Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a373030303a3a2f33362d3438203d3e20313430343233.roa
File: 323430363a323063303a373030303a3a2f33362d3438203d3e20313430343233.roa (raw, json)
Hash identifier: MJcBdewub6MOdY9TAVlYHHp26Ei+fPNOyvHpkKGZatk=
Subject key identifier: EF:BA:3D:90:6B:1E:D2:56:EE:08:BE:BD:16:80:B4:18:64:AD:F7:EA
Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Certificate serial: 108C2979D55F641FDE27109E6B801324EE902FAD
Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a373030303a3a2f33362d3438203d3e20313430343233.roa
Signing time: Fri 10 Jan 2025 12:00:01 +0000
ROA not before: Fri 10 Jan 2025 11:55:01 +0000
ROA not after: Fri 09 Jan 2026 12:00:01 +0000
asID: 140423
IP address blocks: 2406:20c0:7000::/36 maxlen: 48
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl
rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 16:18:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:8c:29:79:d5:5f:64:1f:de:27:10:9e:6b:80:13:24:ee:90:2f:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Validity
Not Before: Jan 10 11:55:01 2025 GMT
Not After : Jan 9 12:00:01 2026 GMT
Subject: CN=EFBA3D906B1ED256EE08BEBD1680B41864ADF7EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3f:8b:17:98:88:d7:5a:88:4b:6d:46:6c:e1:
35:12:73:8e:8b:d5:8a:07:98:dc:89:5f:f9:be:3f:
a6:f9:c1:ea:5d:9f:5f:ed:2f:e6:c8:4c:0b:58:6e:
d8:db:e1:5b:ba:b4:5a:12:75:c3:06:cf:61:b4:d0:
31:de:cc:d8:39:86:16:60:c0:80:09:46:4d:7e:bf:
25:ca:8c:3b:bb:17:c9:d4:b4:52:52:eb:9e:cf:8d:
fa:7f:a7:f9:0d:21:1e:f7:28:54:51:5d:c6:a0:72:
5a:89:f2:51:ef:77:89:e6:79:b8:ed:a0:ce:21:83:
df:14:c4:2f:c3:f5:36:db:75:f0:90:f4:6b:19:18:
25:f1:d0:fb:a2:cf:1f:da:91:44:b6:07:8a:63:f7:
82:2d:79:ad:fa:4c:3f:e6:a2:de:a8:f8:4a:c3:aa:
7b:34:a9:7c:6a:cc:65:99:fa:51:b1:a3:4c:35:86:
5d:b4:3b:96:98:a2:71:81:0f:ff:f5:15:39:d7:a0:
79:e2:81:30:d7:73:ab:0f:a2:47:60:3a:23:9e:9c:
a4:29:e5:dc:ec:6d:3a:d9:df:a3:a5:ea:f9:e3:9e:
d5:12:6e:4c:96:cf:ce:2c:7c:f5:4e:ef:8c:d4:0b:
cd:82:d6:eb:50:c3:6e:94:e3:28:ca:ec:74:f0:9c:
f3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:BA:3D:90:6B:1E:D2:56:EE:08:BE:BD:16:80:B4:18:64:AD:F7:EA
X509v3 Authority Key Identifier:
keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a373030303a3a2f33362d3438203d3e20313430343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:20c0:7000::/36
Signature Algorithm: sha256WithRSAEncryption
14:3f:19:17:41:50:3f:4a:00:a6:ff:43:8d:12:f5:a3:3c:c4:
2b:f7:92:a8:db:ad:4e:6a:9f:6e:fb:c3:ae:74:27:3c:79:8f:
b3:34:fb:89:be:17:71:ed:2c:73:96:86:37:6c:ac:35:bc:5d:
8f:1f:ae:db:8f:a4:a2:44:fb:2b:98:23:ba:a7:73:b6:00:b7:
9b:89:76:90:36:c5:2a:f2:99:7d:40:af:eb:7c:14:4a:c9:31:
8a:19:a5:50:45:0a:fc:19:62:9c:14:bd:a0:23:9d:e5:95:92:
3b:ea:35:d0:84:1c:6f:e6:88:47:41:6b:5b:e7:08:90:2e:2f:
34:ca:62:c7:aa:06:06:f5:6b:05:a4:39:b0:32:76:cd:cb:e6:
c8:50:0b:9b:55:40:24:60:0a:28:e3:25:29:5a:81:5b:bd:dc:
92:b7:5e:92:ba:30:9b:53:10:54:d4:75:a5:da:0d:fd:a5:65:
37:76:c1:6b:aa:02:c3:43:cb:b0:62:f2:31:5d:59:a9:4b:fd:
16:4f:89:28:bb:70:1f:56:d6:18:e6:18:0c:a2:ad:11:a1:64:
56:42:17:9c:bc:48:94:82:2c:6a:7e:ef:9e:a7:e1:70:ab:48:
a6:74:d9:9e:df:e8:ff:71:1e:fb:ca:2c:fd:a9:65:20:44:60:
ba:91:82:33
-----BEGIN CERTIFICATE-----
MIIFNDCCBBygAwIBAgIUEIwpedVfZB/eJxCea4ATJO6QL60wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz
NTJDQjg3NDAeFw0yNTAxMTAxMTU1MDFaFw0yNjAxMDkxMjAwMDFaMDMxMTAvBgNV
BAMTKEVGQkEzRDkwNkIxRUQyNTZFRTA4QkVCRDE2ODBCNDE4NjRBREY3RUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvP4sXmIjXWohLbUZs4TUSc46L
1YoHmNyJX/m+P6b5wepdn1/tL+bITAtYbtjb4Vu6tFoSdcMGz2G00DHezNg5hhZg
wIAJRk1+vyXKjDu7F8nUtFJS657Pjfp/p/kNIR73KFRRXcagclqJ8lHvd4nmebjt
oM4hg98UxC/D9TbbdfCQ9GsZGCXx0Puizx/akUS2B4pj94Itea36TD/mot6o+ErD
qns0qXxqzGWZ+lGxo0w1hl20O5aYonGBD//1FTnXoHnigTDXc6sPokdgOiOenKQp
5dzsbTrZ36Ol6vnjntUSbkyWz84sfPVO74zUC82C1utQw26U4yjK7HTwnPPBAgMB
AAGjggI+MIICOjAdBgNVHQ4EFgQU77o9kGse0lbuCL69FoC0GGSt9+owHwYDVR0j
BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF
MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD
Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04
OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzczMDMwMzAz
YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk
BiDAcDANBgkqhkiG9w0BAQsFAAOCAQEAFD8ZF0FQP0oApv9DjRL1ozzEK/eSqNut
TmqfbvvDrnQnPHmPszT7ib4Xce0sc5aGN2ysNbxdjx+u24+kokT7K5gjuqdztgC3
m4l2kDbFKvKZfUCv63wUSskxihmlUEUK/BlinBS9oCOd5ZWSO+o10IQcb+aIR0Fr
W+cIkC4vNMpix6oGBvVrBaQ5sDJ2zcvmyFALm1VAJGAKKOMlKVqBW73ckrdekrow
m1MQVNR1pdoN/aVlN3bBa6oCw0PLsGLyMV1ZqUv9Fk+JKLtwH1bWGOYYDKKtEaFk
VkIXnLxIlIIsan7vnqfhcKtIpnTZnt/o/3Ee+8os/allIERgupGCMw==
-----END CERTIFICATE-----
Generated at Wed Apr 9 21:11:19 2025 by rpki-client