Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142373.roa
File: AS142373.roa (raw, json)
Hash identifier: mThv1XspyvSb+XE5SnLTRE5MPH+xeIByhh+FNS6YNJQ=
Subject key identifier: 60:00:D8:53:40:86:F3:24:39:15:54:F5:F1:7A:DE:C6:EA:A0:4F:7E
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3E41DB6C8BD88606DE7B8F6A236B9CD8896928C4
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142373.roa
Signing time: Tue 10 Dec 2024 05:00:24 +0000
ROA not before: Tue 10 Dec 2024 04:55:24 +0000
ROA not after: Tue 09 Dec 2025 05:00:24 +0000
asID: 142373
IP address blocks: 103.171.82.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 15:30:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:41:db:6c:8b:d8:86:06:de:7b:8f:6a:23:6b:9c:d8:89:69:28:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:24 2024 GMT
Not After : Dec 9 05:00:24 2025 GMT
Subject: CN=6000D8534086F324391554F5F17ADEC6EAA04F7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c5:d3:d6:e9:01:c4:56:dd:e9:bf:0f:5e:44:
61:c8:40:08:84:46:bd:5d:24:03:78:18:dc:88:8f:
6b:bd:70:b6:65:b6:ad:43:a1:1b:f5:2b:ac:80:c4:
1b:9d:7c:9b:3d:35:2a:36:85:8b:f1:a6:4b:b2:10:
37:5b:99:1f:e7:0f:5b:20:8a:30:3c:0b:2c:6e:5e:
7a:cb:0b:5d:5c:d2:7b:d5:db:26:7a:8d:e9:05:19:
bc:8b:ac:3d:6d:0c:ac:da:85:f2:ec:f3:f4:bb:95:
14:ca:4d:7f:1c:c1:85:3b:35:c0:25:b2:1b:31:9d:
5d:59:35:92:4e:2a:26:91:ef:7f:8a:84:31:5d:2d:
4a:6f:bf:82:43:ff:be:47:55:12:d7:7d:f1:3e:94:
b8:52:7d:a3:0c:f2:b8:76:88:fc:1b:ab:af:bd:01:
f2:f4:9c:42:3f:ce:71:be:ab:58:fb:19:a5:92:68:
c9:28:65:77:74:c3:6f:71:2e:14:a6:7b:c2:d6:e8:
b4:b7:05:6b:6d:f1:1e:3a:7e:d2:86:60:03:70:10:
96:7a:1d:f5:02:c3:67:b9:bf:8f:9e:64:4e:ca:85:
d6:16:a3:72:05:3a:40:35:00:dc:d3:4c:cb:ef:3d:
f7:b4:2f:b5:fc:15:6f:de:a2:49:29:4f:e6:64:8c:
1b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:00:D8:53:40:86:F3:24:39:15:54:F5:F1:7A:DE:C6:EA:A0:4F:7E
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142373.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.171.82.0/23
Signature Algorithm: sha256WithRSAEncryption
95:b9:63:dd:74:76:c5:22:29:8b:af:0c:2f:82:c2:27:22:8b:
a0:c8:a2:22:4d:f0:93:c7:86:17:d9:e5:01:09:e6:8e:1c:3b:
e7:7c:4d:46:7f:08:c9:1f:82:a8:c8:73:c8:c3:04:69:43:34:
7e:e5:12:9f:d8:b2:fd:1d:5b:f0:1c:11:a0:1f:59:99:7e:8e:
9e:70:75:6e:b0:05:94:9b:76:bd:53:48:e6:8a:94:8e:4b:a4:
4e:1e:e5:01:c2:2e:dd:0a:43:f6:9a:90:60:a6:0e:1b:e2:87:
31:05:ab:19:dd:a8:a1:ca:db:47:0b:c0:ac:a7:7d:18:4b:25:
80:3e:d7:15:05:e1:81:b7:22:25:f5:42:90:02:97:85:36:89:
8e:f2:15:3a:a4:44:7c:41:4d:1d:8e:55:52:9b:a9:02:16:24:
01:81:f7:a4:06:f5:db:33:7b:63:7f:7f:fe:0c:50:fd:6f:cd:
f5:0a:e1:d6:73:6b:21:e6:be:56:49:3a:0e:34:ad:52:f6:83:
48:a7:16:91:de:0d:a5:b3:72:32:3d:d3:a2:b8:48:c8:81:e2:
62:9a:d3:ba:7a:5e:b0:a6:b6:3f:56:27:23:4a:c8:1f:06:f3:
39:0f:87:85:e4:f0:ff:a7:09:58:b5:32:8e:a4:3e:ed:55:6a:
be:bb:f9:74
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUPkHbbIvYhgbee49qI2uc2IlpKMQwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyNFoX
DTI1MTIwOTA1MDAyNFowMzExMC8GA1UEAxMoNjAwMEQ4NTM0MDg2RjMyNDM5MTU1
NEY1RjE3QURFQzZFQUEwNEY3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANHF09bpAcRW3em/D15EYchACIRGvV0kA3gY3IiPa71wtmW2rUOhG/UrrIDE
G518mz01KjaFi/GmS7IQN1uZH+cPWyCKMDwLLG5eessLXVzSe9XbJnqN6QUZvIus
PW0MrNqF8uzz9LuVFMpNfxzBhTs1wCWyGzGdXVk1kk4qJpHvf4qEMV0tSm+/gkP/
vkdVEtd98T6UuFJ9owzyuHaI/Burr70B8vScQj/Ocb6rWPsZpZJoyShld3TDb3Eu
FKZ7wtbotLcFa23xHjp+0oZgA3AQlnod9QLDZ7m/j55kTsqF1hajcgU6QDUA3NNM
y+8997QvtfwVb96iSSlP5mSMG6sCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRgANhT
QIbzJDkVVPXxet7G6qBPfjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM3My5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAWerUjANBgkqhkiG9w0BAQsFAAOCAQEAlblj3XR2xSIpi68ML4LC
JyKLoMiiIk3wk8eGF9nlAQnmjhw753xNRn8IyR+CqMhzyMMEaUM0fuUSn9iy/R1b
8BwRoB9ZmX6OnnB1brAFlJt2vVNI5oqUjkukTh7lAcIu3QpD9pqQYKYOG+KHMQWr
Gd2oocrbRwvArKd9GEslgD7XFQXhgbciJfVCkAKXhTaJjvIVOqREfEFNHY5VUpup
AhYkAYH3pAb12zN7Y39//gxQ/W/N9Qrh1nNrIea+Vkk6DjStUvaDSKcWkd4NpbNy
Mj3TorhIyIHiYprTunpesKa2P1YnI0rIHwbzOQ+HheTw/6cJWLUyjqQ+7VVqvrv5
dA==
-----END CERTIFICATE-----
Generated at Tue Apr 8 12:44:37 2025 by rpki-client