Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/AS24203.roa
File: AS24203.roa (raw, json)
Hash identifier: mok2PMKY5O7M3o9uqPPUgbtTTbPRtY0LFb+3gdsb9Vo=
Subject key identifier: 9B:8F:50:34:60:8A:3A:59:A6:9C:87:A7:11:D5:D2:E3:91:93:6D:53
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 6A59613B02FDBDBF68C516D029A00133330F3529
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/AS24203.roa
Signing time: Mon 22 Apr 2024 10:12:24 +0000
ROA not before: Mon 22 Apr 2024 10:07:24 +0000
ROA not after: Mon 21 Apr 2025 10:12:24 +0000
asID: 24203
IP address blocks: 112.215.0.0/16 maxlen: 16
112.215.19.0/24 maxlen: 24
112.215.23.0/24 maxlen: 24
112.215.36.0/24 maxlen: 24
112.215.44.0/24 maxlen: 24
112.215.45.0/24 maxlen: 24
112.215.47.0/24 maxlen: 24
112.215.50.0/24 maxlen: 24
112.215.60.0/24 maxlen: 24
112.215.63.0/24 maxlen: 24
112.215.64.0/24 maxlen: 24
112.215.65.0/24 maxlen: 24
112.215.66.0/24 maxlen: 24
112.215.71.0/24 maxlen: 24
112.215.79.0/24 maxlen: 24
112.215.83.0/24 maxlen: 24
112.215.84.0/24 maxlen: 24
112.215.88.0/24 maxlen: 24
112.215.101.0/24 maxlen: 24
112.215.102.0/24 maxlen: 24
112.215.103.0/24 maxlen: 24
112.215.104.0/24 maxlen: 24
112.215.122.0/24 maxlen: 24
112.215.123.0/24 maxlen: 24
112.215.124.0/24 maxlen: 24
112.215.126.0/24 maxlen: 24
112.215.127.0/24 maxlen: 24
112.215.128.0/24 maxlen: 24
112.215.133.0/24 maxlen: 24
112.215.140.0/24 maxlen: 24
112.215.145.0/24 maxlen: 24
112.215.146.0/24 maxlen: 24
112.215.147.0/24 maxlen: 24
112.215.148.0/24 maxlen: 24
112.215.149.0/24 maxlen: 24
112.215.151.0/24 maxlen: 24
112.215.152.0/24 maxlen: 24
112.215.153.0/24 maxlen: 24
112.215.154.0/24 maxlen: 24
112.215.156.0/24 maxlen: 24
112.215.157.0/24 maxlen: 24
112.215.158.0/24 maxlen: 24
112.215.160.0/24 maxlen: 24
112.215.161.0/24 maxlen: 24
112.215.165.0/24 maxlen: 24
112.215.167.0/24 maxlen: 24
112.215.168.0/24 maxlen: 24
112.215.169.0/24 maxlen: 24
112.215.170.0/24 maxlen: 24
112.215.171.0/24 maxlen: 24
112.215.172.0/24 maxlen: 24
112.215.173.0/24 maxlen: 24
112.215.174.0/24 maxlen: 24
112.215.175.0/24 maxlen: 24
112.215.179.0/24 maxlen: 24
112.215.183.0/24 maxlen: 24
112.215.184.0/24 maxlen: 24
112.215.185.0/24 maxlen: 24
112.215.198.0/24 maxlen: 24
112.215.200.0/24 maxlen: 24
112.215.201.0/24 maxlen: 24
112.215.207.0/24 maxlen: 24
112.215.208.0/24 maxlen: 24
112.215.209.0/24 maxlen: 24
112.215.210.0/24 maxlen: 24
112.215.211.0/24 maxlen: 24
112.215.212.0/24 maxlen: 24
112.215.219.0/24 maxlen: 24
112.215.220.0/24 maxlen: 24
112.215.221.0/24 maxlen: 24
112.215.222.0/24 maxlen: 24
112.215.223.0/24 maxlen: 24
112.215.224.0/24 maxlen: 24
112.215.225.0/24 maxlen: 24
112.215.226.0/24 maxlen: 24
112.215.227.0/24 maxlen: 24
112.215.228.0/24 maxlen: 24
112.215.229.0/24 maxlen: 24
112.215.230.0/24 maxlen: 24
112.215.231.0/24 maxlen: 24
112.215.232.0/24 maxlen: 24
112.215.233.0/24 maxlen: 24
112.215.234.0/24 maxlen: 24
112.215.235.0/24 maxlen: 24
112.215.236.0/24 maxlen: 24
112.215.237.0/24 maxlen: 24
112.215.238.0/24 maxlen: 24
112.215.239.0/24 maxlen: 24
112.215.240.0/24 maxlen: 24
112.215.241.0/24 maxlen: 24
112.215.242.0/24 maxlen: 24
112.215.243.0/24 maxlen: 24
112.215.244.0/24 maxlen: 24
112.215.245.0/24 maxlen: 24
112.215.246.0/24 maxlen: 24
112.215.251.0/24 maxlen: 24
112.215.252.0/24 maxlen: 24
112.215.253.0/24 maxlen: 24
202.152.240.0/24 maxlen: 24
202.152.243.0/24 maxlen: 24
203.78.112.0/20 maxlen: 20
203.78.112.0/24 maxlen: 24
203.78.114.0/24 maxlen: 24
203.78.116.0/24 maxlen: 24
203.78.117.0/24 maxlen: 24
203.78.118.0/24 maxlen: 24
203.78.119.0/24 maxlen: 24
203.78.120.0/24 maxlen: 24
203.78.121.0/24 maxlen: 24
203.78.122.0/24 maxlen: 24
203.78.123.0/24 maxlen: 24
203.78.124.0/24 maxlen: 24
203.78.125.0/24 maxlen: 24
203.78.126.0/24 maxlen: 24
2400:9800:c::/48 maxlen: 48
2400:9800:10::/48 maxlen: 48
2400:9800:12::/48 maxlen: 48
2400:9800:14::/48 maxlen: 48
2400:9800:15::/48 maxlen: 48
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 06 May 2024 03:25:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:59:61:3b:02:fd:bd:bf:68:c5:16:d0:29:a0:01:33:33:0f:35:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 22 10:07:24 2024 GMT
Not After : Apr 21 10:12:24 2025 GMT
Subject: CN=9B8F5034608A3A59A69C87A711D5D2E391936D53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9d:52:d2:9e:f0:d4:b7:13:e3:7a:47:44:29:
59:8a:3b:51:48:68:73:57:09:7a:65:f9:8c:0d:67:
43:16:4a:d4:28:c1:3e:1a:d0:60:8b:7b:3c:eb:39:
03:1c:71:f5:87:14:65:ab:a0:4c:fd:c6:55:ee:7b:
a4:fd:ee:81:f5:b8:3b:53:c1:4f:4d:56:8f:dd:a7:
8d:65:24:65:b1:44:db:c9:34:3a:3f:c0:69:1d:3e:
5f:a3:25:af:d0:c8:6d:98:eb:13:03:c3:5e:25:a2:
f5:ef:39:9c:9b:d0:d8:19:83:a9:75:2f:24:22:a2:
8f:b6:a5:ad:ed:a0:75:bb:30:b4:6d:e0:eb:30:0c:
1e:81:ba:5e:95:56:da:4e:69:6d:24:74:4e:84:fc:
b1:7e:01:e4:43:b9:94:35:f4:4a:d2:fd:83:88:f1:
11:2b:5a:5d:3f:bc:22:ba:dd:ff:fd:62:1b:76:32:
b8:bf:aa:9a:9d:53:5b:d2:8f:6d:8d:c8:31:81:4a:
f5:91:14:51:e0:b6:86:af:3d:42:7e:b6:5c:af:bf:
f2:56:c3:f8:5c:44:63:d8:0a:54:e3:85:fb:8a:b6:
97:39:0e:8e:1e:66:03:c5:3e:b4:49:8d:9d:70:6b:
0f:fc:65:1c:1e:6b:a0:15:e5:7c:d9:ae:72:38:2a:
e1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8F:50:34:60:8A:3A:59:A6:9C:87:A7:11:D5:D2:E3:91:93:6D:53
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/AS24203.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.0.0/16
202.152.240.0/24
202.152.243.0/24
203.78.112.0/20
IPv6:
2400:9800:c::/48
2400:9800:10::/48
2400:9800:12::/48
2400:9800:14::/47
Signature Algorithm: sha256WithRSAEncryption
aa:49:aa:29:0b:d0:6c:cf:e6:71:25:b7:e0:4e:04:88:45:68:
80:74:ae:30:49:46:cd:3a:5e:9f:79:e4:52:a2:02:87:26:17:
1f:a4:c4:0b:0a:ba:42:9a:e5:86:b7:57:b5:20:ee:32:75:b3:
b9:0a:9d:6f:70:4d:ed:fb:38:88:2d:85:a6:e3:8d:9f:c7:2a:
79:73:8c:a0:17:81:0d:e4:e8:57:cb:eb:78:83:af:d8:da:cc:
c4:40:c0:de:05:29:28:43:be:bf:4a:72:5b:0e:32:9d:09:82:
cf:13:a8:ba:f2:d1:08:e5:87:b6:f5:80:60:e7:67:02:2e:14:
a6:cc:6e:67:02:97:05:e3:ff:df:d8:35:b7:91:7d:cd:bb:0c:
79:a6:b0:d5:c6:1a:c3:b5:56:a7:75:cb:4b:82:b3:d2:d3:c0:
77:39:5e:ca:d1:81:63:b3:e0:ad:b9:11:99:68:3e:e7:81:41:
80:5d:2d:c9:56:8a:7c:a1:9a:8b:d2:59:4d:a9:c6:81:1f:58:
bf:f6:fe:eb:88:c8:20:8f:87:b2:58:5a:73:f6:6a:67:fe:ca:
cf:38:99:7a:cc:12:01:e9:7b:3f:5b:d3:78:3c:5e:ee:78:af:
f7:47:11:ef:ba:3e:db:f0:90:7c:03:59:d2:6a:91:54:ed:fb:
cb:cd:45:61
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUallhOwL9vb9oxRbQKaABMzMPNSkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yNDA0MjIxMDA3MjRaFw0yNTA0MjExMDEyMjRaMDMxMTAvBgNV
BAMTKDlCOEY1MDM0NjA4QTNBNTlBNjlDODdBNzExRDVEMkUzOTE5MzZENTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+nVLSnvDUtxPjekdEKVmKO1FI
aHNXCXpl+YwNZ0MWStQowT4a0GCLezzrOQMccfWHFGWroEz9xlXue6T97oH1uDtT
wU9NVo/dp41lJGWxRNvJNDo/wGkdPl+jJa/QyG2Y6xMDw14lovXvOZyb0NgZg6l1
LyQioo+2pa3toHW7MLRt4OswDB6Bul6VVtpOaW0kdE6E/LF+AeRDuZQ19ErS/YOI
8RErWl0/vCK63f/9Yht2Mri/qpqdU1vSj22NyDGBSvWRFFHgtoavPUJ+tlyvv/JW
w/hcRGPYClTjhfuKtpc5Do4eZgPFPrRJjZ1waw/8ZRwea6AV5XzZrnI4KuFxAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUm49QNGCKOlmmnIenEdXS45GTbVMwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jl
cG8tcnBraS5pZG5pYy5uZXQvcmVwby80YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04
ZDdlN2ZjMmMyMjcvMC9BUzI0MjAzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMFwGCCsGAQUFBwEHAQH/BE0wSzAdBAIAATAXAwMAcNcDBADKmPADBADKmPMD
BATLTnAwKgQCAAIwJAMHACQAmAAADAMHACQAmAAAEAMHACQAmAAAEgMHASQAmAAA
FDANBgkqhkiG9w0BAQsFAAOCAQEAqkmqKQvQbM/mcSW34E4EiEVogHSuMElGzTpe
n3nkUqIChyYXH6TECwq6QprlhrdXtSDuMnWzuQqdb3BN7fs4iC2FpuONn8cqeXOM
oBeBDeToV8vreIOv2NrMxEDA3gUpKEO+v0pyWw4ynQmCzxOouvLRCOWHtvWAYOdn
Ai4UpsxuZwKXBeP/39g1t5F9zbsMeaaw1cYaw7VWp3XLS4Kz0tPAdzleytGBY7Pg
rbkRmWg+54FBgF0tyVaKfKGai9JZTanGgR9Yv/b+64jIII+Hslhac/ZqZ/7KzziZ
eswSAel7P1vTeDxe7niv90cR77o+2/CQfANZ0mqRVO37y81FYQ==
-----END CERTIFICATE-----
Generated at Fri May 3 15:16:05 2024 by rpki-client on console-ams.rpki-client.org