Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55685.roa
File: AS55685.roa (raw, json)
Hash identifier: 4D8fUbMIwSiYRlNsXfkFGPRf8L1DZrR4MJHRy2BvjsM=
Subject key identifier: A1:24:39:82:14:93:97:C5:1F:27:47:C6:A7:43:97:A3:17:AA:00:C0
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 30681216E298CEC4343993A0229D655BE1DED2DE
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55685.roa
Signing time: Mon 29 Jan 2024 07:00:00 +0000
ROA not before: Mon 29 Jan 2024 06:55:00 +0000
ROA not after: Mon 27 Jan 2025 07:00:00 +0000
asID: 55685
IP address blocks: 103.247.40.0/24 maxlen: 24
103.247.41.0/24 maxlen: 24
103.247.42.0/24 maxlen: 24
103.247.43.0/24 maxlen: 24
202.51.192.0/21 maxlen: 24
202.51.192.0/22 maxlen: 24
202.51.196.0/23 maxlen: 24
202.51.200.0/24 maxlen: 24
202.51.201.0/24 maxlen: 24
202.51.202.0/24 maxlen: 24
202.51.203.0/24 maxlen: 24
202.51.204.0/22 maxlen: 24
202.51.208.0/24 maxlen: 24
202.51.209.0/24 maxlen: 24
202.51.210.0/23 maxlen: 24
202.51.212.0/24 maxlen: 24
202.51.213.0/24 maxlen: 24
202.51.215.0/24 maxlen: 24
202.145.4.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 25 Nov 2024 20:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:68:12:16:e2:98:ce:c4:34:39:93:a0:22:9d:65:5b:e1:de:d2:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jan 29 06:55:00 2024 GMT
Not After : Jan 27 07:00:00 2025 GMT
Subject: CN=A1243982149397C51F2747C6A74397A317AA00C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1b:4d:de:d6:92:4d:f3:f5:58:58:9c:65:ce:
de:cd:d1:c4:ee:5b:77:53:3d:79:0a:99:ee:4e:33:
ca:9a:ae:ec:8f:f5:dd:f9:2e:22:3f:8f:b4:b3:9b:
f4:ad:65:d4:6c:d9:18:1a:65:da:2c:91:2c:23:65:
1d:bd:f5:68:1b:ef:70:51:c7:ef:8a:25:39:bb:73:
48:e0:99:17:bc:78:4d:a8:25:b9:de:de:c6:0d:0c:
64:00:ca:68:37:19:dc:29:f5:94:b1:88:b1:68:23:
74:dc:9a:b3:58:1d:9a:c5:87:7e:30:80:12:44:79:
ab:1e:41:2a:1d:d9:9d:5a:e2:49:4b:0d:33:ab:80:
cd:14:f0:9d:e4:69:bf:66:20:c2:22:21:14:91:6c:
36:d5:75:cb:98:56:7d:cd:ae:d8:4f:6a:29:2d:68:
87:38:79:a5:66:72:d0:c2:77:aa:d9:ba:4e:73:3b:
a7:c9:45:01:14:f4:f0:a8:16:70:bd:ce:b0:b1:84:
e7:73:ec:f0:5e:dc:9f:03:1a:fc:7a:da:f4:83:62:
b0:a8:91:f0:5b:87:d4:0b:9e:33:fd:35:14:1a:05:
a8:98:36:80:97:cb:f2:33:d1:5f:e2:35:52:15:cb:
c9:af:aa:e6:7e:f7:c9:34:5e:9a:8a:69:3e:26:a1:
4a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:24:39:82:14:93:97:C5:1F:27:47:C6:A7:43:97:A3:17:AA:00:C0
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55685.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.247.40.0/22
202.51.192.0-202.51.213.255
202.51.215.0/24
202.145.4.0/23
Signature Algorithm: sha256WithRSAEncryption
25:d1:d5:d8:1d:48:72:d2:60:3a:59:da:95:a1:a0:d8:f1:6b:
80:84:9e:b5:9e:77:8e:5f:5e:ce:e4:c5:e5:d1:4b:4e:98:83:
34:86:85:0e:41:76:78:7b:c2:97:f3:a6:78:72:dd:18:6b:5b:
ce:44:47:08:35:5d:99:55:07:85:28:7b:fc:6d:50:9a:b3:3b:
59:4b:10:a8:82:94:92:6e:bd:3d:17:97:0e:e3:b1:82:6b:38:
1b:73:4b:59:0a:71:29:04:b0:09:b1:b6:ad:bf:85:b9:bf:f2:
47:7f:6c:25:2d:2c:8a:12:ed:57:9c:1e:5f:70:50:e3:73:00:
c9:80:d5:f5:af:5b:73:e1:8e:29:49:b1:a2:77:38:07:5a:95:
99:1b:c9:f9:72:98:18:0f:5b:81:d7:b5:c8:d8:51:2d:db:b0:
e2:79:5f:4d:0c:37:97:78:cb:a7:13:ca:f2:dc:a6:3a:ba:3d:
76:65:55:5d:31:60:95:a7:bb:13:ac:b4:4e:12:56:f9:aa:91:
6d:69:cb:1c:6d:15:19:9d:61:2c:2b:e2:ba:ac:15:3f:f7:b4:
3f:ad:22:e8:ec:4f:52:ed:58:fc:99:d8:9c:02:d8:b7:bb:e2:
84:a3:84:cd:75:24:98:ab:d7:73:8e:da:c4:99:08:1a:1e:23:
53:ed:b6:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:14:28 2024 by rpki-client on console-fra.rpki-client.org