Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56246.roa
File: AS56246.roa (raw, json)
Hash identifier: iR3tk4rBsx5V2CEjzMJDtrHo193PzKRNq0Tz9/ngwek=
Subject key identifier: 31:77:7E:F4:B2:B5:B6:72:61:4E:8E:9A:8B:1C:F6:1F:DB:47:C0:6C
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0C995E46104E49E642A2841E027CD766391C1A42
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56246.roa
Signing time: Thu 28 Mar 2024 08:01:12 +0000
ROA not before: Thu 28 Mar 2024 07:56:12 +0000
ROA not after: Thu 27 Mar 2025 08:01:12 +0000
asID: 56246
IP address blocks: 103.143.222.0/24 maxlen: 24
103.143.223.0/24 maxlen: 24
103.152.234.0/23 maxlen: 24
114.198.244.0/24 maxlen: 24
114.198.245.0/24 maxlen: 24
116.68.166.0/24 maxlen: 24
116.68.170.0/24 maxlen: 24
116.68.171.0/24 maxlen: 24
116.68.172.0/24 maxlen: 24
116.68.174.0/24 maxlen: 24
116.68.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 25 Nov 2024 20:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:99:5e:46:10:4e:49:e6:42:a2:84:1e:02:7c:d7:66:39:1c:1a:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Mar 28 07:56:12 2024 GMT
Not After : Mar 27 08:01:12 2025 GMT
Subject: CN=31777EF4B2B5B672614E8E9A8B1CF61FDB47C06C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d0:ea:89:58:c7:5d:fa:d3:fd:85:b5:c2:c2:
c4:c1:e2:2c:6a:9a:29:f1:4f:23:85:8c:57:f3:c7:
19:c1:e0:4b:36:db:73:59:b1:fd:0e:c3:c1:f9:99:
a1:1e:72:03:8b:3b:9b:39:0e:e2:be:df:6e:a8:28:
0b:84:eb:eb:61:b0:54:87:36:aa:95:e7:bd:7f:8a:
c7:05:44:0d:ac:81:5d:21:b6:f9:f4:0d:3b:48:a7:
c8:b1:8f:61:60:d1:0c:0f:5d:39:d1:63:28:24:32:
5f:b9:04:e7:8f:57:f8:10:65:ad:b0:be:29:1b:8f:
fe:61:21:e8:1a:75:44:30:16:54:e1:02:39:33:a9:
21:84:ef:83:54:11:de:f0:73:73:3d:dd:de:50:be:
2b:1e:9a:1a:46:0f:75:d6:ae:49:aa:60:cd:9f:b1:
c7:68:36:6f:9d:f1:34:c7:88:88:10:71:ef:22:13:
d9:10:b3:5c:2b:35:0c:97:63:96:41:7c:f1:0a:43:
58:c6:67:d9:6f:37:65:c0:e2:c2:8c:71:d0:6a:ba:
e4:02:6a:8d:b3:0d:74:f3:df:73:8f:d3:35:16:d4:
28:7d:ec:d2:21:20:57:77:8d:8d:68:cb:72:7b:de:
f8:36:da:25:03:0a:88:f7:24:c6:0d:c6:01:b6:b0:
cc:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:77:7E:F4:B2:B5:B6:72:61:4E:8E:9A:8B:1C:F6:1F:DB:47:C0:6C
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56246.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.143.222.0/23
103.152.234.0/23
114.198.244.0/23
116.68.166.0/24
116.68.170.0-116.68.172.255
116.68.174.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:63:ab:ba:56:76:04:e2:3b:90:6a:36:a2:83:c5:92:81:28:
58:ac:2a:63:ab:31:39:ff:97:ba:98:53:8a:6e:26:22:bb:37:
e8:6c:a1:db:db:69:76:80:ba:24:7e:e4:07:72:21:d0:8d:91:
a9:a9:46:22:b1:4e:22:1e:05:49:e6:1b:cf:f9:10:9b:ac:27:
89:f8:6f:fc:42:e0:58:3c:43:48:41:8e:50:8e:45:6b:a2:75:
a1:21:9d:0a:89:5f:f5:55:9c:34:76:fc:53:51:b9:16:81:52:
6f:c8:d6:4a:d5:e4:5a:07:05:a7:41:ae:05:a1:ed:7b:44:52:
3e:4c:ea:9b:8e:65:f3:fc:da:1e:74:7f:96:c9:25:16:7a:47:
20:ac:c8:5d:55:3d:b8:c4:8b:de:b9:94:a9:a5:a2:6e:e4:6a:
00:da:5d:6a:18:e9:e1:82:47:e2:6a:a1:76:59:a6:b6:fd:52:
0d:c4:3e:9b:ea:02:44:00:b4:eb:de:ed:5d:0f:5d:3c:9e:e0:
9f:15:43:88:91:c0:4a:5e:9b:cc:82:48:67:f9:c9:87:d0:5e:
9f:51:af:c9:56:ca:1c:7d:d7:a8:35:a5:c1:c9:2c:8e:90:a6:
35:d3:e1:8b:2b:66:13:8b:6e:a6:ae:73:13:b3:3e:8e:4f:62:
60:94:32:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:43:50 2024 by rpki-client on console-ams.rpki-client.org