Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS56241.roa
File: AS56241.roa (raw, json)
Hash identifier: 0PxJMU3Nl2AXEZeJMMrFcI4KllNdNc8tfGjHFpZn9i4=
Subject key identifier: BF:68:D1:DA:A2:23:DE:17:77:B6:7E:70:DB:8F:32:1D:4C:DE:08:67
Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Certificate serial: 21705D7F68493EEFAAB72D72B970E9B94DAF6EF3
Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS56241.roa
Signing time: Sat 02 May 2026 21:22:00 +0000
ROA not before: Sat 02 May 2026 21:17:00 +0000
ROA not after: Sat 01 May 2027 21:22:00 +0000
asID: 56241
IP address blocks: 45.126.152.0/24 maxlen: 24
45.126.153.0/24 maxlen: 24
45.126.155.0/24 maxlen: 24
103.10.56.0/24 maxlen: 24
103.10.145.0/24 maxlen: 24
103.85.221.0/24 maxlen: 24
103.85.222.0/24 maxlen: 24
103.85.223.0/24 maxlen: 24
103.86.144.0/24 maxlen: 24
103.86.145.0/24 maxlen: 24
103.255.52.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 04 May 2026 01:02:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:70:5d:7f:68:49:3e:ef:aa:b7:2d:72:b9:70:e9:b9:4d:af:6e:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Validity
Not Before: May 2 21:17:00 2026 GMT
Not After : May 1 21:22:00 2027 GMT
Subject: CN=BF68D1DAA223DE1777B67E70DB8F321D4CDE0867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:78:47:bd:ad:8d:d7:30:c0:9c:e2:8c:bb:bc:
43:6c:02:95:cc:ca:eb:71:99:48:77:c5:98:b5:d1:
96:58:05:e6:6d:48:f0:2d:31:5f:84:66:bf:b1:c8:
b3:a5:3d:e8:ef:66:2f:5a:a6:42:3c:15:07:da:45:
b2:f6:80:6b:4f:14:07:a6:a9:22:31:4e:8b:1c:24:
81:4c:a7:d0:31:2f:19:6e:8f:23:fd:38:e1:25:a0:
65:9d:cd:ab:15:94:e2:16:45:32:79:a9:05:df:cd:
c5:3a:d8:0c:da:d9:90:f9:aa:38:fc:a1:0e:8f:e0:
8c:9c:8b:e8:2e:cc:d5:70:21:1e:5a:19:49:8b:21:
6a:87:d4:1e:fe:4a:fc:45:99:c1:a9:a4:ca:bd:75:
f6:0f:7f:3a:7f:52:1f:f5:e3:4c:81:2f:c1:f4:f7:
c2:ec:21:0f:e4:47:43:a9:ba:96:9c:b3:67:fe:3c:
ed:6f:c5:04:28:40:86:13:4f:ec:66:3f:64:78:4d:
85:d8:f5:15:72:aa:c4:ca:34:e5:ff:af:5a:ef:36:
a3:56:6c:fd:82:24:3c:ae:46:05:90:9a:b0:b7:f7:
1a:07:dc:38:18:b9:89:5e:c1:70:be:56:d4:aa:9f:
a4:16:81:28:9e:4b:d9:f8:d5:48:d0:5f:28:ae:97:
48:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:68:D1:DA:A2:23:DE:17:77:B6:7E:70:DB:8F:32:1D:4C:DE:08:67
X509v3 Authority Key Identifier:
keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS56241.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.126.152.0/23
45.126.155.0/24
103.10.56.0/24
103.10.145.0/24
103.85.221.0-103.85.223.255
103.86.144.0/23
103.255.52.0/23
Signature Algorithm: sha256WithRSAEncryption
48:88:4c:83:be:3f:ac:3f:95:27:a3:2e:6d:a6:9c:28:24:c6:
d6:0a:b8:03:eb:a5:80:42:24:89:c7:1d:b1:c4:79:e0:96:0e:
44:f4:82:24:fb:e7:07:b1:aa:ba:51:63:60:fa:be:14:f9:de:
9b:3e:36:05:ac:f1:94:9b:61:00:f5:e4:82:2e:16:92:15:80:
67:d2:82:6d:57:07:9a:20:08:97:0c:ee:be:c6:d6:5c:ae:bd:
41:d9:40:b9:c2:69:d6:6b:e6:75:18:d3:6a:bf:f5:25:1f:18:
00:45:e9:f2:46:6e:d7:40:85:f4:5f:1a:5f:bc:29:7f:21:00:
09:57:f5:66:55:ca:0a:0c:81:44:07:ab:a5:61:fe:8d:dc:dc:
f3:a4:63:33:9f:5d:58:a6:d5:a7:78:f4:18:fb:f6:6a:1f:0c:
5a:3a:84:7e:cf:20:fd:0f:e5:d9:61:45:3d:2e:60:b7:0a:4b:
63:a2:82:8b:a9:ab:d2:c4:28:52:3c:8a:e4:27:fd:1e:16:ca:
20:23:b1:52:8d:08:8e:0b:84:8e:dd:35:36:b2:3b:9c:f8:da:
26:d9:fe:50:46:02:af:9e:09:7d:65:8f:4b:54:f4:6a:1b:30:
63:ca:ca:ba:a3:4a:87:58:37:68:bf:0f:6c:5c:f1:a8:6a:67:
a3:6f:72:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 00:40:27 2026 by rpki-client