Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/323030313a6466313a393030303a3a2f34382d3438203d3e203538383230.roa
File: 323030313a6466313a393030303a3a2f34382d3438203d3e203538383230.roa (raw, json)
Hash identifier: 5vlCAQxD3Rtm38WM/0l+BFIYmxxS60ewb6v8d3eKIKE=
Subject key identifier: E2:89:3A:A6:CC:A9:4D:4B:0D:1F:88:44:54:BB:E8:86:65:14:AF:F6
Certificate issuer: /CN=F318D15D68E63CEBE4BFA026A5269F3877BE13C1
Certificate serial: 7C1E9FA6F9843C9B09C5BC023B27D319F038C62E
Authority key identifier: F3:18:D1:5D:68:E6:3C:EB:E4:BF:A0:26:A5:26:9F:38:77:BE:13:C1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/323030313a6466313a393030303a3a2f34382d3438203d3e203538383230.roa
Signing time: Fri 14 Feb 2025 11:00:02 +0000
ROA not before: Fri 14 Feb 2025 10:55:02 +0000
ROA not after: Fri 13 Feb 2026 11:00:02 +0000
asID: 58820
IP address blocks: 2001:df1:9000::/48 maxlen: 48
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.crl
rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 17:35:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:1e:9f:a6:f9:84:3c:9b:09:c5:bc:02:3b:27:d3:19:f0:38:c6:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F318D15D68E63CEBE4BFA026A5269F3877BE13C1
Validity
Not Before: Feb 14 10:55:02 2025 GMT
Not After : Feb 13 11:00:02 2026 GMT
Subject: CN=E2893AA6CCA94D4B0D1F884454BBE8866514AFF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:02:32:d8:6e:61:94:78:5b:ef:c7:e5:3c:72:
fa:e2:41:46:ba:ec:0e:e1:33:d3:77:50:11:2f:b8:
6b:16:87:63:76:2c:19:17:c8:4f:ba:95:63:6d:6e:
51:db:6c:21:ac:9b:d0:00:0f:50:82:6f:a8:13:9c:
1d:ef:fe:97:78:eb:80:92:f1:81:43:e6:59:b7:dd:
71:be:e7:c4:a6:87:dd:00:ec:41:a0:60:e6:08:11:
44:a0:57:8a:f7:92:cb:6f:04:5a:db:dc:59:51:27:
ed:12:65:54:7f:8b:dd:58:f8:22:37:84:9e:2f:32:
11:09:ee:f6:b1:19:ec:27:09:f9:3a:3c:6c:e2:d2:
bb:e3:9e:93:96:cc:7b:41:02:f5:fb:44:bf:07:3d:
fd:d1:af:c9:0b:6b:66:18:c2:4f:d7:20:ea:2d:f0:
f4:4a:6b:02:71:d1:9e:4f:84:57:67:ce:7a:96:64:
cd:1b:79:19:92:bb:06:4d:06:f9:84:16:0d:cf:6f:
5b:b6:74:df:70:c2:cc:dd:2a:2f:27:8e:d9:ac:51:
2a:8c:f6:1d:12:92:de:61:e3:c5:2c:95:1a:0f:9d:
7f:03:6c:d2:e8:2e:b7:7c:c9:88:3a:6a:6a:69:0c:
d3:a5:61:63:6a:a6:e4:29:8a:11:69:09:54:50:7c:
0e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:89:3A:A6:CC:A9:4D:4B:0D:1F:88:44:54:BB:E8:86:65:14:AF:F6
X509v3 Authority Key Identifier:
keyid:F3:18:D1:5D:68:E6:3C:EB:E4:BF:A0:26:A5:26:9F:38:77:BE:13:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/323030313a6466313a393030303a3a2f34382d3438203d3e203538383230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df1:9000::/48
Signature Algorithm: sha256WithRSAEncryption
24:b6:99:3c:b6:f9:89:3c:56:3a:50:85:20:be:57:f4:5d:b7:
de:6f:8e:64:3f:96:38:b0:c7:50:e4:62:a3:66:16:1a:67:19:
ca:cb:ff:b9:7b:34:2a:39:bc:ce:0b:ef:bf:1d:d8:31:31:72:
c0:c3:c3:6a:47:41:cf:e9:21:d3:27:34:23:d0:97:b0:22:0a:
4b:b4:9b:1e:84:cb:0a:f4:95:f6:5f:45:03:c1:4d:3f:63:e8:
12:5d:a0:4a:85:4c:7e:eb:a2:22:cd:bf:c2:5f:40:5b:52:a0:
73:37:c3:79:b6:4f:6b:b2:68:31:ce:01:e7:c5:3f:02:57:76:
d5:a6:04:34:c7:90:3d:1e:cf:1f:69:09:0d:e1:4e:4f:1c:3c:
f0:d9:b5:7d:60:a4:d1:39:d0:26:ac:b1:fc:92:64:89:9b:11:
03:b6:93:a7:ab:0a:f5:df:dd:4a:b1:6a:f7:8a:79:03:e1:0e:
70:04:69:e3:e0:4e:b3:33:71:a1:0d:8f:fe:4d:43:28:3b:a7:
4a:a1:b1:34:f6:7a:1a:61:7e:d2:fc:a2:52:31:b8:6f:3b:27:
7d:2a:d4:c0:6f:26:af:29:01:49:95:e1:98:20:2c:36:a7:a3:
a9:54:27:a0:21:10:62:88:47:ea:ad:c3:40:51:45:92:ac:68:
d6:e0:45:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 19:36:15 2025 by rpki-client