Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c29e0636-1fe2-4d3b-8c38-2dbb9914e913/0/3130332e3133302e372e302f32342d3234203d3e20313338303933.roa
File: 3130332e3133302e372e302f32342d3234203d3e20313338303933.roa (raw, json)
Hash identifier: 35cfCojRdavaReCbKBt9CxVqgNx4F/Pdz0/aY/vnfQA=
Subject key identifier: 1B:F5:2C:38:25:02:63:E5:27:5B:F1:55:1A:53:92:30:25:B9:03:5E
Certificate issuer: /CN=55C7A5D56CEC1316CFE660C79C02C16FCE38102A
Certificate serial: 5FE359C13E04AB4C084AB55A476347EEA6E66D20
Authority key identifier: 55:C7:A5:D5:6C:EC:13:16:CF:E6:60:C7:9C:02:C1:6F:CE:38:10:2A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55C7A5D56CEC1316CFE660C79C02C16FCE38102A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c29e0636-1fe2-4d3b-8c38-2dbb9914e913/0/3130332e3133302e372e302f32342d3234203d3e20313338303933.roa
Signing time: Fri 19 Jul 2024 14:00:02 +0000
ROA not before: Fri 19 Jul 2024 13:55:02 +0000
ROA not after: Fri 18 Jul 2025 14:00:02 +0000
asID: 138093
IP address blocks: 103.130.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/c29e0636-1fe2-4d3b-8c38-2dbb9914e913/0/55C7A5D56CEC1316CFE660C79C02C16FCE38102A.crl
rsync://repo-rpki.idnic.net/repo/c29e0636-1fe2-4d3b-8c38-2dbb9914e913/0/55C7A5D56CEC1316CFE660C79C02C16FCE38102A.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55C7A5D56CEC1316CFE660C79C02C16FCE38102A.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 00:07:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:e3:59:c1:3e:04:ab:4c:08:4a:b5:5a:47:63:47:ee:a6:e6:6d:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55C7A5D56CEC1316CFE660C79C02C16FCE38102A
Validity
Not Before: Jul 19 13:55:02 2024 GMT
Not After : Jul 18 14:00:02 2025 GMT
Subject: CN=1BF52C38250263E5275BF1551A53923025B9035E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:47:c8:d7:a0:08:63:59:bb:8b:c9:2c:56:b3:
be:26:80:01:de:3b:06:99:cf:46:e6:21:3b:49:1e:
01:25:a6:6a:7a:c8:72:96:bb:65:e3:80:dc:4f:a5:
1a:af:3e:78:db:b9:84:9b:d8:27:18:7a:a9:6b:e3:
a7:b3:97:ed:33:8b:73:93:1e:d0:60:85:43:d6:18:
0a:19:31:bf:f6:e5:c0:85:ea:20:a2:12:4e:ca:69:
fc:9c:d3:d2:fc:a2:17:f3:25:4f:48:cf:3d:61:12:
cd:f8:1b:92:44:d5:02:a0:92:0d:84:6c:a7:52:75:
60:e3:58:4a:df:c6:aa:ea:a0:10:8c:a0:26:e8:97:
0f:ee:ae:8d:66:30:92:5f:5f:32:87:c0:e7:12:a1:
66:17:6f:10:6f:c5:a9:e6:36:a3:ba:cb:57:fc:00:
3c:77:bb:d2:4d:26:9c:27:18:1a:c7:8f:88:6b:c2:
75:ec:c3:2b:ec:a8:b3:0a:37:ee:1b:f9:ff:c7:9a:
03:e1:89:c4:2c:72:92:fb:67:70:ca:b7:f2:b2:6b:
e0:f5:3a:af:ce:73:55:27:45:b8:9a:9b:48:80:e2:
56:03:0d:24:fa:c6:28:0a:b8:95:b7:bc:03:a1:10:
d9:cf:dd:48:73:94:46:b0:a0:69:dd:da:95:e0:8a:
c8:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:F5:2C:38:25:02:63:E5:27:5B:F1:55:1A:53:92:30:25:B9:03:5E
X509v3 Authority Key Identifier:
keyid:55:C7:A5:D5:6C:EC:13:16:CF:E6:60:C7:9C:02:C1:6F:CE:38:10:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c29e0636-1fe2-4d3b-8c38-2dbb9914e913/0/55C7A5D56CEC1316CFE660C79C02C16FCE38102A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55C7A5D56CEC1316CFE660C79C02C16FCE38102A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c29e0636-1fe2-4d3b-8c38-2dbb9914e913/0/3130332e3133302e372e302f32342d3234203d3e20313338303933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.130.7.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:63:c5:83:eb:30:d2:53:7f:e1:3d:56:52:eb:07:16:6f:bf:
9d:65:04:26:1e:60:1c:a4:66:0e:51:92:13:02:8b:46:35:59:
9a:d6:18:83:35:41:bd:0a:36:ef:ef:9d:be:e3:e7:98:5a:43:
75:30:c7:d3:cd:cc:72:3b:94:14:da:db:3c:be:1c:7d:a9:d5:
7a:03:7a:70:d7:eb:60:29:e6:f2:33:54:15:7f:05:3d:73:fb:
ae:c3:bd:3f:9a:23:85:09:dd:63:24:29:9f:b5:5e:86:4c:06:
9b:c9:c8:a7:26:59:02:89:7d:f2:f0:bd:f2:2e:0f:ed:2d:48:
28:91:41:cb:bf:1b:79:0c:40:e5:20:9d:7c:a6:ae:d2:39:53:
fb:24:a6:79:89:60:f9:b2:09:b5:f2:32:1a:9a:1c:a7:25:33:
86:1e:12:6a:00:0b:4d:25:c3:11:11:ad:65:38:60:50:b7:b8:
f1:7a:5d:ae:db:61:1e:3d:a9:1e:1b:32:8c:90:ba:d9:aa:c4:
29:51:1a:b6:38:4d:1c:5b:7c:b8:2a:ec:ea:ef:53:17:13:9d:
78:d2:14:0e:ea:d6:39:cf:fa:a9:6c:54:f2:b6:f3:93:33:14:
98:b4:cd:1a:26:44:8e:34:5f:93:7b:83:d3:3d:f7:5c:66:5e:
a5:a2:eb:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 15:41:35 2025 by rpki-client