Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8ed28de8-30a1-4932-b539-2238ba75930a/0/3130332e35362e38302e302f32332d3234203d3e20313532303030.roa
File: 3130332e35362e38302e302f32332d3234203d3e20313532303030.roa (raw, json)
Hash identifier: RpWiNQy8/wOeeIrDaor+sMkx5EaGWAlKmLI/at2NgT4=
Subject key identifier: 7C:3E:FD:3A:6A:B5:32:DB:A9:3A:70:BC:E6:83:EC:58:D0:67:60:FE
Certificate issuer: /CN=A2F0AF113182368555F5F0F92DC1A0EBD9895596
Certificate serial: 46635A392D1E06186ABCF482423278840C14EFF9
Authority key identifier: A2:F0:AF:11:31:82:36:85:55:F5:F0:F9:2D:C1:A0:EB:D9:89:55:96
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F0AF113182368555F5F0F92DC1A0EBD9895596.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8ed28de8-30a1-4932-b539-2238ba75930a/0/3130332e35362e38302e302f32332d3234203d3e20313532303030.roa
Signing time: Thu 05 Dec 2024 07:02:36 +0000
ROA not before: Thu 05 Dec 2024 06:57:36 +0000
ROA not after: Thu 04 Dec 2025 07:02:36 +0000
asID: 152000
IP address blocks: 103.56.80.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/8ed28de8-30a1-4932-b539-2238ba75930a/0/A2F0AF113182368555F5F0F92DC1A0EBD9895596.crl
rsync://repo-rpki.idnic.net/repo/8ed28de8-30a1-4932-b539-2238ba75930a/0/A2F0AF113182368555F5F0F92DC1A0EBD9895596.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F0AF113182368555F5F0F92DC1A0EBD9895596.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:18:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:63:5a:39:2d:1e:06:18:6a:bc:f4:82:42:32:78:84:0c:14:ef:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A2F0AF113182368555F5F0F92DC1A0EBD9895596
Validity
Not Before: Dec 5 06:57:36 2024 GMT
Not After : Dec 4 07:02:36 2025 GMT
Subject: CN=7C3EFD3A6AB532DBA93A70BCE683EC58D06760FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3a:a5:63:69:68:fb:b3:f1:b6:bd:d3:a1:81:
ad:60:36:65:d5:75:3a:9f:2f:83:bc:44:a7:9b:d1:
a4:ea:95:eb:50:10:59:1f:df:11:0a:ca:12:76:40:
fe:ca:7c:26:7c:f0:b0:25:d3:d6:f3:3c:a8:0e:f6:
4c:b9:68:14:25:0d:3e:9f:5d:41:c8:fc:6d:66:6e:
ec:b8:bd:1b:1d:5e:5a:8d:e3:1b:25:37:02:5f:56:
b2:65:c1:f8:3e:94:4a:75:b9:62:11:6f:cf:6d:8a:
c2:52:ae:40:0a:24:82:ec:ad:1b:7f:ea:58:f5:7f:
a1:18:02:f5:b7:f7:0f:49:d1:c2:a0:a0:38:b1:76:
5c:9f:5e:a4:8b:26:da:a3:d2:9b:f3:e7:f2:c8:38:
45:45:8c:a9:19:6f:55:bf:d9:d7:0c:14:8b:1f:26:
73:c4:7b:0e:58:c0:50:75:0a:c3:fb:35:48:48:fd:
bd:74:05:48:1e:47:cf:13:ad:9a:0e:01:d4:1c:4f:
50:3d:4e:11:ab:9c:37:8d:ad:f2:16:c6:92:e3:ed:
ba:dc:63:2c:91:e7:58:a4:b4:9f:7a:f9:e4:4f:ab:
9f:15:ec:83:f2:94:3f:b9:44:e3:cf:53:b0:60:db:
5a:d2:0a:9d:5d:07:76:73:90:b7:fe:b5:96:a6:12:
7c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:3E:FD:3A:6A:B5:32:DB:A9:3A:70:BC:E6:83:EC:58:D0:67:60:FE
X509v3 Authority Key Identifier:
keyid:A2:F0:AF:11:31:82:36:85:55:F5:F0:F9:2D:C1:A0:EB:D9:89:55:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8ed28de8-30a1-4932-b539-2238ba75930a/0/A2F0AF113182368555F5F0F92DC1A0EBD9895596.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F0AF113182368555F5F0F92DC1A0EBD9895596.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ed28de8-30a1-4932-b539-2238ba75930a/0/3130332e35362e38302e302f32332d3234203d3e20313532303030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.56.80.0/23
Signature Algorithm: sha256WithRSAEncryption
78:dc:7f:06:71:55:7a:bf:3f:7d:27:61:46:d6:73:86:0f:6f:
0d:d6:f2:f9:70:f4:5a:71:f0:06:0f:65:40:39:25:df:03:54:
ce:ae:be:62:da:06:04:4d:68:bf:56:46:ad:8c:9b:95:21:19:
d8:ca:9a:84:d1:33:3d:c2:98:b8:da:40:a5:b4:98:1c:51:08:
db:44:31:c7:b4:38:c5:84:90:46:5b:a4:51:72:50:cb:8f:df:
ad:21:19:12:80:7c:13:7e:89:ea:7c:84:f8:56:92:ef:0d:f9:
cc:c7:4d:ad:9b:92:d5:92:4c:7a:48:7c:d0:42:8a:24:17:9c:
63:be:41:f2:22:27:0e:0e:c1:d1:a3:84:99:d0:3c:13:01:6e:
c9:54:38:20:c7:09:05:02:3d:4d:d6:61:f5:20:e1:40:74:a6:
cd:5e:58:0b:ef:c7:72:d8:00:b9:d4:e7:92:ff:5e:1c:54:a4:
bb:2c:2b:33:6c:e8:c3:91:fa:00:7e:35:ae:07:35:8c:65:f1:
a8:46:cc:b2:ba:50:a0:c8:d3:13:87:9a:57:5c:2a:43:2a:6b:
f2:4a:64:0d:c0:b5:93:a2:22:1a:e2:df:da:35:f3:20:bd:30:
a3:67:7f:a5:6d:6f:9b:01:1d:5a:b0:4e:9e:2c:9b:51:6f:e7:
ce:0b:82:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 15:18:15 2025 by rpki-client