Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d70d629a-96ed-451a-8787-34122282a706/0/3130332e3233302e3234362e302f32342d3234203d3e20313331373735.roa
File: 3130332e3233302e3234362e302f32342d3234203d3e20313331373735.roa (raw, json)
Hash identifier: jTbfZ/3Hx6CL4SSiGlERkjd7H5tKmVCxpeA0RfZsKRg=
Subject key identifier: C1:49:08:9A:31:4E:D1:96:35:07:63:45:D6:8F:42:E2:FA:75:02:79
Certificate issuer: /CN=08435803278DC5796EE67697996454D656195D4C
Certificate serial: 68525618BA6CB68C3A5CF936AE5C5432365F4492
Authority key identifier: 08:43:58:03:27:8D:C5:79:6E:E6:76:97:99:64:54:D6:56:19:5D:4C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08435803278DC5796EE67697996454D656195D4C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d70d629a-96ed-451a-8787-34122282a706/0/3130332e3233302e3234362e302f32342d3234203d3e20313331373735.roa
Signing time: Tue 18 Feb 2025 07:02:37 +0000
ROA not before: Tue 18 Feb 2025 06:57:37 +0000
ROA not after: Tue 17 Feb 2026 07:02:37 +0000
asID: 131775
IP address blocks: 103.230.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/d70d629a-96ed-451a-8787-34122282a706/0/08435803278DC5796EE67697996454D656195D4C.crl
rsync://repo-rpki.idnic.net/repo/d70d629a-96ed-451a-8787-34122282a706/0/08435803278DC5796EE67697996454D656195D4C.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08435803278DC5796EE67697996454D656195D4C.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 13 Apr 2025 21:39:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:52:56:18:ba:6c:b6:8c:3a:5c:f9:36:ae:5c:54:32:36:5f:44:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08435803278DC5796EE67697996454D656195D4C
Validity
Not Before: Feb 18 06:57:37 2025 GMT
Not After : Feb 17 07:02:37 2026 GMT
Subject: CN=C149089A314ED19635076345D68F42E2FA750279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:90:86:37:c8:c1:95:10:61:4e:23:f4:ab:03:
1a:f3:33:b7:b8:58:e9:83:3b:d6:e1:71:af:54:26:
4f:ee:71:c5:c1:6b:7e:7e:f7:e3:ec:1f:a2:82:5c:
93:01:70:fe:b0:37:49:89:42:e6:e1:cb:38:73:0a:
ce:5e:38:65:27:16:b8:d2:76:ce:6a:13:d4:58:13:
3b:58:7d:dc:4f:7b:a9:0d:ca:cb:c0:14:6f:4c:30:
57:91:e2:9b:91:dc:75:4f:5e:c4:40:7b:1a:71:50:
ab:6f:51:de:6e:87:e7:83:f5:3a:9a:34:3d:7f:6c:
eb:b7:3f:37:ef:3c:de:80:61:d8:a8:0a:1f:3a:ec:
0f:0f:a5:7d:b0:11:71:26:a3:45:f7:5d:b7:04:71:
37:df:2d:e6:0d:94:8f:39:71:1a:cd:a6:f5:f1:39:
13:71:5d:5b:8c:c3:e4:c1:6c:29:84:7a:52:34:1f:
de:15:bd:0c:61:01:85:58:d2:ca:30:0e:0b:5a:2a:
a9:61:b6:b0:af:d2:93:6a:fd:be:6f:13:1d:f1:e7:
b9:94:7b:51:7d:31:da:45:38:24:a4:a8:5c:81:29:
52:69:e4:55:16:6e:22:74:73:d1:79:0b:ad:6e:3a:
d1:6b:6a:90:e0:25:e0:fe:d8:1c:24:b4:40:bd:29:
2a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:49:08:9A:31:4E:D1:96:35:07:63:45:D6:8F:42:E2:FA:75:02:79
X509v3 Authority Key Identifier:
keyid:08:43:58:03:27:8D:C5:79:6E:E6:76:97:99:64:54:D6:56:19:5D:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d70d629a-96ed-451a-8787-34122282a706/0/08435803278DC5796EE67697996454D656195D4C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08435803278DC5796EE67697996454D656195D4C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d70d629a-96ed-451a-8787-34122282a706/0/3130332e3233302e3234362e302f32342d3234203d3e20313331373735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.230.246.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:73:1a:c8:f4:96:39:cf:71:9e:e6:4d:f4:8f:cb:d8:01:d7:
f0:5d:64:83:39:2f:e7:39:88:4e:b4:41:32:9d:49:31:c0:07:
76:ec:86:0c:85:e7:69:1e:0c:0d:fc:06:8d:13:a0:e2:3c:21:
65:d4:19:39:ef:e5:56:8d:53:b1:98:22:f6:84:97:fc:46:53:
a9:94:b9:36:fb:ce:ad:d6:59:37:bd:df:0f:ca:4b:3d:25:b7:
03:a7:f6:5f:16:77:a5:f4:16:eb:2e:9b:13:06:fc:c5:5e:4d:
ad:fd:53:1f:7c:03:1c:04:c1:8b:fc:5f:c6:4b:b4:2f:53:97:
15:b3:47:cc:ac:a6:92:cb:ea:bf:db:ad:1c:f4:d9:3c:2f:c4:
4d:7b:84:f8:79:c9:86:02:85:9f:db:76:b2:4b:ae:1d:ed:0c:
93:f0:61:2f:93:82:ba:a6:a6:1a:62:a7:b9:0f:f1:d5:f5:63:
40:3e:14:aa:c2:89:95:f9:4b:93:46:34:c2:92:82:f1:86:95:
6d:9e:8f:d8:c4:48:05:63:11:2c:29:ef:f2:9d:0d:5e:7d:e5:
d9:09:bf:3d:ea:ee:10:e4:8d:cd:20:84:48:6c:52:d2:1a:07:
9b:e8:ce:6c:54:59:63:7c:51:91:75:69:82:b0:36:63:49:ab:
46:5b:86:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 07:53:07 2025 by rpki-client