Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132352e302f32342d3234203d3e20313337333136.roa
File: 3130332e3130392e3132352e302f32342d3234203d3e20313337333136.roa (raw, json)
Hash identifier: WPyESz38g5FUhna53eGOxnNN+FutNUfu/db0LFOTyWQ=
Subject key identifier: 0A:F4:1B:9A:81:98:3A:40:6E:47:DE:9D:F3:2A:DD:33:E1:79:98:6B
Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D
Certificate serial: 19F051683A37AB1A39472EA98492EEC45682B269
Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132352e302f32342d3234203d3e20313337333136.roa
Signing time: Fri 16 Aug 2024 16:00:01 +0000
ROA not before: Fri 16 Aug 2024 15:55:01 +0000
ROA not after: Fri 15 Aug 2025 16:00:01 +0000
asID: 137316
IP address blocks: 103.109.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl
rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 14:17:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:f0:51:68:3a:37:ab:1a:39:47:2e:a9:84:92:ee:c4:56:82:b2:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D
Validity
Not Before: Aug 16 15:55:01 2024 GMT
Not After : Aug 15 16:00:01 2025 GMT
Subject: CN=0AF41B9A81983A406E47DE9DF32ADD33E179986B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:73:48:99:1e:d5:e8:d0:ee:66:ed:29:2a:c2:
4a:ed:8b:ec:7f:4b:c9:2c:bb:1f:4e:d3:d9:b9:e8:
a5:04:05:d2:6a:fd:34:39:5a:58:0f:86:44:17:d0:
50:ca:00:c6:47:c5:7c:47:f8:cf:fe:fa:a4:ff:07:
df:b3:89:46:ee:b6:5e:b3:bb:67:a7:47:b4:a5:dd:
4e:26:db:3c:96:47:b6:d1:10:1f:96:07:23:01:fe:
21:8c:40:2b:06:f8:15:16:26:f2:f0:8c:40:56:b5:
de:ea:f2:4a:cf:4c:46:d8:76:43:04:24:a7:17:54:
99:d7:18:bc:43:50:1a:88:b1:8e:8d:b1:91:44:8c:
41:c6:0f:ca:f8:4a:58:e4:ff:2c:81:3c:d1:51:a2:
43:45:72:6b:41:77:2b:ff:51:90:ff:41:ee:d9:8a:
41:bb:8e:9c:ae:50:73:6f:8c:0b:19:b0:7c:16:c9:
18:71:b3:7b:ff:ef:c9:21:dc:45:33:19:fb:68:07:
7a:b0:c0:bc:f1:e2:79:74:67:0e:26:40:f7:cc:da:
a5:af:a1:97:6d:7d:d6:19:70:de:c1:80:53:0d:27:
2a:9c:2d:4a:94:99:6e:ac:f4:1c:95:d5:72:98:89:
fa:9b:e2:aa:8a:98:61:5c:ab:1e:d8:e1:41:26:91:
0a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:F4:1B:9A:81:98:3A:40:6E:47:DE:9D:F3:2A:DD:33:E1:79:98:6B
X509v3 Authority Key Identifier:
keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132352e302f32342d3234203d3e20313337333136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.109.125.0/24
Signature Algorithm: sha256WithRSAEncryption
16:64:be:f2:4f:9b:46:f2:75:89:b1:32:08:cf:26:35:d5:3c:
40:b6:e3:89:dc:2f:69:11:88:0a:3c:05:7e:8d:c6:86:0d:50:
13:5a:43:ca:b4:90:e1:00:ce:23:cb:26:66:2f:b8:c5:36:b7:
9a:03:cb:8c:d3:94:45:79:b4:49:93:3a:f0:c6:a9:9f:3b:f2:
e4:9e:c1:68:ac:69:91:8d:a0:d9:05:ac:04:13:12:03:e0:79:
78:9e:c2:39:cb:df:4f:79:3a:24:09:32:78:c9:45:25:32:8f:
ed:d5:10:94:a5:27:31:29:10:51:81:83:db:92:0e:a0:4e:82:
d5:70:24:73:78:2c:92:7c:de:f0:ee:d8:03:92:a7:54:b0:57:
84:77:8a:52:38:93:a9:44:2e:7c:64:1d:e0:21:01:80:6d:9b:
a9:44:d5:85:09:48:d2:d2:7e:76:e1:6a:de:91:92:4c:a0:f9:
b0:04:75:65:9d:62:ab:6e:a2:54:e0:94:1d:14:4c:f0:52:9f:
40:87:2b:a4:6d:03:52:78:d3:ff:bf:49:8b:dd:ac:65:e8:85:
3a:26:9a:a7:dc:b9:eb:34:1a:d3:74:77:a2:62:c7:26:bf:b7:
87:89:a0:1e:16:3e:5c:61:a9:cf:12:7c:fc:d7:27:6b:98:e6:
1f:77:f4:b3
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUGfBRaDo3qxo5Ry6phJLuxFaCsmkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZB
NUEwNjY2RDAeFw0yNDA4MTYxNTU1MDFaFw0yNTA4MTUxNjAwMDFaMDMxMTAvBgNV
BAMTKDBBRjQxQjlBODE5ODNBNDA2RTQ3REU5REYzMkFERDMzRTE3OTk4NkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCec0iZHtXo0O5m7Skqwkrti+x/
S8ksux9O09m56KUEBdJq/TQ5WlgPhkQX0FDKAMZHxXxH+M/++qT/B9+ziUbutl6z
u2enR7Sl3U4m2zyWR7bREB+WByMB/iGMQCsG+BUWJvLwjEBWtd7q8krPTEbYdkME
JKcXVJnXGLxDUBqIsY6NsZFEjEHGD8r4Sljk/yyBPNFRokNFcmtBdyv/UZD/Qe7Z
ikG7jpyuUHNvjAsZsHwWyRhxs3v/78kh3EUzGftoB3qwwLzx4nl0Zw4mQPfM2qWv
oZdtfdYZcN7BgFMNJyqcLUqUmW6s9ByV1XKYifqb4qqKmGFcqx7Y4UEmkQr5AgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUCvQbmoGYOkBuR96d8yrdM+F5mGswHwYDVR0j
BBgwFoAUezWDSkcEx+2F1iIS/GLEb6WgZm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
Y2M0NjJhNS04Zjc0LTQyYWYtODgzYi01ZTg5ZWU1ZjJkZjMvMC83QjM1ODM0QTQ3
MDRDN0VEODVENjIyMTJGQzYyQzQ2RkE1QTA2NjZELmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZBNUEw
NjY2RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04
ODNiLTVlODllZTVmMmRmMy8wLzMxMzAzMzJlMzEzMDM5MmUzMTMyMzUyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMxMzYucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnbX0wDQYJ
KoZIhvcNAQELBQADggEBABZkvvJPm0bydYmxMgjPJjXVPEC244ncL2kRiAo8BX6N
xoYNUBNaQ8q0kOEAziPLJmYvuMU2t5oDy4zTlEV5tEmTOvDGqZ878uSewWisaZGN
oNkFrAQTEgPgeXiewjnL3095OiQJMnjJRSUyj+3VEJSlJzEpEFGBg9uSDqBOgtVw
JHN4LJJ83vDu2AOSp1SwV4R3ilI4k6lELnxkHeAhAYBtm6lE1YUJSNLSfnbhat6R
kkyg+bAEdWWdYqtuolTglB0UTPBSn0CHK6RtA1J40/+/SYvdrGXohTommqfcues0
GtN0d6Jixya/t4eJoB4WPlxhqc8SfPzXJ2uY5h939LM=
-----END CERTIFICATE-----
Generated at Thu Apr 10 06:40:50 2025 by rpki-client