Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136119.roa
File: AS136119.roa (raw, json)
Hash identifier: Emw7XFfaAjLb4VjuT9GKt+d612wny6kUw8r/D76APVg=
Subject key identifier: 69:FC:AD:6E:EE:D0:92:9B:91:A6:4E:C1:D5:C2:BE:B5:9C:75:4F:4D
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 6E526DDF9C68F99F4DB03883258AAF18EA21862A
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136119.roa
Signing time: Thu 19 Sep 2024 03:00:00 +0000
ROA not before: Thu 19 Sep 2024 02:55:00 +0000
ROA not after: Thu 18 Sep 2025 03:00:00 +0000
asID: 136119
IP address blocks: 103.119.140.0/22 maxlen: 24
103.119.144.0/22 maxlen: 24
103.138.40.0/23 maxlen: 24
103.138.42.0/23 maxlen: 24
103.138.46.0/23 maxlen: 24
103.138.48.0/23 maxlen: 24
175.111.108.0/22 maxlen: 24
202.10.60.0/24 maxlen: 24
202.10.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 22:23:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:52:6d:df:9c:68:f9:9f:4d:b0:38:83:25:8a:af:18:ea:21:86:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Sep 19 02:55:00 2024 GMT
Not After : Sep 18 03:00:00 2025 GMT
Subject: CN=69FCAD6EEED0929B91A64EC1D5C2BEB59C754F4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e4:04:50:38:ce:2f:ba:0a:37:f3:70:a8:3b:
94:58:fb:d2:42:49:cc:26:be:fe:86:9d:58:b2:06:
d6:5b:34:72:31:3b:4b:86:86:9f:4e:5e:9b:79:78:
02:ca:99:47:98:b8:e9:57:98:e0:a0:79:6c:4f:ad:
35:bc:37:fc:17:60:4f:6d:11:eb:84:aa:ca:9e:5e:
c6:4c:b4:5a:96:4b:d5:e2:f5:ab:e4:53:49:d3:07:
02:f6:23:93:15:5c:db:25:3d:b6:e9:67:37:66:6f:
04:7a:88:a5:59:87:f6:e9:6f:71:d5:06:0d:46:08:
4f:96:9e:f6:81:aa:7e:c4:65:27:d1:0d:44:f5:c0:
f5:73:54:48:e6:4c:c2:dd:8e:72:07:af:7a:40:8f:
6a:90:bb:51:79:44:99:df:17:14:7a:53:22:84:0d:
21:a6:7e:8b:fb:0b:9f:f1:7a:95:51:c6:e0:b9:5c:
ec:3f:a5:2a:f1:7d:04:6d:06:16:a3:6c:91:65:43:
7b:f7:c6:ea:21:84:95:48:dc:e2:c2:1f:bc:49:29:
a6:2d:04:ce:ce:5c:fa:5a:c5:76:51:ff:96:22:ae:
80:47:f5:f0:d7:4b:ad:3c:47:d4:bf:86:49:ae:6b:
e3:b3:b8:98:e4:1d:23:b8:c7:56:8b:5f:54:83:67:
59:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:FC:AD:6E:EE:D0:92:9B:91:A6:4E:C1:D5:C2:BE:B5:9C:75:4F:4D
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136119.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.119.140.0-103.119.147.255
103.138.40.0/22
103.138.46.0-103.138.49.255
175.111.108.0/22
202.10.60.0/23
Signature Algorithm: sha256WithRSAEncryption
50:fc:41:58:11:5b:8b:55:4f:47:9b:73:47:2f:1e:c3:66:c7:
ff:41:18:67:9c:ac:ef:63:42:17:0e:a4:8f:61:89:75:e4:bf:
09:65:16:b4:4f:fc:10:05:ca:5d:d7:5b:3d:79:9f:7d:e3:a8:
ee:f5:d4:01:f1:c0:21:54:5b:d9:70:41:89:55:f4:d8:03:0f:
63:39:45:75:eb:29:df:dc:a2:ce:00:cd:3a:cf:b8:17:46:9f:
53:b6:75:14:df:62:81:7f:b6:f3:74:6d:18:4b:5a:74:9c:eb:
c5:5f:50:cd:3b:11:e1:e7:d6:0d:de:ad:d9:6c:74:9f:08:76:
50:51:3d:53:34:56:9f:ca:19:50:92:48:06:cc:46:63:a4:f7:
6c:37:4e:2c:3b:4f:4b:70:e2:82:f6:96:6b:53:7d:53:20:ab:
70:4b:94:5a:22:6b:99:87:93:a9:e9:29:58:11:1a:ae:58:69:
ec:d9:6a:ea:11:52:f4:ab:3e:b1:e4:91:e5:e6:ad:13:d4:a7:
53:b0:25:27:a3:09:78:40:65:1b:e2:43:31:79:69:48:5f:f2:
a6:ca:0a:f0:6d:e1:35:bf:50:00:85:a8:7f:ac:00:af:d4:32:
86:63:9e:39:4f:b1:5a:a5:b7:21:21:4d:bd:a8:46:2e:60:29:
c5:a5:3c:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 13:01:53 2024 by rpki-client on console-fra.rpki-client.org