Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS56242.roa
File: AS56242.roa (raw, json)
Hash identifier: tSzKKpcbE6bo3w9bV3TVhMwcF8jKEriX5Wm0rnvAgIg=
Subject key identifier: 57:36:3B:1B:0A:BF:6A:1B:A6:AD:A7:03:64:C4:18:9D:A7:B6:26:21
Certificate issuer: /CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Certificate serial: 337F6CCA47C89694D32B51F5A1CAE55EF26C4EEC
Authority key identifier: 91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS56242.roa
Signing time: Tue 07 Jan 2025 10:50:06 +0000
ROA not before: Tue 07 Jan 2025 10:45:06 +0000
ROA not after: Tue 06 Jan 2026 10:50:06 +0000
asID: 56242
IP address blocks: 101.255.170.0/23 maxlen: 23
115.124.70.0/23 maxlen: 23
115.124.70.0/24 maxlen: 24
115.124.71.0/24 maxlen: 24
202.182.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl
rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 09 Apr 2025 12:14:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:7f:6c:ca:47:c8:96:94:d3:2b:51:f5:a1:ca:e5:5e:f2:6c:4e:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Validity
Not Before: Jan 7 10:45:06 2025 GMT
Not After : Jan 6 10:50:06 2026 GMT
Subject: CN=57363B1B0ABF6A1BA6ADA70364C4189DA7B62621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:5c:02:f1:bd:a7:36:8b:5a:b2:56:dc:35:4c:
5a:2a:45:3b:61:ee:d5:67:cf:40:8f:59:0c:cc:2f:
f9:37:fe:d4:8b:8a:9f:35:1a:59:20:13:1c:62:51:
e8:9b:c2:80:0e:66:99:cf:9b:d9:e3:72:15:b7:a8:
f4:b6:31:79:17:61:67:99:e1:9f:19:38:04:f2:1b:
d4:1b:10:4c:ed:19:23:57:8f:c6:e9:23:ab:46:e5:
f5:69:1c:07:da:7d:8e:71:4e:07:27:39:a4:12:ba:
84:ee:a5:ef:d6:4d:0c:b9:89:4d:1a:8a:50:cf:40:
3c:5e:02:7c:97:eb:8c:3a:d0:78:af:45:ec:fa:a7:
9b:65:fe:ad:a7:c3:31:98:8b:e1:1b:85:84:6b:40:
ee:b1:0f:c7:29:6b:1d:10:e2:a2:db:d3:9a:e9:dd:
56:bf:7c:8d:a4:8c:99:56:0c:ad:01:da:15:fa:f4:
43:05:90:dc:eb:b8:b6:0e:e2:0e:9a:2b:84:d6:8e:
27:2d:ed:38:40:66:ae:e2:34:fa:49:cc:40:d0:7a:
df:8f:2a:2b:29:af:12:16:a2:d5:9e:c9:7e:cf:ba:
bf:1e:aa:22:8b:c7:22:7e:b6:e1:8d:6a:bd:62:62:
da:bb:24:bf:f3:36:37:0d:91:9c:6b:2b:6a:bb:ac:
09:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:36:3B:1B:0A:BF:6A:1B:A6:AD:A7:03:64:C4:18:9D:A7:B6:26:21
X509v3 Authority Key Identifier:
keyid:91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS56242.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.255.170.0/23
115.124.70.0/23
202.182.49.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:c7:13:1a:93:d8:c9:56:6b:9f:26:93:ce:80:30:e1:c7:fd:
d2:13:15:58:b0:15:44:cf:93:ee:2a:ff:5a:fb:d7:8b:8f:35:
31:95:c2:de:22:9f:1b:f4:01:ff:1f:4a:d2:68:e6:a1:ab:3f:
7a:ac:49:49:88:a0:08:44:b2:29:b7:f1:81:cb:f0:d1:4e:91:
ee:40:d9:23:25:d0:ce:11:c7:f0:ea:cc:f6:2f:b4:c2:f9:7c:
96:5a:95:c2:4b:7c:32:5b:00:d0:1b:69:5b:97:c9:c3:ee:77:
fd:37:af:1f:2b:d4:ed:70:6c:97:ce:9b:cf:cf:96:42:65:ce:
87:4a:7b:f0:e5:2d:aa:da:0f:b0:ba:df:d7:6e:9a:39:14:f7:
96:28:da:2e:85:ff:4b:ed:ee:bc:44:ea:2c:d3:79:30:15:50:
5e:c3:01:af:ff:76:ac:d3:e1:8e:08:f5:98:af:7a:46:bc:6d:
4a:d8:e7:86:1f:b5:7e:d6:54:a2:cb:2d:b6:47:a5:1a:49:27:
7d:f2:46:31:bc:4d:b0:d3:f8:23:4b:bd:92:0e:6c:8b:dd:00:
81:a8:ff:6d:5e:78:88:ca:22:97:94:85:90:84:06:ee:96:95:
b3:db:78:c5:28:54:a2:68:8f:b7:06:83:f2:5a:e9:53:e9:dc:
c4:b6:81:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 10:38:56 2025 by rpki-client