Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS136119.roa
File: AS136119.roa (raw, json)
Hash identifier: G5WjKv0nbjJYWDLl0gCcgB5rONR7WeCVUH7/tXDqo+c=
Subject key identifier: 8C:3C:CD:02:BC:E0:4A:88:01:51:DC:95:47:AC:8C:51:81:0A:86:17
Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Certificate serial: 7FEBACFEDF3E9DC854C66F6BC2607F6E777CA89E
Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136119.roa
Signing time: Sat 02 May 2026 21:05:04 +0000
ROA not before: Sat 02 May 2026 21:00:04 +0000
ROA not after: Sat 01 May 2027 21:05:04 +0000
asID: 136119
IP address blocks: 103.119.140.0/22 maxlen: 24
103.119.144.0/22 maxlen: 24
103.138.40.0/23 maxlen: 24
103.138.42.0/23 maxlen: 24
103.138.46.0/23 maxlen: 24
103.138.48.0/23 maxlen: 24
175.111.108.0/22 maxlen: 24
202.10.60.0/24 maxlen: 24
202.10.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 04 May 2026 01:58:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:eb:ac:fe:df:3e:9d:c8:54:c6:6f:6b:c2:60:7f:6e:77:7c:a8:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Validity
Not Before: May 2 21:00:04 2026 GMT
Not After : May 1 21:05:04 2027 GMT
Subject: CN=8C3CCD02BCE04A880151DC9547AC8C51810A8617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3b:60:ca:71:36:be:4d:dc:b7:eb:30:d5:26:
51:79:f1:92:15:91:ad:39:9b:53:c6:a5:d9:a8:3b:
e1:5d:76:ce:d3:3e:ad:31:0f:8e:71:58:b9:dd:e7:
d7:1b:1a:ba:9d:17:ba:7e:32:81:c9:9c:42:de:63:
f2:48:f1:6c:9c:dc:eb:ea:8f:d5:f3:45:1b:83:8d:
f3:45:ae:8c:4f:0c:d1:ed:f5:44:df:99:2f:51:40:
36:09:2d:a0:e7:8b:64:98:0b:16:20:0a:6c:ca:88:
37:8b:42:b3:b7:19:cb:df:19:35:ab:53:31:ca:2b:
6e:d4:60:e7:aa:80:a5:06:b0:c7:47:00:8f:0a:7b:
7d:42:02:75:16:aa:96:c9:25:fb:14:0a:49:99:0f:
d8:57:63:cb:21:15:1e:e6:77:65:99:c9:02:92:03:
52:17:12:05:6b:aa:a1:64:c9:a6:7e:80:85:3f:ae:
8b:1b:2b:09:97:29:03:64:41:99:3d:37:35:20:30:
23:8d:c8:b5:38:cf:73:8f:8a:72:69:ad:fa:84:8e:
72:ef:03:59:61:fc:9e:09:61:79:bd:98:3a:a0:ad:
6d:47:91:a5:d4:e4:a3:02:0a:e0:75:40:37:94:dc:
7b:52:75:ba:41:22:3a:39:d9:1d:0a:e9:a7:b8:71:
40:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:3C:CD:02:BC:E0:4A:88:01:51:DC:95:47:AC:8C:51:81:0A:86:17
X509v3 Authority Key Identifier:
keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136119.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.119.140.0-103.119.147.255
103.138.40.0/22
103.138.46.0-103.138.49.255
175.111.108.0/22
202.10.60.0/23
Signature Algorithm: sha256WithRSAEncryption
31:0c:ce:d4:3c:ba:10:29:a9:17:fb:f7:1a:17:3e:25:51:c7:
54:0d:14:68:32:33:30:2c:06:03:3f:36:4f:72:6c:b8:b1:57:
98:f4:d2:e6:92:24:73:80:21:06:3f:c4:3d:e9:b0:28:dc:79:
ce:be:60:d6:52:17:e8:44:d2:57:eb:ce:95:80:ab:bb:f9:cd:
0c:14:3c:3a:5c:dc:46:7c:9c:97:41:fd:3b:6b:35:76:ef:27:
f3:8c:cd:cf:1e:ce:52:b6:4f:4a:60:35:d8:ef:17:e2:af:ed:
ef:a3:d6:64:1b:07:bc:33:53:4a:75:93:e3:6a:04:b4:e7:4b:
9f:86:0b:52:e2:29:cf:a2:35:7e:50:a0:9a:b4:f8:51:c6:68:
82:d1:c2:91:23:2c:d4:bb:58:96:90:f0:4c:8e:f1:95:34:0b:
3e:34:1f:2c:2a:71:b2:ad:b3:55:96:16:2b:f4:0e:30:fc:8b:
10:ee:08:bf:d4:4c:9e:91:12:20:c5:09:64:33:7a:54:82:5e:
b8:3a:15:fe:37:a6:39:c1:4b:36:05:2b:b8:8c:81:3e:fa:79:
9b:a0:78:3e:d7:f1:b0:85:bb:c5:67:7a:c5:a9:8d:7d:3f:74:
5c:5c:a3:42:af:56:7a:6b:8d:5c:d7:90:f6:44:ef:fc:5d:a8:
cf:9e:08:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 00:42:21 2026 by rpki-client