Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/3130332e3231392e362e302f32342d3234203d3e203338313537.roa
File: 3130332e3231392e362e302f32342d3234203d3e203338313537.roa (raw, json)
Hash identifier: 5fCH5o/O9UDqH03CvG34hP7WiZzJPNv5TqkPcSqTxsQ=
Subject key identifier: A5:DB:D2:EB:FB:09:CB:42:FB:40:CF:12:4A:C3:86:0D:CE:65:F7:25
Certificate issuer: /CN=1446915299D8F05DBFAD863E0D230435A96FB12A
Certificate serial: 62DDE18C56F1DD0729A5B274FACCA4088E555370
Authority key identifier: 14:46:91:52:99:D8:F0:5D:BF:AD:86:3E:0D:23:04:35:A9:6F:B1:2A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1446915299D8F05DBFAD863E0D230435A96FB12A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/3130332e3231392e362e302f32342d3234203d3e203338313537.roa
Signing time: Wed 29 Jan 2025 06:00:01 +0000
ROA not before: Wed 29 Jan 2025 05:55:01 +0000
ROA not after: Wed 28 Jan 2026 06:00:01 +0000
asID: 38157
IP address blocks: 103.219.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/1446915299D8F05DBFAD863E0D230435A96FB12A.crl
rsync://repo-rpki.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/1446915299D8F05DBFAD863E0D230435A96FB12A.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1446915299D8F05DBFAD863E0D230435A96FB12A.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 14 Apr 2025 18:43:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:dd:e1:8c:56:f1:dd:07:29:a5:b2:74:fa:cc:a4:08:8e:55:53:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1446915299D8F05DBFAD863E0D230435A96FB12A
Validity
Not Before: Jan 29 05:55:01 2025 GMT
Not After : Jan 28 06:00:01 2026 GMT
Subject: CN=A5DBD2EBFB09CB42FB40CF124AC3860DCE65F725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:06:86:b9:3f:3e:5c:5e:ce:d0:0a:4b:ef:b8:
2c:7f:f8:2b:ef:34:73:db:dc:29:60:29:c9:3b:1b:
1d:9c:94:b9:51:6a:d0:e8:fc:46:d2:31:07:f2:ec:
9a:81:ce:4c:f0:b1:f0:64:a7:cb:da:42:d1:32:ca:
ae:d3:d2:8e:f3:6e:ae:7b:c1:e8:19:98:56:e5:41:
09:c9:57:27:9d:98:af:1b:c3:31:7f:de:33:f3:a3:
a8:f3:25:70:77:dc:85:5d:d1:fd:9b:f1:df:8d:49:
72:03:7c:68:7b:f0:79:9a:c0:98:f4:5f:2e:be:01:
c3:d7:96:8d:58:12:35:5c:54:cc:12:1b:1d:ff:6f:
7c:90:24:ee:61:5b:03:e9:03:49:8b:67:7a:29:23:
4d:2d:9b:93:01:19:8b:5e:89:57:5e:39:56:ca:d6:
a4:6e:ca:18:3e:22:06:28:a8:20:d6:4c:21:19:2a:
bb:d4:1d:9b:b7:d2:cb:5e:48:1d:e8:62:aa:a3:da:
f0:48:f3:e3:db:64:06:e6:ad:e4:7b:38:27:9d:fa:
0e:da:bf:f7:3b:86:d8:1a:f6:84:52:4e:bd:66:b3:
8d:e8:55:fd:9d:5d:b7:ac:1b:6a:17:ce:d5:a4:bb:
25:73:6a:f0:39:8c:a9:2b:a5:4b:ce:c9:bd:b7:b9:
3d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:DB:D2:EB:FB:09:CB:42:FB:40:CF:12:4A:C3:86:0D:CE:65:F7:25
X509v3 Authority Key Identifier:
keyid:14:46:91:52:99:D8:F0:5D:BF:AD:86:3E:0D:23:04:35:A9:6F:B1:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/1446915299D8F05DBFAD863E0D230435A96FB12A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1446915299D8F05DBFAD863E0D230435A96FB12A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/3130332e3231392e362e302f32342d3234203d3e203338313537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.219.6.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:16:6a:21:7b:b8:3c:3c:3d:f3:c2:c4:64:db:f2:af:8b:03:
2a:24:f7:75:f2:5b:ab:67:5d:06:29:e5:82:0f:35:56:cc:fc:
9b:ef:3d:cb:01:ee:02:7a:e5:72:25:cd:94:cc:83:e6:de:33:
01:ff:b8:36:51:ff:23:5a:78:f1:79:70:2e:5f:f8:d6:f5:bf:
5f:bc:c9:17:06:7b:74:e4:81:86:0c:2f:ed:75:12:f0:00:63:
91:03:7d:71:af:bd:ea:93:1d:b9:19:ae:a7:2b:8f:dd:79:be:
da:e7:f0:ac:9e:46:69:69:06:de:f9:2c:52:59:64:d3:72:35:
ca:68:43:b7:0a:e4:3c:cf:23:6e:a6:4d:bd:0a:57:6f:8a:ed:
26:72:a7:d1:a4:12:45:64:b7:24:cf:ff:98:94:52:b5:2d:62:
d0:55:e5:e9:e5:86:1d:83:2a:ff:76:0c:a5:e8:41:03:80:af:
3e:1d:00:e3:de:ca:25:73:d7:c7:9d:2c:35:50:48:7c:57:87:
de:3d:34:b9:b4:45:9c:e5:50:b0:2a:5e:2c:d6:c2:90:a2:98:
6e:7f:4c:a5:8c:f3:26:19:a9:89:9e:d5:cf:66:d0:af:4e:29:
77:35:9d:4c:f2:b7:d6:2a:2f:20:79:3d:ad:83:fe:e2:89:a6:
c0:43:4f:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 06:52:08 2025 by rpki-client