Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136119.roa
File: AS136119.roa (raw, json)
Hash identifier: QW+yuVy79GOQtiklIu6d/CQi96Fm7ot4t9pTG7gnEIc=
Subject key identifier: 31:DC:21:EA:CC:7F:DD:D1:E3:58:67:68:4A:FE:00:04:D5:30:9B:ED
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3650C121188CD0F7F4CCC095331B42DF9CAF830C
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136119.roa
Signing time: Thu 19 Oct 2023 02:53:08 +0000
ROA not before: Thu 19 Oct 2023 02:48:08 +0000
ROA not after: Thu 17 Oct 2024 02:53:08 +0000
asID: 136119
IP address blocks: 103.119.140.0/22 maxlen: 24
103.119.144.0/22 maxlen: 24
103.138.40.0/23 maxlen: 24
103.138.42.0/23 maxlen: 24
103.138.46.0/23 maxlen: 24
103.138.48.0/23 maxlen: 24
175.111.108.0/22 maxlen: 24
202.10.60.0/24 maxlen: 24
202.10.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 16:39:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:50:c1:21:18:8c:d0:f7:f4:cc:c0:95:33:1b:42:df:9c:af:83:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Oct 19 02:48:08 2023 GMT
Not After : Oct 17 02:53:08 2024 GMT
Subject: CN=31DC21EACC7FDDD1E35867684AFE0004D5309BED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8e:5a:a7:57:61:9f:1a:c5:3b:ca:75:3b:0e:
e6:4c:e8:6f:b3:e0:ab:dc:e0:dd:01:e8:be:c8:3e:
11:71:2c:0f:6a:86:34:a5:21:89:4f:19:df:00:87:
22:4c:04:e3:59:97:d7:71:13:64:a5:56:21:92:94:
29:19:e4:71:6c:22:88:8b:c1:a9:d3:80:74:89:67:
5e:30:3e:36:d7:68:aa:ff:8f:33:1d:f0:5a:63:f7:
80:6a:dd:c7:bb:b5:82:d7:7c:cb:b8:dd:7d:44:50:
9e:5e:22:bd:b1:88:83:8a:63:06:59:d9:3f:6f:b5:
b4:7c:c8:c2:49:27:e0:ca:a7:12:0f:a5:9e:91:9f:
05:22:bb:30:27:03:3c:71:80:5e:e7:f1:9d:0f:70:
10:a7:8b:ee:41:27:d1:1f:72:ec:15:5d:5f:6e:2f:
38:ae:88:bb:3f:d4:63:d7:c0:7d:75:cc:ce:bf:fc:
91:2d:27:50:cc:1f:49:94:a7:50:f8:08:00:5f:ba:
62:c9:80:cc:9f:af:36:ed:b5:e3:13:72:e9:65:e9:
c6:34:d5:b6:82:94:7b:5c:64:b2:f1:cc:1e:aa:22:
0c:7e:4d:92:59:5d:76:42:1a:cd:31:a6:39:e2:51:
71:a2:98:95:f6:ef:60:5c:f0:32:74:f6:8a:6b:97:
36:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:DC:21:EA:CC:7F:DD:D1:E3:58:67:68:4A:FE:00:04:D5:30:9B:ED
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136119.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.119.140.0-103.119.147.255
103.138.40.0/22
103.138.46.0-103.138.49.255
175.111.108.0/22
202.10.60.0/23
Signature Algorithm: sha256WithRSAEncryption
98:1d:e3:67:ae:ac:35:78:76:fc:d5:4d:bf:8b:df:e4:f2:95:
cb:bd:ee:e6:34:1e:82:ef:59:17:cd:02:c8:91:97:f4:ee:70:
8f:e0:49:d0:0a:f3:73:f2:67:fa:b2:57:cd:c2:e6:36:99:5c:
87:65:4c:ef:a2:21:98:56:52:88:38:7c:e0:bd:0e:10:f7:f2:
4b:83:b0:d8:a8:16:68:ca:07:e1:f2:15:06:17:15:0a:47:5b:
1d:4b:4b:1b:b7:74:26:07:7b:d6:09:12:b1:82:2a:f6:aa:14:
67:c3:e2:55:8d:60:90:c7:44:eb:f7:c1:60:5b:3e:94:dc:0a:
35:df:be:63:88:d1:c8:d2:62:44:f0:35:e8:6e:95:05:72:7f:
38:69:47:79:8b:11:fd:72:11:74:82:21:b5:4d:f8:0d:d8:f0:
83:57:24:3d:c6:36:9f:82:2e:32:00:89:3a:c0:9a:dd:23:fa:
87:f8:7c:24:1c:07:cd:71:3a:29:66:ec:92:39:d6:0f:bb:36:
68:ad:a4:86:10:60:8f:b4:e9:7c:0a:f9:8c:6d:65:1f:73:07:
2a:cd:8e:78:64:77:3b:c7:ec:5c:f6:3b:9b:c2:78:47:41:76:
74:34:39:b1:2a:fb:89:71:37:02:72:aa:49:6a:8e:17:89:01:
50:af:d0:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 18:07:15 2024 by rpki-client on console-fra.rpki-client.org