Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/AS24203.roa
File: AS24203.roa (raw, json)
Hash identifier: 3ctNwS0OLEagtpsog+lsYjjt5y+57xskBp0Ci+lN1S8=
Subject key identifier: CE:3C:E5:A5:8B:D0:DD:4B:EF:0A:58:56:D1:15:33:31:DE:DB:C7:AF
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 5DB4437E8BE351C578EA03167C59BA0BFE1000B8
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/AS24203.roa
Signing time: Mon 21 Jul 2025 04:48:16 +0000
ROA not before: Mon 21 Jul 2025 04:43:16 +0000
ROA not after: Mon 20 Jul 2026 04:48:16 +0000
asID: 24203
IP address blocks: 140.213.0.0/16 maxlen: 16
140.213.0.0/24 maxlen: 24
140.213.2.0/24 maxlen: 24
140.213.4.0/24 maxlen: 24
140.213.5.0/24 maxlen: 24
140.213.6.0/24 maxlen: 24
140.213.7.0/24 maxlen: 24
140.213.9.0/24 maxlen: 24
140.213.11.0/24 maxlen: 24
140.213.13.0/24 maxlen: 24
140.213.14.0/24 maxlen: 24
140.213.15.0/24 maxlen: 24
140.213.16.0/24 maxlen: 24
140.213.17.0/24 maxlen: 24
140.213.18.0/24 maxlen: 24
140.213.19.0/24 maxlen: 24
140.213.20.0/24 maxlen: 24
140.213.21.0/24 maxlen: 24
140.213.22.0/24 maxlen: 24
140.213.23.0/24 maxlen: 24
140.213.24.0/24 maxlen: 24
140.213.25.0/24 maxlen: 24
140.213.26.0/24 maxlen: 24
140.213.27.0/24 maxlen: 24
140.213.28.0/24 maxlen: 24
140.213.29.0/24 maxlen: 24
140.213.30.0/24 maxlen: 24
140.213.31.0/24 maxlen: 24
140.213.32.0/24 maxlen: 24
140.213.33.0/24 maxlen: 24
140.213.34.0/24 maxlen: 24
140.213.35.0/24 maxlen: 24
140.213.36.0/24 maxlen: 24
140.213.37.0/24 maxlen: 24
140.213.38.0/24 maxlen: 24
140.213.39.0/24 maxlen: 24
140.213.40.0/24 maxlen: 24
140.213.41.0/24 maxlen: 24
140.213.42.0/24 maxlen: 24
140.213.43.0/24 maxlen: 24
140.213.44.0/24 maxlen: 24
140.213.45.0/24 maxlen: 24
140.213.46.0/24 maxlen: 24
140.213.48.0/24 maxlen: 24
140.213.49.0/24 maxlen: 24
140.213.51.0/24 maxlen: 24
140.213.52.0/24 maxlen: 24
140.213.53.0/24 maxlen: 24
140.213.55.0/24 maxlen: 24
140.213.56.0/24 maxlen: 24
140.213.57.0/24 maxlen: 24
140.213.58.0/24 maxlen: 24
140.213.59.0/24 maxlen: 24
140.213.60.0/24 maxlen: 24
140.213.62.0/24 maxlen: 24
140.213.63.0/24 maxlen: 24
140.213.64.0/24 maxlen: 24
140.213.65.0/24 maxlen: 24
140.213.66.0/24 maxlen: 24
140.213.67.0/24 maxlen: 24
140.213.68.0/24 maxlen: 24
140.213.69.0/24 maxlen: 24
140.213.70.0/24 maxlen: 24
140.213.71.0/24 maxlen: 24
140.213.72.0/24 maxlen: 24
140.213.73.0/24 maxlen: 24
140.213.74.0/24 maxlen: 24
140.213.75.0/24 maxlen: 24
140.213.76.0/24 maxlen: 24
140.213.78.0/24 maxlen: 24
140.213.79.0/24 maxlen: 24
140.213.80.0/24 maxlen: 24
140.213.81.0/24 maxlen: 24
140.213.82.0/24 maxlen: 24
140.213.86.0/24 maxlen: 24
140.213.87.0/24 maxlen: 24
140.213.98.0/24 maxlen: 24
140.213.99.0/24 maxlen: 24
140.213.100.0/24 maxlen: 24
140.213.101.0/24 maxlen: 24
140.213.102.0/24 maxlen: 24
140.213.103.0/24 maxlen: 24
140.213.104.0/24 maxlen: 24
140.213.105.0/24 maxlen: 24
140.213.106.0/24 maxlen: 24
140.213.107.0/24 maxlen: 24
140.213.108.0/24 maxlen: 24
140.213.109.0/24 maxlen: 24
140.213.110.0/24 maxlen: 24
140.213.112.0/24 maxlen: 24
140.213.113.0/24 maxlen: 24
140.213.114.0/24 maxlen: 24
140.213.115.0/24 maxlen: 24
140.213.116.0/24 maxlen: 24
140.213.117.0/24 maxlen: 24
140.213.120.0/24 maxlen: 24
140.213.121.0/24 maxlen: 24
140.213.122.0/24 maxlen: 24
140.213.123.0/24 maxlen: 24
140.213.124.0/24 maxlen: 24
140.213.125.0/24 maxlen: 24
140.213.126.0/24 maxlen: 24
140.213.127.0/24 maxlen: 24
140.213.128.0/24 maxlen: 24
140.213.129.0/24 maxlen: 24
140.213.130.0/24 maxlen: 24
140.213.131.0/24 maxlen: 24
140.213.132.0/24 maxlen: 24
140.213.133.0/24 maxlen: 24
140.213.134.0/24 maxlen: 24
140.213.135.0/24 maxlen: 24
140.213.136.0/24 maxlen: 24
140.213.137.0/24 maxlen: 24
140.213.139.0/24 maxlen: 24
140.213.140.0/24 maxlen: 24
140.213.141.0/24 maxlen: 24
140.213.142.0/24 maxlen: 24
140.213.143.0/24 maxlen: 24
140.213.144.0/24 maxlen: 24
140.213.145.0/24 maxlen: 24
140.213.146.0/24 maxlen: 24
140.213.147.0/24 maxlen: 24
140.213.148.0/24 maxlen: 24
140.213.149.0/24 maxlen: 24
140.213.150.0/24 maxlen: 24
140.213.151.0/24 maxlen: 24
140.213.153.0/24 maxlen: 24
140.213.154.0/24 maxlen: 24
140.213.155.0/24 maxlen: 24
140.213.156.0/24 maxlen: 24
140.213.158.0/24 maxlen: 24
140.213.159.0/24 maxlen: 24
140.213.160.0/24 maxlen: 24
140.213.161.0/24 maxlen: 24
140.213.162.0/24 maxlen: 24
140.213.163.0/24 maxlen: 24
140.213.164.0/24 maxlen: 24
140.213.165.0/24 maxlen: 24
140.213.166.0/24 maxlen: 24
140.213.167.0/24 maxlen: 24
140.213.168.0/24 maxlen: 24
140.213.169.0/24 maxlen: 24
140.213.170.0/24 maxlen: 24
140.213.171.0/24 maxlen: 24
140.213.172.0/24 maxlen: 24
140.213.173.0/24 maxlen: 24
140.213.174.0/24 maxlen: 24
140.213.175.0/24 maxlen: 24
140.213.176.0/24 maxlen: 24
140.213.177.0/24 maxlen: 24
140.213.178.0/24 maxlen: 24
140.213.179.0/24 maxlen: 24
140.213.180.0/24 maxlen: 24
140.213.181.0/24 maxlen: 24
140.213.182.0/24 maxlen: 24
140.213.183.0/24 maxlen: 24
140.213.184.0/24 maxlen: 24
140.213.185.0/24 maxlen: 24
140.213.191.0/24 maxlen: 24
140.213.204.0/24 maxlen: 24
140.213.206.0/24 maxlen: 24
140.213.207.0/24 maxlen: 24
140.213.208.0/24 maxlen: 24
140.213.209.0/24 maxlen: 24
140.213.218.0/24 maxlen: 24
140.213.219.0/24 maxlen: 24
140.213.220.0/24 maxlen: 24
140.213.221.0/24 maxlen: 24
140.213.222.0/24 maxlen: 24
140.213.224.0/24 maxlen: 24
140.213.226.0/24 maxlen: 24
140.213.227.0/24 maxlen: 24
140.213.228.0/24 maxlen: 24
140.213.229.0/24 maxlen: 24
140.213.230.0/24 maxlen: 24
140.213.231.0/24 maxlen: 24
140.213.232.0/24 maxlen: 24
140.213.233.0/24 maxlen: 24
140.213.237.0/24 maxlen: 24
140.213.238.0/24 maxlen: 24
140.213.239.0/24 maxlen: 24
140.213.240.0/24 maxlen: 24
140.213.241.0/24 maxlen: 24
140.213.242.0/24 maxlen: 24
140.213.243.0/24 maxlen: 24
140.213.244.0/24 maxlen: 24
140.213.245.0/24 maxlen: 24
140.213.246.0/24 maxlen: 24
140.213.247.0/24 maxlen: 24
140.213.254.0/24 maxlen: 24
140.213.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 24 Jul 2025 08:10:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:b4:43:7e:8b:e3:51:c5:78:ea:03:16:7c:59:ba:0b:fe:10:00:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Jul 21 04:43:16 2025 GMT
Not After : Jul 20 04:48:16 2026 GMT
Subject: CN=CE3CE5A58BD0DD4BEF0A5856D1153331DEDBC7AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f8:64:75:6d:88:2e:e5:40:20:0c:4b:6b:2e:
c5:73:b8:1b:77:89:a3:cf:b1:ba:62:67:b4:dd:08:
36:8f:b8:76:97:aa:f2:d2:54:ab:e6:be:0a:9a:81:
84:74:c2:50:48:f8:15:aa:bd:66:d7:3b:76:2e:ca:
32:a7:32:56:50:d2:f9:91:b0:5e:7c:4c:40:13:eb:
87:5f:e3:aa:21:26:82:ae:a1:cc:30:b7:31:4b:43:
73:47:c0:49:78:41:ed:1a:76:b2:a8:c1:0d:c9:77:
d1:19:ec:f5:9d:bf:45:c3:3a:97:ce:c5:df:44:33:
f5:9a:a3:de:5f:80:89:21:24:64:12:15:ca:bc:63:
a4:49:df:78:f1:83:5d:59:5e:8a:06:c9:19:02:de:
96:7e:1b:c5:28:74:79:aa:d7:0d:9e:65:d6:9b:8e:
60:66:d3:ef:29:21:19:e3:80:35:d4:45:44:f8:52:
77:d7:74:be:7c:68:d7:9a:c3:b7:01:5b:df:0a:eb:
91:f6:18:28:9f:c7:7c:11:39:a9:b9:af:cd:b6:5b:
a3:b4:b1:35:7b:99:56:f6:13:5c:02:26:a5:73:53:
bb:8b:bc:24:2f:11:87:fd:eb:d5:93:a3:b9:be:98:
d9:ea:6f:f1:c8:52:fb:75:ec:12:cd:10:25:02:c3:
59:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3C:E5:A5:8B:D0:DD:4B:EF:0A:58:56:D1:15:33:31:DE:DB:C7:AF
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/AS24203.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9e:bc:5f:e0:01:87:dd:9c:94:fe:2d:d7:d4:db:55:82:87:d7:
87:db:85:5c:05:b1:74:ed:e0:ba:dc:f7:3b:de:0e:a3:67:a3:
a6:76:52:79:2e:64:14:31:33:22:bb:5f:35:da:44:e6:4e:13:
12:9c:ec:81:28:32:13:b3:61:27:11:f4:ad:88:84:9c:b8:cc:
db:ad:73:f6:fd:58:fc:49:10:27:32:23:68:0d:99:3c:fe:a0:
22:04:0a:4b:ed:81:0e:8a:b0:73:6b:95:bb:31:39:c3:a5:52:
af:ca:93:7c:ea:eb:63:9f:92:cb:55:3c:82:ab:a6:7a:5a:3d:
bc:31:9a:46:96:4e:87:06:00:c3:03:43:3c:b3:41:8e:0d:65:
9f:7b:24:11:1d:9c:76:e5:9d:79:73:87:e5:c5:5d:b0:e3:23:
74:cb:37:82:b0:cc:6d:28:9b:1f:ed:84:f1:41:ad:d2:af:20:
73:f6:fe:66:85:aa:1a:b1:dd:1e:90:ce:0b:fa:20:d8:0d:ed:
0c:09:30:cb:35:9f:8c:53:f1:f9:73:de:12:cd:f1:5d:b0:e2:
bc:1e:8b:2c:35:22:8f:ce:3f:a9:47:d1:d7:6d:b7:ae:c6:bb:
cb:95:df:7c:1b:08:75:60:b4:57:95:38:6c:59:06:e9:ac:b6:
cd:32:b1:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 04:14:30 2025 by rpki-client