Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e35362e302f32342d3234203d3e203338353039.roa
File: 3230322e35312e35362e302f32342d3234203d3e203338353039.roa (raw, json)
Hash identifier: VDmzAE5nsSn3VcTtdUYB+JjYbBbEx+qEZDLzkKkFw30=
Subject key identifier: 66:7B:A3:69:0E:42:58:BF:93:ED:D8:CD:08:D5:D8:E7:28:13:24:C1
Certificate issuer: /CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C
Certificate serial: 085EC0FA90A6610866446C3A9A1C71FABDE012C7
Authority key identifier: 3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e35362e302f32342d3234203d3e203338353039.roa
Signing time: Tue 25 Mar 2025 06:03:36 +0000
ROA not before: Tue 25 Mar 2025 05:58:36 +0000
ROA not after: Tue 24 Mar 2026 06:03:36 +0000
asID: 38509
IP address blocks: 202.51.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl
rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 13:05:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:5e:c0:fa:90:a6:61:08:66:44:6c:3a:9a:1c:71:fa:bd:e0:12:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C
Validity
Not Before: Mar 25 05:58:36 2025 GMT
Not After : Mar 24 06:03:36 2026 GMT
Subject: CN=667BA3690E4258BF93EDD8CD08D5D8E7281324C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a9:4c:6b:3f:88:7f:1c:62:52:9f:47:d1:ed:
33:4e:df:96:37:78:be:16:85:9a:78:76:9d:3b:22:
11:ac:47:42:90:54:4d:a0:a6:d4:2f:7e:06:0e:91:
a9:e4:4d:c7:17:e8:69:db:2e:78:d0:dc:89:b0:ba:
20:88:6a:15:ca:b8:90:05:24:e6:39:d2:60:3c:78:
a3:89:12:27:d0:58:4e:a4:ef:f4:f2:8e:ff:c6:e4:
4e:c6:26:00:53:e1:ed:f4:a4:78:b1:5e:75:21:f2:
a4:b6:46:a1:1f:f5:fa:70:18:69:96:8a:34:df:86:
cb:b0:95:04:67:fa:22:72:a9:f3:f5:c3:34:54:97:
cc:02:e9:d1:24:14:c3:b9:6d:cc:e8:41:33:84:23:
eb:0d:0a:22:99:8b:bf:88:53:b9:52:7d:4c:70:a7:
b8:33:e7:84:de:70:20:c9:9a:e4:ed:7a:fd:bd:69:
5f:39:cb:ca:81:65:68:61:ce:3b:69:1f:90:1c:34:
ad:3f:a4:b6:77:c4:b2:f7:b3:6a:d1:8a:e9:a7:72:
c4:55:6f:9a:0d:36:07:ef:d3:11:30:29:3e:84:96:
18:8b:49:a8:66:70:0b:66:48:a2:24:85:e7:35:24:
2d:cd:b9:87:82:53:60:9a:2a:19:65:65:64:9b:97:
c3:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7B:A3:69:0E:42:58:BF:93:ED:D8:CD:08:D5:D8:E7:28:13:24:C1
X509v3 Authority Key Identifier:
keyid:3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e35362e302f32342d3234203d3e203338353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.51.56.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:bb:b3:3e:db:cc:be:66:d2:4b:e4:e6:60:77:a0:c1:78:fa:
6e:9a:bc:68:fe:1e:a9:eb:c1:08:15:2d:42:94:b9:20:41:c5:
6f:6c:d3:ec:14:1e:e4:8c:79:06:a5:b7:03:61:65:b2:29:7c:
ed:ae:88:24:ae:41:69:b0:e8:cc:84:8b:9a:ec:36:6d:0a:86:
8b:d8:49:1c:18:7d:6f:7c:c6:2f:ba:d6:27:1e:8e:b1:61:97:
aa:8d:05:c0:7e:65:e8:54:24:64:38:49:b6:c5:3a:cd:70:2d:
b7:84:3e:3a:28:85:bc:11:6a:f5:62:63:c3:49:c5:b6:00:44:
2a:a3:4e:3e:1a:f1:39:bc:9e:30:41:ce:7e:59:7e:e7:6b:8d:
8c:24:bf:7d:28:06:12:1b:79:f7:be:6b:26:99:db:de:21:91:
b8:3c:56:e1:7d:f4:e7:19:03:e6:7a:23:86:a9:eb:a8:b3:43:
1f:7c:fe:81:89:33:a7:31:00:71:d5:61:69:fe:73:4f:b2:57:
b4:3f:fd:b5:08:fc:20:03:fb:57:1b:57:15:98:02:ee:ca:77:
22:ce:44:0f:ef:db:36:b6:ee:92:86:d3:19:32:7b:12:d2:05:
31:5f:31:b6:d6:d4:89:27:62:53:65:25:2c:e0:04:76:7b:10:
a1:9e:e3:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 05:59:38 2025 by rpki-client