Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56241.roa
File: AS56241.roa (raw, json)
Hash identifier: jzy97qS4SdosEg79uzaoCJjPk6U+0tqz0IMnhra46XA=
Subject key identifier: 25:F3:FF:66:10:86:A9:E2:38:10:10:12:BD:15:22:EE:82:9F:28:61
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2FB17306E5680939A8644809CA443F5DAB600CBB
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56241.roa
Signing time: Tue 12 Sep 2023 03:23:49 +0000
ROA not before: Tue 12 Sep 2023 03:18:49 +0000
ROA not after: Tue 10 Sep 2024 03:23:49 +0000
asID: 56241
IP address blocks: 45.126.152.0/24 maxlen: 24
45.126.153.0/24 maxlen: 24
45.126.155.0/24 maxlen: 24
103.10.56.0/24 maxlen: 24
103.10.145.0/24 maxlen: 24
103.255.52.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 May 2024 17:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:b1:73:06:e5:68:09:39:a8:64:48:09:ca:44:3f:5d:ab:60:0c:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Sep 12 03:18:49 2023 GMT
Not After : Sep 10 03:23:49 2024 GMT
Subject: CN=25F3FF661086A9E238101012BD1522EE829F2861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:39:40:bf:1a:ef:d5:c8:75:4e:4b:54:15:99:
37:23:23:61:95:14:ec:5d:27:92:ca:14:4d:e1:2e:
bb:12:0a:47:08:13:08:26:39:f5:7c:41:6f:bb:8e:
ba:8d:01:91:99:a2:4c:91:06:9d:97:e5:5e:1a:bb:
37:02:d2:a9:9b:9b:04:5e:e5:22:9f:77:77:11:c3:
4e:f1:f9:28:6d:88:dd:4f:06:aa:68:fa:d0:14:db:
1b:a8:04:28:6c:cb:8b:b9:c1:70:9c:e9:f2:42:00:
81:7e:e2:bd:05:72:0d:c6:42:df:b4:42:13:4f:9e:
ff:30:ce:0c:f5:a1:81:09:80:24:d5:cf:4b:50:8a:
9c:73:32:65:a9:a0:e6:b7:ee:8a:1a:75:4f:74:31:
5a:84:98:c2:12:ff:ac:90:ab:86:56:6a:90:4f:8d:
ed:d3:ff:b2:34:40:61:5e:03:0f:58:47:60:37:a7:
a0:3f:02:64:9c:b0:97:47:b4:9b:e6:91:8f:84:6f:
77:fd:01:33:8f:ec:df:47:2d:0c:29:44:df:8e:50:
1e:bd:1f:63:ea:a6:de:f3:06:12:ad:c5:d5:ad:85:
bb:f4:6c:b2:88:da:51:7c:f7:fb:77:78:ff:22:d9:
12:6a:58:e9:4a:92:c1:de:ca:de:c3:2f:cd:a7:df:
a9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F3:FF:66:10:86:A9:E2:38:10:10:12:BD:15:22:EE:82:9F:28:61
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56241.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.126.152.0/23
45.126.155.0/24
103.10.56.0/24
103.10.145.0/24
103.255.52.0/23
Signature Algorithm: sha256WithRSAEncryption
01:a8:90:d6:ad:99:dc:55:31:7b:3b:fc:e5:7a:1f:a4:b9:33:
59:2a:ed:4c:70:c4:29:49:5c:4f:3a:bd:24:d3:59:30:e6:d1:
8e:93:cc:90:10:72:c3:97:7f:39:ba:76:05:3b:3f:50:8a:84:
47:12:83:6a:dc:13:f6:82:bc:9c:40:be:82:fa:ca:49:18:35:
ee:cb:97:c0:45:34:4b:b6:78:40:ea:f4:2b:cd:3b:38:84:f3:
f9:42:22:2e:29:89:1b:3c:0b:ff:81:89:cb:d3:06:7e:6a:40:
a0:40:cf:56:8e:1b:52:5a:1d:3b:3d:7a:b0:6d:a2:6f:06:af:
3c:d3:65:97:0b:70:bc:a3:05:58:b6:45:9e:ed:b8:48:f6:aa:
24:fa:4a:3b:c3:89:d1:d9:15:be:df:13:20:eb:d2:a6:d7:cc:
4a:43:b5:6b:51:d0:42:41:bf:d5:30:e1:26:df:20:43:72:32:
f0:7f:4f:1f:40:39:e3:4d:e6:73:c4:5b:58:79:9a:e7:11:9b:
27:4d:f1:e5:17:a8:1a:86:2f:c7:5e:18:19:20:11:13:4c:b6:
90:e3:87:77:d1:8f:57:30:9b:4a:e9:29:a8:6d:19:5f:7c:27:
b7:a0:5e:27:f2:6e:71:e3:ce:7e:5e:4e:bb:b2:f3:97:d8:c2:
c3:55:08:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 15:17:45 2024 by rpki-client on console-fra.rpki-client.org