Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141898.roa
File: AS141898.roa (raw, json)
Hash identifier: lq2JEl0eunQb1a0hoA17gYpbbmpzCTmBCwJTRj0V+A0=
Subject key identifier: 82:DA:A6:F0:4C:96:9A:85:32:F4:35:75:E2:21:43:79:04:35:96:5D
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 628E65341F13F5EE927177B9D8CF4E3E5BA5C868
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141898.roa
Signing time: Mon 27 May 2024 07:00:00 +0000
ROA not before: Mon 27 May 2024 06:55:00 +0000
ROA not after: Mon 26 May 2025 07:00:00 +0000
asID: 141898
IP address blocks: 103.51.206.0/23 maxlen: 24
103.52.110.0/23 maxlen: 24
103.164.12.0/23 maxlen: 24
103.177.176.0/23 maxlen: 24
103.184.52.0/23 maxlen: 24
103.206.72.0/23 maxlen: 24
202.180.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 25 Nov 2024 20:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:8e:65:34:1f:13:f5:ee:92:71:77:b9:d8:cf:4e:3e:5b:a5:c8:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: May 27 06:55:00 2024 GMT
Not After : May 26 07:00:00 2025 GMT
Subject: CN=82DAA6F04C969A8532F43575E22143790435965D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e5:ea:a0:ef:ee:11:ac:06:ca:b9:5b:6b:91:
22:f7:d7:a4:8d:8b:43:12:2b:bf:60:ce:8d:cb:5b:
14:ae:d1:9e:b4:8a:1b:d2:ce:08:9c:25:62:7f:87:
1e:58:d7:2b:2b:7c:7e:fb:07:ca:95:27:68:34:5c:
bf:ab:1f:85:b4:2a:e9:60:e9:5f:b4:e2:00:a9:b1:
6a:3f:79:dc:b0:35:34:d6:e1:10:ab:62:74:a4:94:
86:48:05:4b:86:95:4c:a7:7b:d9:7c:d5:2c:40:7b:
4b:0e:1b:fd:b4:e0:a6:89:3a:d7:20:eb:09:35:6d:
27:96:ab:37:5d:c6:14:78:e5:83:c0:cd:75:76:35:
74:de:f7:b3:86:e3:04:e5:32:1f:22:6a:e6:ad:41:
64:56:b8:52:4e:90:b9:58:f8:53:b6:17:b6:77:67:
d5:cb:79:86:b3:40:a4:54:b7:70:12:41:b3:6e:05:
eb:13:27:3b:76:a6:e0:67:13:53:61:fa:aa:6f:c3:
1f:3a:8f:29:54:d7:c8:69:b2:7b:34:cb:26:05:8e:
e7:d5:40:e8:ff:7a:c0:86:a0:69:0d:94:37:2f:59:
76:af:d3:85:c9:ab:c4:52:c5:fb:94:0a:f0:4e:f0:
aa:4c:0b:01:ae:0e:fb:e8:b5:aa:c4:ab:3b:40:de:
9c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:DA:A6:F0:4C:96:9A:85:32:F4:35:75:E2:21:43:79:04:35:96:5D
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141898.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.51.206.0/23
103.52.110.0/23
103.164.12.0/23
103.177.176.0/23
103.184.52.0/23
103.206.72.0/23
202.180.12.0/22
Signature Algorithm: sha256WithRSAEncryption
22:a2:74:86:11:59:c3:81:c6:25:d5:c3:d2:93:67:54:9a:22:
39:34:d2:cd:72:bd:c1:cc:4a:db:97:a5:b9:d0:7a:70:5e:71:
2f:81:fd:60:18:48:26:8e:d8:11:87:c2:e1:02:33:25:85:59:
87:df:35:0d:b0:cb:4f:3f:b2:58:7f:e2:8b:f8:b3:fc:d0:54:
0a:ed:ea:e9:b7:c2:31:73:eb:88:c7:32:9c:b4:b0:85:e0:c8:
63:ed:b2:a2:84:d5:90:6e:96:31:bc:da:01:53:ff:b1:62:0f:
da:95:4e:0b:ef:13:a3:d7:e8:8a:61:89:e9:92:7b:24:4c:0b:
19:bd:b5:c0:39:97:22:34:5a:63:6f:ff:73:88:e9:83:13:37:
9b:16:a6:e5:97:0f:dd:aa:56:32:8e:8f:2f:78:82:f7:e6:8d:
a1:19:c4:61:65:73:31:5b:b1:fa:a9:10:64:13:2b:a2:f0:2a:
2e:c3:03:3c:c0:9f:50:2c:80:ae:b3:b9:e8:83:42:32:8f:9d:
6f:62:1e:63:c4:00:69:ac:a8:a3:d7:6f:80:3d:b4:0d:10:a5:
cc:57:42:3c:41:bc:cd:76:b7:6a:47:be:65:42:8b:72:18:52:
5e:fa:79:61:5e:bf:7e:c4:e8:a7:8a:f5:2d:5d:58:fe:99:8a:
f9:d0:82:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:14:25 2024 by rpki-client on console-fra.rpki-client.org