf5DLXHywbUAGGuVd1lj6UM89B
6U0aSrBg9AMockBYHh1d6Cs5STc/IeDvSxoKh8oFGGDuXvzEeKhivQdKgTPLrVKi
6z9gHt6o7/53QIxuswcejV1WsVj+fsQ+QEh2S3np1siILMDVgTb4Fu1OW8z5V0Iy
SQJWSg1U+wbpN8Hp1h9hCl0Dsz08X5zsd0RxzTGPlb3xH6qawd8i+KwCFyy9AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU7DWSU1U6pL9DaJhfmnUgXwilk7swHwYDVR0j
BBgwFoAUCVqrL9F5BW2ohG+g6Q9599kBeSwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
YTc4OGI0YS1kNDUxLTQ5ZmItYjdjZC03MTk4MTA4NzBmMWEvMC8wOTVBQUIyRkQx
NzkwNTZEQTg4NDZGQTBFOTBGNzlGN0Q5MDE3OTJDLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDk1QUFCMkZEMTc5MDU2REE4ODQ2RkEwRTkwRjc5RjdEOTAx
NzkyQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNzg4YjRhLWQ0NTEtNDlmYi1i
N2NkLTcxOTgxMDg3MGYxYS8wLzMxMzAzMzJlMzIzNTMyMmUzNTMxMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzUzOTMxMzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf8MzANBgkqhkiG
9w0BAQsFAAOCAQEAZFqoC1ElGE9wlv5KmaeJX1RbIG23iyt7+yj83VVy2Et6X6AN
VQUD0sW7J1D3JlQguVQ3XAvLeb0eHy2dw6xFVe8BzT20uV3U9sNTrdGNKsg0m7tu
pT11mVPwehlzlOmCpyfWamvJJG7qSXS2xC0/8iTYH0f21tOE+aSp+eRpBhWQ3G4I
lz/PY2a4DlUcf+ZlUd5Miy1PkoAwnjhUZhdUFxSCEDhhN1cfBkwnd7Ym9R/akAcr
k9kFHi1+3fsQXqVlJS4nwvVT+pMGTbDaRm9ymvlLQ0CjugC3pFwLLZcM4WT31QKe
dCjGoCwVESE3WeHhVbVpovPSjeS9W90JQdkxqA==
-----END CERTIFICATE-----
Generated at Wed Apr 9 00:55:16 2025 by rpki-client