Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38513.roa
File: AS38513.roa (raw, json)
Hash identifier: 48l/FyrJ8xTQTDj0l9VbJFEaF6i/945etbLvKwJii2M=
Subject key identifier: 38:E7:B0:1E:23:94:40:E9:22:CE:52:2D:59:9C:F6:CD:13:CD:02:CA
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 737AC5B630B69CB0E4777769490D23DD739C0C93
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38513.roa
Signing time: Wed 17 Jul 2024 06:27:01 +0000
ROA not before: Wed 17 Jul 2024 06:22:01 +0000
ROA not after: Wed 16 Jul 2025 06:27:01 +0000
asID: 38513
IP address blocks: 103.42.244.0/23 maxlen: 24
103.67.40.0/23 maxlen: 24
103.67.42.0/23 maxlen: 24
103.125.90.0/23 maxlen: 24
103.125.100.0/23 maxlen: 24
103.125.102.0/23 maxlen: 24
103.190.214.0/23 maxlen: 24
103.191.14.0/23 maxlen: 24
103.191.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 25 Nov 2024 20:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:7a:c5:b6:30:b6:9c:b0:e4:77:77:69:49:0d:23:dd:73:9c:0c:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jul 17 06:22:01 2024 GMT
Not After : Jul 16 06:27:01 2025 GMT
Subject: CN=38E7B01E239440E922CE522D599CF6CD13CD02CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f7:0d:ed:e6:ff:55:70:d3:f5:7e:51:b0:86:
b8:0c:50:83:a9:9f:18:c2:6e:4e:19:4a:51:37:3f:
16:eb:f4:ac:c9:91:f7:08:6d:88:03:b2:72:a1:88:
92:09:18:e7:f7:14:51:d6:d4:87:09:42:69:fc:2c:
70:a2:84:e4:ea:4b:fd:c9:7d:9a:5c:af:8d:bc:ed:
23:2e:42:93:c1:a8:df:fb:94:09:f7:1e:5d:97:70:
78:4a:94:20:77:d5:1b:a8:27:10:7a:70:7e:d3:5d:
50:b8:08:dd:03:ff:6c:fd:49:76:16:df:d4:56:6b:
ce:80:9a:d0:49:3e:f7:6a:e0:55:88:0c:7a:7d:8c:
71:0a:02:e1:67:3b:47:21:53:8b:c0:17:ea:08:6f:
65:e2:41:56:bf:5a:4e:f9:e6:e1:7d:8f:f5:7b:80:
45:d6:08:2d:f5:98:4f:f9:41:1a:25:a7:b0:5a:ee:
2d:80:1a:e1:59:2a:de:8c:1f:de:5c:7d:f4:14:89:
97:db:58:6d:e0:92:4c:6d:80:46:1c:e0:2e:1a:45:
f5:74:b7:05:37:58:dd:5d:38:46:f9:36:c7:3e:16:
94:e3:44:12:70:9d:51:b4:b0:03:40:c9:d3:08:db:
5f:7b:5b:28:4e:64:c7:11:e7:a1:2e:60:ce:60:22:
07:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E7:B0:1E:23:94:40:E9:22:CE:52:2D:59:9C:F6:CD:13:CD:02:CA
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38513.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.42.244.0/23
103.67.40.0/22
103.125.90.0/23
103.125.100.0/22
103.190.214.0/23
103.191.14.0-103.191.17.255
Signature Algorithm: sha256WithRSAEncryption
56:b1:2c:ad:f9:38:b1:11:b2:54:ce:98:6e:91:ac:51:2e:3b:
46:04:f5:94:c7:e2:fe:da:3c:fe:0a:43:7d:10:3d:a9:dc:03:
9f:d8:da:66:9b:b6:45:a7:20:e6:5c:17:b1:cf:82:3c:e5:5b:
f7:81:34:90:b1:1f:3c:3d:e0:15:da:fc:c0:d1:1b:29:2d:5d:
ee:e5:7f:39:93:c4:ef:65:9d:b7:91:5b:33:ea:5a:26:0c:15:
c2:95:94:6e:ee:91:2e:75:ba:ba:72:d1:9d:7c:47:a4:e0:5a:
a2:1a:ac:95:c6:22:ed:f1:03:a6:51:e6:a9:4c:c9:51:a6:bf:
5b:62:df:13:4b:26:10:24:e5:d5:de:03:7a:f1:0b:44:fb:82:
58:7e:3c:81:28:0d:7f:c5:81:3c:bf:f5:a2:65:bd:ca:6c:76:
69:27:db:da:82:b3:21:18:86:89:0e:dc:fa:74:f6:70:d5:d3:
ef:5d:b1:a5:8a:80:6f:76:e6:7d:c0:ae:1b:e7:2d:f0:42:43:
90:d0:07:1c:a9:4a:fa:84:97:db:b2:ca:5e:21:bb:e9:e5:92:
8d:95:01:46:74:66:5f:19:b3:a7:e5:45:a0:73:e8:d0:d7:b5:
89:09:f8:65:02:4f:0a:5a:fb:ab:fd:e4:82:c1:be:2a:14:45:
8a:e4:c9:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:43:50 2024 by rpki-client on console-ams.rpki-client.org