Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS133817.roa
File: AS133817.roa (raw, json)
Hash identifier: lkBXhCa2cjAbtJ1vzbzfwf2DgLimaZPQyH+ous/4NjU=
Subject key identifier: 04:E1:0C:51:55:3E:E9:E2:A0:04:08:AE:E3:F5:34:7C:24:86:F6:6E
Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Certificate serial: 6D8238949BD0A8CE315FEF9C6C8FF65C4F18E828
Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS133817.roa
Signing time: Sat 02 May 2026 18:11:56 +0000
ROA not before: Sat 02 May 2026 18:06:56 +0000
ROA not after: Sat 01 May 2027 18:11:56 +0000
asID: 133817
IP address blocks: 103.53.76.0/22 maxlen: 24
103.85.95.0/24 maxlen: 24
103.105.196.0/23 maxlen: 24
103.144.4.0/24 maxlen: 24
103.149.203.0/24 maxlen: 24
103.162.68.0/24 maxlen: 24
103.173.232.0/24 maxlen: 24
103.186.12.0/24 maxlen: 24
103.187.214.0/23 maxlen: 24
180.131.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 03 May 2026 21:59:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:82:38:94:9b:d0:a8:ce:31:5f:ef:9c:6c:8f:f6:5c:4f:18:e8:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Validity
Not Before: May 2 18:06:56 2026 GMT
Not After : May 1 18:11:56 2027 GMT
Subject: CN=04E10C51553EE9E2A00408AEE3F5347C2486F66E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:78:f4:5c:7d:34:97:46:19:e5:0c:c3:81:7d:
eb:ac:6d:aa:78:cd:8b:28:33:4f:64:69:9e:e0:99:
03:5f:b0:c1:fa:a2:61:ec:af:4a:63:59:de:ea:e4:
87:68:98:de:a1:6f:5a:2e:6e:1a:9e:91:65:08:64:
f6:c8:64:d2:aa:e5:60:88:9b:a4:a6:7b:fa:6c:ee:
c9:88:39:57:13:29:3f:b0:82:78:04:13:77:8a:7e:
30:c6:e8:ab:21:ce:da:30:a9:a7:82:55:0c:1c:a0:
7c:15:bb:29:f0:fa:5f:b8:39:94:e6:40:15:69:b9:
5a:87:c4:60:7e:fc:00:ee:fe:90:0e:19:ea:a3:b7:
52:7e:dd:1f:b1:15:27:3e:42:4d:16:1e:76:67:8d:
f8:00:6a:46:98:ba:c9:6f:37:f9:63:b1:68:62:9b:
9a:37:55:66:51:8a:ba:e7:29:33:cc:0c:a1:82:f3:
3a:d8:c1:4b:7c:d0:91:74:56:c4:aa:dc:7a:66:a8:
e1:ab:78:79:b2:1d:db:3e:b3:b9:40:00:dc:ed:a0:
92:95:b4:8e:97:27:4b:b0:80:21:58:08:98:59:ed:
5a:e3:e5:60:28:20:c6:45:4e:ca:fe:06:23:48:88:
2a:dd:25:37:7a:52:e5:35:cf:2e:dd:c9:27:84:38:
38:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E1:0C:51:55:3E:E9:E2:A0:04:08:AE:E3:F5:34:7C:24:86:F6:6E
X509v3 Authority Key Identifier:
keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS133817.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.53.76.0/22
103.85.95.0/24
103.105.196.0/23
103.144.4.0/24
103.149.203.0/24
103.162.68.0/24
103.173.232.0/24
103.186.12.0/24
103.187.214.0/23
180.131.128.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:cf:62:1e:69:86:8b:06:36:64:2f:ec:25:66:6f:78:d9:21:
e9:ce:27:61:04:71:db:ff:6c:66:64:93:8d:63:f8:d1:cd:7b:
98:2f:38:ae:a4:a6:17:2e:9c:e1:99:62:ce:7d:dc:78:fd:af:
77:50:9b:90:0f:9b:0c:65:17:2f:c4:bb:9a:ff:83:52:ad:d7:
e6:4e:4a:6b:ba:d1:20:84:81:01:ee:de:4e:ae:1d:68:9d:c6:
ff:61:bf:4e:03:a0:3d:f4:34:45:9b:bd:54:2f:d7:78:24:df:
14:83:5f:3e:c1:51:84:2f:cc:b3:16:4e:79:1a:93:20:39:0e:
8e:ab:c7:13:4a:73:9b:28:ed:32:8f:a3:ed:a9:61:25:94:f5:
e8:5f:7c:16:c7:a3:0a:06:ad:2a:33:16:92:5d:d4:ce:57:fc:
bb:21:89:ae:3c:46:67:c4:f2:13:89:f5:f1:96:1d:ab:1d:0b:
54:9b:3a:b2:9d:47:81:e4:57:0e:f5:2f:d5:5d:1a:be:2a:41:
bc:df:b6:05:7d:6f:fc:70:ed:af:c4:a3:37:29:2d:8b:bc:10:
61:0a:8c:5f:e3:04:6b:1b:2a:20:38:b1:00:fe:b8:ef:33:44:
8f:4e:73:9a:d7:d6:cf:85:ea:cc:a2:66:eb:56:13:f7:7a:43:
a8:94:6d:10
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgIUbYI4lJvQqM4xX++cbI/2XE8Y6CgwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4
QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE4MDY1NloX
DTI3MDUwMTE4MTE1NlowMzExMC8GA1UEAxMoMDRFMTBDNTE1NTNFRTlFMkEwMDQw
OEFFRTNGNTM0N0MyNDg2RjY2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKJ49Fx9NJdGGeUMw4F966xtqnjNiygzT2RpnuCZA1+wwfqiYeyvSmNZ3urk
h2iY3qFvWi5uGp6RZQhk9shk0qrlYIibpKZ7+mzuyYg5VxMpP7CCeAQTd4p+MMbo
qyHO2jCpp4JVDBygfBW7KfD6X7g5lOZAFWm5WofEYH78AO7+kA4Z6qO3Un7dH7EV
Jz5CTRYedmeN+ABqRpi6yW83+WOxaGKbmjdVZlGKuucpM8wMoYLzOtjBS3zQkXRW
xKrcemao4at4ebId2z6zuUAA3O2gkpW0jpcnS7CAIVgImFntWuPlYCggxkVOyv4G
I0iIKt0lN3pS5TXPLt3JJ4Q4OPUCAwEAAaOCAgIwggH+MB0GA1UdDgQWBBQE4QxR
VT7p4qAECK7j9TR8JIb2bjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu
njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp
LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5
NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG
AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG
NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO
OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v
cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTMzODE3LnJvYTAY
BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIA
ATA8AwQCZzVMAwQAZ1VfAwQBZ2nEAwQAZ5AEAwQAZ5XLAwQAZ6JEAwQAZ63oAwQA
Z7oMAwQBZ7vWAwQAtIOAMA0GCSqGSIb3DQEBCwUAA4IBAQCjz2IeaYaLBjZkL+wl
Zm942SHpzidhBHHb/2xmZJONY/jRzXuYLziupKYXLpzhmWLOfdx4/a93UJuQD5sM
ZRcvxLua/4NSrdfmTkprutEghIEB7t5Orh1oncb/Yb9OA6A99DRFm71UL9d4JN8U
g18+wVGEL8yzFk55GpMgOQ6Oq8cTSnObKO0yj6PtqWEllPXoX3wWx6MKBq0qMxaS
XdTOV/y7IYmuPEZnxPITifXxlh2rHQtUmzqynUeB5FcO9S/VXRq+KkG837YFfW/8
cO2vxKM3KS2LvBBhCoxf4wRrGyogOLEA/rjvM0SPTnOa19bPherMombrVhP3ekOo
lG0Q
-----END CERTIFICATE-----
Generated at Sat May 2 22:51:09 2026 by rpki-client