Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/3130332e3139332e3136372e302f32342d3234203d3e20313530313835.roa
File: 3130332e3139332e3136372e302f32342d3234203d3e20313530313835.roa (raw, json)
Hash identifier: GK6TjIFHP3OKYpdF9mQ2NlZ0xI3zyr1c1AWcP5mkKcw=
Subject key identifier: 9B:8A:B6:C1:87:54:14:1E:41:7C:3A:85:61:3D:DF:96:D5:1F:FA:EA
Certificate issuer: /CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7
Certificate serial: 1088CC6B0609C5BB89384B44CE25153E2293B584
Authority key identifier: 21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/3130332e3139332e3136372e302f32342d3234203d3e20313530313835.roa
Signing time: Fri 10 Jan 2025 11:00:01 +0000
ROA not before: Fri 10 Jan 2025 10:55:01 +0000
ROA not after: Fri 09 Jan 2026 11:00:01 +0000
asID: 150185
IP address blocks: 103.193.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl
rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 03:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:88:cc:6b:06:09:c5:bb:89:38:4b:44:ce:25:15:3e:22:93:b5:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7
Validity
Not Before: Jan 10 10:55:01 2025 GMT
Not After : Jan 9 11:00:01 2026 GMT
Subject: CN=9B8AB6C18754141E417C3A85613DDF96D51FFAEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1a:ca:ab:12:07:eb:ad:8c:b5:51:63:2f:c1:
5b:f8:86:5f:82:f6:5b:ac:df:5b:e3:c7:ff:78:96:
57:d4:88:40:2b:1c:26:ee:37:b0:11:53:76:2b:33:
9a:e5:47:75:f1:c5:75:8b:d6:a8:5c:0e:dd:28:56:
84:2d:b7:2a:32:8f:28:98:b4:7a:68:45:28:fb:e2:
02:6c:64:c2:b7:f1:e8:d0:31:83:c0:37:a2:6e:e8:
2e:b7:76:d2:77:5b:eb:75:35:a0:09:7d:21:38:fc:
2c:47:f2:84:98:4a:a5:36:e0:30:0c:a4:e6:fa:ac:
da:1b:36:8f:82:89:4d:00:40:1b:65:80:9f:f8:89:
f8:5d:e6:77:ad:32:ec:e9:8b:8d:ea:00:7b:3d:c3:
f6:2a:61:56:2d:0e:c9:4d:17:a0:e7:b3:19:83:cd:
bc:2b:77:60:59:31:d6:8a:92:33:db:69:95:26:19:
26:9a:b0:23:c5:f8:c2:33:6e:7f:90:8b:f7:af:1b:
77:a9:5b:0b:6e:e1:e9:77:b0:dc:52:67:7d:6e:7c:
02:3a:6e:5f:31:b6:ab:17:3c:fb:f5:60:33:ef:22:
7d:0a:bf:57:69:17:dd:f6:c2:8d:32:8f:8f:c1:25:
9f:bf:15:9c:49:bf:5a:ae:9e:c3:c3:f1:dc:cf:b7:
bb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8A:B6:C1:87:54:14:1E:41:7C:3A:85:61:3D:DF:96:D5:1F:FA:EA
X509v3 Authority Key Identifier:
keyid:21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/3130332e3139332e3136372e302f32342d3234203d3e20313530313835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.193.167.0/24
Signature Algorithm: sha256WithRSAEncryption
28:ca:0a:7a:c7:60:b1:66:f3:f7:2f:90:cc:a4:15:46:f0:a0:
fa:ef:d6:b7:02:81:8b:d1:62:be:9b:fa:ec:fa:e3:bc:93:6a:
d7:a3:59:5b:cb:21:be:c9:cc:f2:44:e0:c0:3b:ab:80:1d:e7:
79:35:fe:c9:54:56:be:43:5b:da:24:8b:3a:ca:89:9d:e6:16:
39:36:05:1e:59:18:6b:10:a6:ee:dc:b9:1a:7f:7c:5b:96:b6:
68:65:03:bc:af:6b:ff:16:02:b4:79:9c:85:46:5d:ea:b7:17:
01:2e:97:ed:af:58:33:75:22:68:37:fe:96:01:11:53:93:1d:
a5:99:09:df:1b:65:8b:6d:cc:76:ff:ef:b2:93:95:ed:9d:ab:
09:55:50:8a:22:91:f3:dc:43:b7:ef:55:e7:da:45:d6:9b:1d:
44:c5:6c:70:9f:47:b1:31:7e:4d:d3:21:8a:34:26:2a:e0:28:
8e:ec:d0:40:3d:22:18:d0:a2:1a:e9:3c:52:8e:42:4a:02:ef:
99:b2:54:99:41:72:1c:23:d0:ba:72:f0:d1:77:53:40:74:4b:
12:3b:72:4a:ed:b0:38:8a:50:e9:fe:da:2b:85:a3:9c:89:f5:
eb:64:85:0b:4b:60:c8:af:c6:b0:b5:7c:32:76:18:23:ef:f3:
a5:cc:ba:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 00:06:45 2025 by rpki-client