Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS131769.roa
File: AS131769.roa (raw, json)
Hash identifier: 7jqz4pUVK8L1Fj38y3iqaudcFEgVaMarhbvb9VXn2Ng=
Subject key identifier: EC:01:06:E1:01:CB:70:51:52:73:9C:9E:01:FB:68:16:29:83:FF:3C
Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Certificate serial: 2ED700E5744296CD32782C1B359ACFBB20EC319E
Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131769.roa
Signing time: Sat 02 May 2026 21:31:34 +0000
ROA not before: Sat 02 May 2026 21:26:34 +0000
ROA not after: Sat 01 May 2027 21:31:34 +0000
asID: 131769
IP address blocks: 103.16.132.0/23 maxlen: 24
103.211.160.0/24 maxlen: 24
103.227.148.0/23 maxlen: 24
203.18.39.0/24 maxlen: 24
203.153.20.0/22 maxlen: 24
210.87.122.0/24 maxlen: 24
2400:c080::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 04 May 2026 01:02:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:d7:00:e5:74:42:96:cd:32:78:2c:1b:35:9a:cf:bb:20:ec:31:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Validity
Not Before: May 2 21:26:34 2026 GMT
Not After : May 1 21:31:34 2027 GMT
Subject: CN=EC0106E101CB705152739C9E01FB68162983FF3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b1:2b:3e:7d:52:91:de:5b:ec:3b:65:69:a5:
ea:5c:22:f3:2a:15:5c:a4:aa:55:df:9d:f9:8a:9d:
09:ae:e3:11:de:af:a6:af:d8:07:eb:fb:08:c5:1b:
06:5c:a8:3c:26:3b:ce:0c:ab:8e:3f:9f:06:ac:8c:
5c:d8:d1:e6:89:1e:8e:e8:82:2c:73:64:a6:77:bb:
aa:a2:93:dc:24:68:12:da:11:3a:e4:6e:0f:5b:9f:
1e:b3:70:49:a3:67:53:e5:97:79:c8:58:fa:03:f3:
57:22:d7:7b:5f:76:93:2e:a4:e8:94:2b:9a:a4:a9:
a8:eb:cd:44:16:d2:65:38:46:4a:0a:05:d5:d0:42:
c5:e4:e5:8d:ea:99:fe:65:0e:c1:5e:d5:76:b6:c4:
2f:a8:2a:b0:e7:83:bf:08:31:0a:4e:fe:a6:f9:36:
b4:e6:e5:d4:21:7b:de:a9:ee:2e:d9:7a:a4:cb:7a:
c2:f1:c1:6c:a1:51:82:f9:91:b3:56:ed:26:68:e9:
d4:87:f0:08:19:eb:77:85:eb:48:63:c3:de:f3:3b:
91:b3:1b:c8:8c:fc:82:f4:85:45:6f:f7:06:05:11:
2c:15:d6:eb:53:b9:3d:83:22:b2:a1:bb:5e:64:93:
17:e5:77:ef:34:d9:c4:a3:5a:b9:53:27:ee:19:f2:
03:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:01:06:E1:01:CB:70:51:52:73:9C:9E:01:FB:68:16:29:83:FF:3C
X509v3 Authority Key Identifier:
keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131769.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.16.132.0/23
103.211.160.0/24
103.227.148.0/23
203.18.39.0/24
203.153.20.0/22
210.87.122.0/24
IPv6:
2400:c080::/32
Signature Algorithm: sha256WithRSAEncryption
4d:67:4e:13:bf:b0:4d:0b:6a:df:7f:b4:a3:80:74:be:fd:cf:
63:69:a8:04:5d:b5:55:df:5d:32:98:b6:3b:26:90:7c:00:9b:
33:df:26:42:95:33:70:c1:f0:11:b2:ce:f0:c3:f1:5e:c5:7f:
d2:0e:2b:d5:11:0d:50:88:27:29:71:8b:37:5a:8f:de:f3:de:
57:2b:32:c0:47:92:93:cc:20:87:3d:29:7d:3f:4f:84:44:8c:
c8:76:58:6c:d8:e6:d0:7f:bd:18:0c:b4:41:02:e6:6f:b5:79:
f1:50:47:8d:f8:1a:ab:92:34:60:33:a3:d3:2e:e5:5d:af:d8:
c6:e3:c2:6b:d2:d0:57:b2:a4:cb:c6:c1:d3:36:4d:d2:9f:22:
bc:71:3c:00:57:81:b5:dc:f0:2d:11:3d:31:d4:40:0c:60:a3:
7a:2a:2e:4c:3a:c0:29:45:2b:72:1e:da:2e:77:f8:87:24:bb:
7a:ec:cc:c8:8c:65:85:b4:4c:0c:4c:d9:92:8c:69:28:ba:78:
c4:c4:06:d9:28:2c:35:34:80:59:08:ee:be:0e:ab:30:cb:ab:
ac:f3:8b:0c:8b:41:f9:68:24:19:75:eb:20:dc:af:cb:96:76:
00:a8:f0:bb:1e:e5:2d:0c:78:f4:fe:a6:ad:2f:6b:f0:8a:a9:
ea:1d:e0:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 00:41:37 2026 by rpki-client