Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141898.roa
File: AS141898.roa (raw, json)
Hash identifier: 46ZEPMMCezze3NREcBrv5NtDRHw/alZS+A0lFZPQ+o8=
Subject key identifier: E0:D0:CA:4A:36:58:2B:8E:68:87:AC:15:D3:F2:DA:5A:07:7E:5B:D9
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 54DE934828F5C527D5C80C0D1D255022572512EA
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141898.roa
Signing time: Mon 26 Jun 2023 06:44:35 +0000
ROA not before: Mon 26 Jun 2023 06:39:35 +0000
ROA not after: Mon 24 Jun 2024 06:44:35 +0000
asID: 141898
IP address blocks: 103.51.206.0/23 maxlen: 24
103.52.110.0/23 maxlen: 24
103.164.12.0/23 maxlen: 24
103.177.176.0/23 maxlen: 24
103.184.52.0/23 maxlen: 24
103.206.72.0/23 maxlen: 24
202.180.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 06 May 2024 03:25:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:de:93:48:28:f5:c5:27:d5:c8:0c:0d:1d:25:50:22:57:25:12:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jun 26 06:39:35 2023 GMT
Not After : Jun 24 06:44:35 2024 GMT
Subject: CN=E0D0CA4A36582B8E6887AC15D3F2DA5A077E5BD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b5:61:f7:9d:5d:4d:0c:43:48:9b:83:0d:19:
97:90:d5:67:f3:2d:a2:fe:07:1c:8e:9f:56:51:44:
41:77:73:b4:d8:33:aa:8b:24:45:f1:8b:0b:95:58:
1e:ee:ef:bd:ab:27:d3:c6:21:f3:af:a0:75:34:65:
b3:0b:99:00:e0:f0:97:8b:af:9b:2f:d1:c9:49:68:
f3:b5:b6:b3:47:b0:ea:7c:92:4a:52:93:dd:1c:4f:
ea:63:7e:e4:e8:a3:06:81:2a:9d:19:23:c7:36:ba:
1e:a9:91:3e:0e:e0:49:59:44:eb:f9:5a:cb:c5:bd:
21:77:c6:9c:0a:9d:1f:c8:32:6c:ad:55:1d:64:25:
7a:1d:4a:b1:fb:61:74:fc:34:d4:74:98:0c:17:c9:
59:84:57:ec:d5:0f:76:c8:27:3e:89:d4:28:b7:68:
80:1e:0b:3b:39:b2:ca:eb:cf:05:4e:c1:86:d4:44:
28:3b:94:48:e2:31:b7:b5:ed:d6:a8:db:8d:cf:3b:
3b:84:b8:13:4c:a5:63:f4:31:99:56:10:e4:85:43:
75:be:bb:4c:b4:73:f5:de:ad:61:79:d2:c5:5b:07:
45:48:79:fe:ff:00:52:6a:59:b9:f6:d2:7c:f9:16:
24:8e:d0:80:e9:57:72:fe:1f:0f:3b:66:d0:0e:7d:
6f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D0:CA:4A:36:58:2B:8E:68:87:AC:15:D3:F2:DA:5A:07:7E:5B:D9
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141898.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.51.206.0/23
103.52.110.0/23
103.164.12.0/23
103.177.176.0/23
103.184.52.0/23
103.206.72.0/23
202.180.12.0/22
Signature Algorithm: sha256WithRSAEncryption
61:c0:c5:7a:99:33:38:9b:14:d2:80:af:5b:49:b9:19:f4:fd:
04:cc:ab:e7:f7:68:9c:37:57:24:7b:a7:d7:42:40:a7:d1:7f:
50:bb:d6:0c:60:a7:fd:2c:65:fe:ad:ed:5e:99:b4:57:3b:3a:
be:b0:d1:34:de:3b:2b:15:ac:fb:c9:18:3a:d3:cd:f6:a6:d1:
85:47:a1:c0:41:fe:9f:08:c4:ee:1d:f8:6c:9c:82:55:46:c4:
94:52:ec:e9:59:f6:49:dd:7b:ab:fa:0b:94:98:9e:af:62:06:
7a:17:bd:96:41:dd:d1:f4:be:33:d7:3c:8a:4d:91:a2:89:4c:
03:2c:33:46:0b:e4:9b:1a:78:2d:c5:47:51:6d:ba:e9:39:52:
4f:7e:3a:88:bd:ad:ae:8d:ee:1b:8d:44:4a:c5:f4:59:fe:c5:
3c:ec:8e:e1:c9:06:bd:cf:2b:bf:cd:a4:7a:fc:af:17:c5:32:
93:b5:8b:8d:ac:a4:99:0f:39:b2:3a:db:35:9e:7c:c3:c3:25:
00:6b:3a:66:5b:87:39:39:2f:91:64:be:e1:e2:61:9d:59:f9:
e0:c0:8f:77:b0:95:10:d9:3f:5b:c3:35:34:f4:fb:ce:eb:4b:
f8:7f:fe:10:ec:36:06:59:b6:93:45:bf:23:ba:8a:08:cb:ee:
fb:0a:cc:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:08:30 2024 by rpki-client on console-ams.rpki-client.org