Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS4800.roa
File: AS4800.roa (raw, json)
Hash identifier: gP0wUFFSvI8vOazfvpX9nC9MQn2OhNXN3PKIFqb485E=
Subject key identifier: AC:F1:A6:1A:53:C4:A4:10:33:84:63:DB:C5:AD:19:8F:2A:44:89:F6
Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362
Certificate serial: 69F784E6F46402BF7ACFB429C5056C9952DE3D7C
Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS4800.roa
Signing time: Sat 02 May 2026 09:23:58 +0000
ROA not before: Sat 02 May 2026 09:18:58 +0000
ROA not after: Sat 01 May 2027 09:23:58 +0000
asID: 4800
IP address blocks: 157.66.52.0/23 maxlen: 24
157.66.112.0/23 maxlen: 24
157.66.114.0/23 maxlen: 24
157.66.116.0/23 maxlen: 24
157.66.136.0/23 maxlen: 24
157.66.200.0/23 maxlen: 24
157.66.202.0/23 maxlen: 24
157.66.204.0/23 maxlen: 24
157.66.206.0/23 maxlen: 24
157.66.212.0/23 maxlen: 24
157.66.214.0/23 maxlen: 24
157.66.228.0/23 maxlen: 24
157.66.230.0/23 maxlen: 24
157.66.232.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 03 May 2026 20:26:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:f7:84:e6:f4:64:02:bf:7a:cf:b4:29:c5:05:6c:99:52:de:3d:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362
Validity
Not Before: May 2 09:18:58 2026 GMT
Not After : May 1 09:23:58 2027 GMT
Subject: CN=ACF1A61A53C4A410338463DBC5AD198F2A4489F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:32:cd:5a:60:b0:7d:27:a2:1f:6e:9a:4b:6f:
0a:bf:f1:35:eb:51:9c:4c:c5:0c:2f:69:8b:cc:fb:
9f:21:81:24:5d:35:de:98:28:56:e6:ad:2a:68:b2:
c3:4a:25:14:d7:45:bc:9f:0c:77:2c:b5:55:13:c0:
c5:e2:bf:1a:b5:69:f4:bb:1d:db:4a:9f:a4:a4:13:
84:70:34:4e:92:e1:60:01:40:36:e4:52:8e:4a:ff:
4b:9d:1d:fe:d8:e4:d0:f1:88:aa:f7:53:66:69:23:
ff:12:63:ff:01:08:82:d3:65:e7:41:75:6e:78:b2:
5d:31:4e:43:64:a1:c9:dd:59:95:46:ec:4b:69:3b:
8d:af:c7:69:4e:a3:2d:8d:d7:4a:8c:de:52:f3:8b:
97:6c:e5:bd:c4:aa:bc:98:e8:de:af:ac:18:b9:44:
68:bc:6c:56:cb:12:de:9f:dc:6d:ac:ac:d2:b7:56:
72:c0:1a:5d:24:c2:99:c7:1d:0f:0d:76:97:4e:18:
0c:30:5d:80:67:ce:d4:e1:36:dd:01:01:aa:5c:62:
74:05:9f:0b:82:86:d6:3b:76:8b:1f:df:64:fc:64:
f8:b5:37:19:1b:87:ce:94:47:14:5f:b3:2a:95:34:
7d:75:d6:5a:a1:8c:b1:45:a1:81:57:6f:a7:38:f5:
7c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F1:A6:1A:53:C4:A4:10:33:84:63:DB:C5:AD:19:8F:2A:44:89:F6
X509v3 Authority Key Identifier:
keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS4800.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.66.52.0/23
157.66.112.0-157.66.117.255
157.66.136.0/23
157.66.200.0/21
157.66.212.0/22
157.66.228.0-157.66.233.255
Signature Algorithm: sha256WithRSAEncryption
26:97:cc:34:d0:fb:e5:4e:4a:ca:8f:af:c5:f3:89:7c:64:2b:
b5:28:78:dd:70:66:71:94:34:07:c5:7d:a9:5b:7a:e0:54:68:
08:ce:47:a6:68:d0:6c:53:30:09:9d:11:8f:38:24:a8:0e:75:
2c:e5:1c:1d:c6:6b:f0:a6:6a:c0:8e:2d:96:14:85:80:bd:d3:
2d:2f:ae:4b:3d:c3:c7:db:df:62:c1:96:06:f0:89:b2:25:e6:
a7:0d:7d:f8:e0:28:a0:05:17:72:23:07:a7:89:bb:1e:d0:24:
06:1c:59:43:ef:2e:d4:3e:a8:9c:07:7a:5b:1b:6a:7c:d3:ea:
8b:fb:c5:df:eb:ec:4d:9f:b6:f9:fe:d9:39:d4:7e:c0:8b:f1:
d5:27:ba:b4:bf:d3:c0:e7:57:dc:21:3e:e3:a2:30:62:fe:ba:
7e:8e:e8:55:07:d4:31:fe:2a:d4:df:7f:23:ac:30:a0:f8:bb:
9c:f5:79:ec:33:15:f1:16:c8:0a:c5:f7:bb:a5:ca:64:60:43:
89:01:02:f5:df:ad:5d:15:d0:1b:51:6e:e6:7a:0b:7f:71:59:
fb:77:1d:82:3f:39:ba:3f:5e:6f:84:3f:a6:87:2f:e5:7c:bf:
bd:69:85:9c:16:77:d6:21:72:c5:84:3f:ce:19:85:38:09:a3:
8b:3b:65:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 2 21:05:39 2026 by rpki-client