
Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/3130332e3233342e3231382e302f32342d3234203d3e203338373638.roa
File: 3130332e3233342e3231382e302f32342d3234203d3e203338373638.roa (raw, json)
Hash identifier: h2g3sIbdso4gRFxWGiYO/f5Y9InbwTXbbshwWzTUD+Q=
Subject key identifier: 6F:A0:17:74:6B:4B:3A:67:09:29:3F:E2:43:C5:1D:BB:80:FF:9E:73
Certificate issuer: /CN=FBACFC63658425B36399C4B9D0322622B8C5B7F0
Certificate serial: 046394AD0FDCAE9AD0F75CBE1D9226AFF255C059
Authority key identifier: FB:AC:FC:63:65:84:25:B3:63:99:C4:B9:D0:32:26:22:B8:C5:B7:F0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/3130332e3233342e3231382e302f32342d3234203d3e203338373638.roa
Signing time: Mon 15 Jul 2024 03:04:01 +0000
ROA not before: Mon 15 Jul 2024 02:59:01 +0000
ROA not after: Mon 14 Jul 2025 03:04:01 +0000
asID: 38768
IP address blocks: 103.234.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.crl
rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 14:11:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:63:94:ad:0f:dc:ae:9a:d0:f7:5c:be:1d:92:26:af:f2:55:c0:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FBACFC63658425B36399C4B9D0322622B8C5B7F0
Validity
Not Before: Jul 15 02:59:01 2024 GMT
Not After : Jul 14 03:04:01 2025 GMT
Subject: CN=6FA017746B4B3A6709293FE243C51DBB80FF9E73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3c:3b:aa:e7:a7:53:9a:00:ca:60:15:f4:70:
f9:f6:11:4a:e4:77:9d:37:d2:67:9a:2f:5f:31:f4:
6a:1e:a9:03:68:21:78:bb:00:40:24:07:aa:e9:56:
0e:dd:7f:23:81:39:a5:52:77:ed:be:0c:e7:eb:fd:
2e:81:1e:fb:a3:ab:29:ae:d6:2b:c5:48:9d:2e:0c:
6b:73:1f:9e:0b:30:c4:55:2a:fc:9c:44:2b:99:2d:
ea:32:fd:89:30:32:92:bf:f9:d1:69:d8:45:f4:8a:
f5:f8:9c:f1:d0:15:ff:10:26:98:ee:36:f9:c5:64:
1f:42:22:2c:cd:74:83:44:10:ec:f8:40:99:c2:29:
24:63:9f:86:7f:d1:8f:53:ec:04:af:be:28:14:3f:
94:fa:f1:09:2f:08:ae:f4:f6:66:0e:04:6f:5a:9a:
f9:14:23:8f:a6:98:3c:af:de:63:b5:d5:6f:ec:42:
cd:6c:77:e8:84:73:d2:72:89:95:d4:30:3d:5c:83:
d3:fe:66:c1:0c:ce:13:97:f6:0d:e8:06:53:bc:b1:
04:30:aa:54:08:1e:4d:06:6e:bb:d7:f8:48:3b:3b:
28:de:2b:02:a9:ea:9d:5a:c4:93:32:cd:d2:8a:0f:
4f:1d:57:98:05:e8:58:73:4c:08:e8:65:91:50:ca:
7d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A0:17:74:6B:4B:3A:67:09:29:3F:E2:43:C5:1D:BB:80:FF:9E:73
X509v3 Authority Key Identifier:
keyid:FB:AC:FC:63:65:84:25:B3:63:99:C4:B9:D0:32:26:22:B8:C5:B7:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/3130332e3233342e3231382e302f32342d3234203d3e203338373638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.234.218.0/24
Signature Algorithm: sha256WithRSAEncryption
80:ca:70:17:3a:7a:29:da:ab:6c:54:16:e6:6a:a7:99:30:0b:
46:19:9b:aa:9b:6b:06:f3:d9:5b:20:e0:ec:e1:2a:a9:7a:c1:
0b:fb:35:ea:81:cd:57:c1:dc:1c:c2:24:84:f1:cb:f4:93:99:
fb:87:29:30:ae:2f:7f:eb:0c:ae:d2:8b:68:41:0c:22:8d:46:
b7:17:6a:56:a0:0d:5f:de:2c:93:63:ef:f6:ba:38:5a:1a:53:
22:98:62:20:8c:94:e4:f0:1e:f6:8d:4e:9d:21:d5:1b:3d:03:
43:63:76:0c:56:9a:95:fa:f7:97:2d:6c:ad:38:a0:4c:e8:29:
90:4e:52:aa:81:1a:11:c7:d6:b6:1d:23:4e:95:d3:ba:d0:ef:
4a:51:40:80:57:e8:05:a5:85:9a:63:55:8e:1b:5a:f8:05:90:
ab:29:f7:0c:5d:c8:c2:1b:6b:7a:0f:52:8a:b2:30:fa:8e:92:
e9:72:96:2b:ea:3c:f0:0d:38:b8:e5:a4:3d:68:2d:eb:25:d2:
ba:b3:d1:3c:d0:75:35:e9:c4:f4:e1:88:4d:8f:5e:88:db:86:
f6:9c:99:14:97:93:56:43:f5:16:c9:b1:95:16:c7:0e:11:86:
f3:98:f4:f3:9e:83:dc:fa:98:94:e0:03:2e:f3:32:b9:bd:84:
a8:95:6e:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 16:01:29 2025 by rpki-client