Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138077.roa
File: AS138077.roa (raw, json)
Hash identifier: uMuIKHN/8OdC3DwfVqYDQcMS5mHxq8glxkymTLjiV7U=
Subject key identifier: C6:EE:97:0E:06:85:AB:69:77:91:4A:62:B7:D3:5F:87:94:B9:EE:56
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 147CE336E961ECE3891F7B3A45A52BAE7EC20CE7
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138077.roa
Signing time: Fri 14 Feb 2025 14:23:53 +0000
ROA not before: Fri 14 Feb 2025 14:18:53 +0000
ROA not after: Fri 13 Feb 2026 14:23:53 +0000
asID: 138077
IP address blocks: 103.7.187.0/24 maxlen: 24
103.52.2.0/23 maxlen: 24
103.87.70.0/23 maxlen: 24
103.140.20.0/23 maxlen: 24
103.160.54.0/23 maxlen: 24
103.160.154.0/23 maxlen: 24
103.169.204.0/23 maxlen: 24
117.103.116.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 19 Feb 2025 06:34:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:7c:e3:36:e9:61:ec:e3:89:1f:7b:3a:45:a5:2b:ae:7e:c2:0c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 14 14:18:53 2025 GMT
Not After : Feb 13 14:23:53 2026 GMT
Subject: CN=C6EE970E0685AB6977914A62B7D35F8794B9EE56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:54:8e:8f:a4:df:15:7f:0b:49:a4:8c:77:b4:
ac:b7:2c:bb:6f:1a:0f:c4:61:01:2b:38:b8:d5:33:
d4:b3:83:f5:4f:bc:ef:79:26:94:cc:5f:96:95:ef:
ad:58:04:67:74:1b:d4:14:d4:07:b4:1d:49:de:f6:
d8:4b:51:35:02:ac:58:74:4f:a2:75:5a:3c:69:a6:
36:e3:41:7b:63:44:9d:43:cd:33:2a:f2:75:e5:76:
2d:c6:0e:3f:96:8b:68:a3:24:b0:f2:dc:41:ba:81:
4a:e5:22:c2:c3:03:3b:fa:7e:a5:5b:d4:64:c7:48:
2b:9c:8e:e6:ca:52:2c:8a:4c:d0:d5:25:77:39:bb:
54:a0:5c:c3:5d:6d:c4:c1:9e:32:d0:d8:6d:77:01:
8d:a7:77:f6:e5:38:ea:62:e1:3a:a5:37:36:aa:d0:
8b:10:d9:55:23:e2:ed:6f:b7:40:9b:df:eb:56:5e:
c5:9d:d3:ff:30:60:af:07:55:95:63:22:de:9e:c1:
be:27:73:c7:ee:14:ed:0e:f3:64:be:7e:4e:90:cc:
b3:3e:88:dc:93:d2:21:7f:2a:76:fa:f7:0e:5c:61:
1a:39:9a:d8:aa:da:a6:df:75:d2:22:34:29:17:a9:
09:d9:28:fa:13:e7:50:b9:39:57:2d:19:ba:2a:e8:
7d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:EE:97:0E:06:85:AB:69:77:91:4A:62:B7:D3:5F:87:94:B9:EE:56
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138077.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.7.187.0/24
103.52.2.0/23
103.87.70.0/23
103.140.20.0/23
103.160.54.0/23
103.160.154.0/23
103.169.204.0/23
117.103.116.0/23
Signature Algorithm: sha256WithRSAEncryption
17:10:be:fd:b7:71:d0:c2:16:9f:80:8e:7a:87:41:32:ef:d0:
02:e8:1b:de:ae:d0:8a:b0:d3:d4:5f:3e:07:1a:16:4c:12:9e:
5d:ad:36:6d:00:73:3c:03:d3:7a:1d:48:7e:e9:63:98:1c:8b:
6e:af:ae:2e:ba:26:8d:e3:65:d4:e5:59:55:bb:77:ec:4d:d0:
7f:5d:07:9c:29:82:ab:92:de:4b:c5:17:95:86:1d:6e:93:5b:
25:1c:b7:d4:aa:a3:93:d7:89:f2:6c:55:e5:83:a8:16:8a:fb:
f3:b7:00:1f:7a:4f:15:15:d0:1f:8b:a7:ef:e5:33:d9:4a:f8:
fc:53:f4:14:69:75:5a:82:7e:32:d3:45:f5:ec:84:a9:0e:21:
0c:60:b6:2b:fb:cb:64:6b:39:31:78:4f:71:2d:cf:7b:2b:94:
f4:a7:c1:f2:e4:f8:e1:27:c8:6d:79:fa:a3:13:6a:82:2e:15:
cf:30:ac:73:53:50:2a:a8:72:e5:32:5c:fc:32:ed:b3:4d:c0:
ee:f2:c9:60:7a:a8:92:03:3d:c5:04:84:2d:c4:b3:01:ae:8c:
ec:3a:6a:ba:f7:5f:47:6f:e1:04:4e:b4:57:80:dc:1f:7f:62:
bd:c7:4d:3e:4f:e0:16:ac:0d:cd:18:9e:15:df:6e:89:8b:d6:
42:3a:88:93
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIUFHzjNulh7OOJH3s6RaUrrn7CDOcwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIxNDE0MTg1M1oX
DTI2MDIxMzE0MjM1M1owMzExMC8GA1UEAxMoQzZFRTk3MEUwNjg1QUI2OTc3OTE0
QTYyQjdEMzVGODc5NEI5RUU1NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOBUjo+k3xV/C0mkjHe0rLcsu28aD8RhASs4uNUz1LOD9U+873kmlMxflpXv
rVgEZ3Qb1BTUB7QdSd722EtRNQKsWHRPonVaPGmmNuNBe2NEnUPNMyrydeV2LcYO
P5aLaKMksPLcQbqBSuUiwsMDO/p+pVvUZMdIK5yO5spSLIpM0NUldzm7VKBcw11t
xMGeMtDYbXcBjad39uU46mLhOqU3NqrQixDZVSPi7W+3QJvf61ZexZ3T/zBgrwdV
lWMi3p7Bvidzx+4U7Q7zZL5+TpDMsz6I3JPSIX8qdvr3DlxhGjma2Krapt910iI0
KRepCdko+hPnULk5Vy0ZuirofXcCAwEAAaOCAfowggH2MB0GA1UdDgQWBBTG7pcO
BoWraXeRSmK301+HlLnuVjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODA3Ny5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBJBggrBgEFBQcBBwEB/wQ6MDgw
NgQCAAEwMAMEAGcHuwMEAWc0AgMEAWdXRgMEAWeMFAMEAWegNgMEAWegmgMEAWep
zAMEAXVndDANBgkqhkiG9w0BAQsFAAOCAQEAFxC+/bdx0MIWn4COeodBMu/QAugb
3q7QirDT1F8+BxoWTBKeXa02bQBzPAPTeh1IfuljmByLbq+uLromjeNl1OVZVbt3
7E3Qf10HnCmCq5LeS8UXlYYdbpNbJRy31Kqjk9eJ8mxV5YOoFor787cAH3pPFRXQ
H4un7+Uz2Ur4/FP0FGl1WoJ+MtNF9eyEqQ4hDGC2K/vLZGs5MXhPcS3PeyuU9KfB
8uT44SfIbXn6oxNqgi4VzzCsc1NQKqhy5TJc/DLts03A7vLJYHqokgM9xQSELcSz
Aa6M7DpquvdfR2/hBE60V4DcH39ivcdNPk/gFqwNzRieFd9uiYvWQjqIkw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:58:18 2025 by rpki-client