Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141642.roa
File: AS141642.roa (raw, json)
Hash identifier: I2LIptc33z0xTRKaUZArPbj9Ie8tcu7APSChLh80PMc=
Subject key identifier: 3D:BE:DB:33:00:A4:7D:61:BA:82:8D:94:30:BD:10:74:AF:07:A4:F3
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2104A9F7DF27B0B5F2A0FB303314C9B1EDEDBF54
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141642.roa
Signing time: Fri 22 Dec 2023 02:14:32 +0000
ROA not before: Fri 22 Dec 2023 02:09:32 +0000
ROA not after: Fri 20 Dec 2024 02:14:32 +0000
asID: 141642
IP address blocks: 36.50.92.0/24 maxlen: 24
36.50.109.0/24 maxlen: 24
103.190.170.0/23 maxlen: 24
103.202.226.0/24 maxlen: 24
2401:13e0::/32 maxlen: 48
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 May 2024 18:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:04:a9:f7:df:27:b0:b5:f2:a0:fb:30:33:14:c9:b1:ed:ed:bf:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Dec 22 02:09:32 2023 GMT
Not After : Dec 20 02:14:32 2024 GMT
Subject: CN=3DBEDB3300A47D61BA828D9430BD1074AF07A4F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c1:c8:22:fc:01:d1:dc:0b:9a:4b:6f:91:21:
99:e5:6f:c6:a8:e6:5c:49:10:2b:12:21:67:43:a1:
87:18:21:a7:4a:d1:0d:12:eb:fd:c8:86:44:9a:e2:
62:81:eb:fd:76:be:16:be:4c:2f:c3:a8:1d:c5:a4:
89:5a:bc:54:07:51:1d:7d:1b:ad:18:62:97:f5:4f:
8e:80:b8:c6:bf:6b:86:f5:b5:48:a7:e7:41:b3:42:
8f:c1:35:43:63:4d:79:d7:44:fe:86:21:2b:f4:65:
5d:76:0c:1f:94:fc:61:3d:69:ea:26:5c:75:fc:cc:
e8:7c:dc:c7:da:1e:4f:37:42:2a:cc:e4:79:7a:0d:
b9:20:d3:f8:5e:f1:33:77:98:c1:fb:b5:03:2b:e7:
15:c2:73:f9:46:76:88:74:d3:4d:ea:63:8a:6f:96:
1d:08:7c:9c:74:bb:94:95:8f:8c:e5:a6:c4:3a:f5:
11:c4:c1:30:77:ad:36:60:ff:2f:0c:d1:4e:36:45:
f7:0f:e8:2c:88:9c:78:90:ff:6f:33:92:24:1c:44:
fc:51:79:8d:c0:57:de:fd:cf:ae:e2:25:cb:1d:43:
a1:cf:c3:a4:73:74:26:0d:e9:41:7f:58:06:4a:cc:
3b:37:55:2e:fa:c6:f6:1a:bd:c4:93:9b:31:01:16:
ef:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:BE:DB:33:00:A4:7D:61:BA:82:8D:94:30:BD:10:74:AF:07:A4:F3
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141642.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
36.50.92.0/24
36.50.109.0/24
103.190.170.0/23
103.202.226.0/24
IPv6:
2401:13e0::/32
Signature Algorithm: sha256WithRSAEncryption
74:42:4b:f8:d8:dc:af:12:9d:bc:f6:f6:dc:5b:63:46:09:f7:
86:4d:94:65:b8:d2:ea:76:f0:9a:5b:85:4d:87:ad:eb:8c:c1:
61:46:be:5e:b9:27:65:a5:21:b7:98:2a:fa:fc:18:9d:45:fc:
2a:bf:29:29:fc:66:57:5a:48:7d:1e:9f:cb:69:f4:5f:40:61:
ed:b4:6a:51:3f:b9:9e:e9:de:c0:2a:2c:35:c0:e6:ff:28:f1:
00:ec:4d:24:a7:d9:68:3c:5d:bc:4f:1a:5d:4f:91:d1:6c:d0:
00:2c:1e:a2:c3:d4:93:0d:91:95:89:86:f6:d2:a2:0d:63:94:
89:22:d8:af:e4:74:f4:32:8d:21:ed:87:23:95:fa:b3:67:61:
24:df:91:a7:ea:6d:b9:67:db:9e:e5:f3:33:d7:e3:0f:9e:ce:
d4:4d:5c:98:aa:7e:fe:09:7a:39:0c:ea:9a:36:2b:e4:1f:7a:
03:d7:52:25:9a:ec:e1:77:05:e2:a4:45:6f:b5:64:0b:0e:d2:
ba:82:04:05:47:54:ac:64:ca:66:3f:02:9c:31:25:58:5f:b1:
99:8f:66:86:78:51:6b:03:55:ab:59:60:7c:7c:35:48:58:af:
fb:01:57:87:2f:db:7f:45:25:96:57:07:f7:d0:8b:20:26:76:
0f:30:92:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 18:12:15 2024 by rpki-client on console-fra.rpki-client.org