Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/77742516-b459-4506-b4de-f69e193d5cde/0/3130332e3235352e3136332e302f32342d3234203d3e20313532303137.roa
File: 3130332e3235352e3136332e302f32342d3234203d3e20313532303137.roa (raw, json)
Hash identifier: O/Ne6gGbE8KI2WQ91DHMvO7hek/qG/BTRS/gMenHHIU=
Subject key identifier: 06:65:E9:14:0B:94:B7:C7:FE:5C:08:69:88:E2:84:9F:ED:09:38:67
Certificate issuer: /CN=6ED97449A90175F41CA7139C43ABDB1DE992C510
Certificate serial: 6B66D7D0C82150F553D442B9B7C673E7DA0D5408
Authority key identifier: 6E:D9:74:49:A9:01:75:F4:1C:A7:13:9C:43:AB:DB:1D:E9:92:C5:10
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6ED97449A90175F41CA7139C43ABDB1DE992C510.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/77742516-b459-4506-b4de-f69e193d5cde/0/3130332e3235352e3136332e302f32342d3234203d3e20313532303137.roa
Signing time: Thu 26 Dec 2024 05:00:00 +0000
ROA not before: Thu 26 Dec 2024 04:55:00 +0000
ROA not after: Thu 25 Dec 2025 05:00:00 +0000
asID: 152017
IP address blocks: 103.255.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/77742516-b459-4506-b4de-f69e193d5cde/0/6ED97449A90175F41CA7139C43ABDB1DE992C510.crl
rsync://repo-rpki.idnic.net/repo/77742516-b459-4506-b4de-f69e193d5cde/0/6ED97449A90175F41CA7139C43ABDB1DE992C510.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6ED97449A90175F41CA7139C43ABDB1DE992C510.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 13 Apr 2025 16:05:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:66:d7:d0:c8:21:50:f5:53:d4:42:b9:b7:c6:73:e7:da:0d:54:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ED97449A90175F41CA7139C43ABDB1DE992C510
Validity
Not Before: Dec 26 04:55:00 2024 GMT
Not After : Dec 25 05:00:00 2025 GMT
Subject: CN=0665E9140B94B7C7FE5C086988E2849FED093867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:04:ce:7b:d7:d2:f3:b5:6f:e7:54:7c:5a:16:
4d:60:67:e6:20:32:66:62:e2:09:12:d8:a5:cd:bc:
9b:5c:02:d3:f4:d2:cc:c4:85:47:1c:c9:27:e4:6d:
8b:1c:f3:dd:ee:6a:9c:f1:4e:76:8d:2e:54:e6:e6:
c5:46:76:3b:1d:64:21:ad:8d:80:e6:fa:e8:77:35:
b4:1f:08:af:98:70:ca:7f:1f:89:d7:27:d4:64:ee:
6e:d3:e4:83:e4:12:3a:df:c7:be:15:f7:a8:c4:f4:
49:f4:ff:de:dc:66:4b:28:2c:96:b6:e2:43:ce:f3:
e3:92:59:95:9b:b7:dd:4e:ac:70:30:fc:56:de:25:
28:2b:e2:d1:9f:53:cf:63:d5:12:2b:8e:79:81:77:
de:7d:56:2b:ef:c8:1c:0e:5c:4d:57:15:bc:47:02:
69:92:05:8c:35:71:b0:90:f4:5a:d6:3a:20:93:4e:
24:b1:dd:ec:65:8c:52:8a:ca:73:5e:ee:39:b1:9a:
68:98:bd:01:be:b0:97:31:e0:dd:96:1d:35:60:52:
27:d0:27:59:48:b0:69:fa:b5:dc:48:86:85:81:fd:
17:7a:01:ba:50:f4:b6:d8:92:dd:6a:a9:3c:e4:eb:
98:d6:23:2a:a7:72:e3:08:72:4a:44:1f:fd:d8:28:
f7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:65:E9:14:0B:94:B7:C7:FE:5C:08:69:88:E2:84:9F:ED:09:38:67
X509v3 Authority Key Identifier:
keyid:6E:D9:74:49:A9:01:75:F4:1C:A7:13:9C:43:AB:DB:1D:E9:92:C5:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/77742516-b459-4506-b4de-f69e193d5cde/0/6ED97449A90175F41CA7139C43ABDB1DE992C510.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6ED97449A90175F41CA7139C43ABDB1DE992C510.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/77742516-b459-4506-b4de-f69e193d5cde/0/3130332e3235352e3136332e302f32342d3234203d3e20313532303137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.255.163.0/24
Signature Algorithm: sha256WithRSAEncryption
16:6c:66:ed:cb:6d:5c:50:99:7c:4e:4c:48:76:24:74:ab:c4:
42:45:84:f5:57:8e:f2:c3:35:24:a9:cc:ba:5e:7d:b9:0d:18:
75:bb:ce:16:42:56:7c:47:a2:50:b6:7b:75:99:67:64:3e:35:
97:a3:e8:16:b8:d3:e9:a2:a9:97:08:ad:75:c8:ef:6c:ab:e0:
0c:62:f5:e4:d9:cd:fe:85:0e:03:05:8b:5c:cc:da:f6:f6:3d:
bd:7d:6c:26:31:da:22:5d:30:1c:e7:c8:28:aa:62:9a:51:c3:
07:cd:ec:00:54:79:32:dc:d4:85:69:4c:33:0d:db:08:ef:87:
94:44:2c:89:b4:13:27:f4:37:75:b4:5b:58:9d:bd:34:9b:13:
6b:4c:1f:3d:32:75:7d:48:15:46:c8:0e:2e:3d:53:62:dc:0d:
0b:a2:67:df:c6:67:82:e8:2d:e3:34:cf:17:5f:4b:8f:69:c1:
2a:30:4c:c5:8c:3b:c9:fb:de:66:b1:e3:46:a4:c0:f5:84:a8:
30:1d:d5:07:e1:da:9f:70:0c:eb:67:a6:60:33:3e:c3:43:a7:
a4:6e:ed:d8:a3:44:6a:98:ba:34:55:ce:ca:58:ac:4b:fe:67:
c3:f4:a2:2e:e6:05:b2:e8:3e:8c:51:be:30:a7:4f:a2:4c:f3:
ad:77:1e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 06:46:28 2025 by rpki-client