Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS56246.roa
File: AS56246.roa (raw, json)
Hash identifier: Jg1JO8U8qUnNnoBO4ITyKA5SLKX6vaHxKa9mIPtx0Ig=
Subject key identifier: 47:28:4F:CA:60:C2:56:57:C5:29:53:7F:05:2B:80:D1:71:97:22:70
Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Certificate serial: 0711E6F7EA6CE3478028447CB6FC962B84C8C706
Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS56246.roa
Signing time: Sat 02 May 2026 21:10:40 +0000
ROA not before: Sat 02 May 2026 21:05:40 +0000
ROA not after: Sat 01 May 2027 21:10:40 +0000
asID: 56246
IP address blocks: 103.143.223.0/24 maxlen: 24
103.152.234.0/23 maxlen: 24
114.198.240.0/21 maxlen: 24
114.198.244.0/24 maxlen: 24
114.198.245.0/24 maxlen: 24
116.68.166.0/24 maxlen: 24
116.68.170.0/24 maxlen: 24
116.68.171.0/24 maxlen: 24
116.68.172.0/24 maxlen: 24
116.68.173.0/24 maxlen: 24
116.68.174.0/24 maxlen: 24
116.68.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 04 May 2026 01:02:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:11:e6:f7:ea:6c:e3:47:80:28:44:7c:b6:fc:96:2b:84:c8:c7:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Validity
Not Before: May 2 21:05:40 2026 GMT
Not After : May 1 21:10:40 2027 GMT
Subject: CN=47284FCA60C25657C529537F052B80D171972270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:64:44:b6:30:28:25:3a:b4:6a:c7:8c:91:59:
56:7c:c0:41:a1:2d:a6:78:c1:58:ef:4d:93:bd:01:
28:d0:ef:49:0b:b2:dc:53:1c:6a:0e:75:5a:59:39:
81:13:42:a5:39:8f:7c:c2:53:b0:1b:4d:a8:80:dd:
c9:8a:03:a6:b9:d7:d0:91:67:c8:07:c8:01:87:1b:
16:59:f4:0a:31:72:b4:a7:ab:51:1d:5e:35:73:3e:
54:77:58:fc:1d:7e:4f:28:ed:70:9e:81:47:67:aa:
4e:6a:95:da:f3:86:69:25:ba:86:d6:0a:47:ba:05:
f6:7b:3d:1b:05:41:40:70:01:f8:3a:5d:fa:06:e1:
ab:3a:05:d7:cc:b4:ea:95:b6:2c:e5:8f:cd:6a:8e:
c0:96:bd:4a:e1:38:91:f7:05:23:16:16:fd:a3:25:
9e:60:24:bf:72:3e:3e:e5:2f:db:ca:dd:72:6e:c2:
00:b7:c9:93:cd:73:f6:fa:8b:28:ba:cc:28:75:ab:
76:99:df:9f:8f:66:26:40:e3:56:01:1e:48:1b:2f:
60:ca:fa:12:a7:6d:4c:13:23:4a:24:85:84:3a:7b:
d4:de:77:5d:8e:7f:09:12:6c:47:b2:1e:38:56:01:
82:f5:d2:3c:b0:81:21:e9:1e:01:e5:a0:0e:23:a5:
75:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:28:4F:CA:60:C2:56:57:C5:29:53:7F:05:2B:80:D1:71:97:22:70
X509v3 Authority Key Identifier:
keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS56246.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.143.223.0/24
103.152.234.0/23
114.198.240.0/21
116.68.166.0/24
116.68.170.0-116.68.175.255
Signature Algorithm: sha256WithRSAEncryption
46:61:32:97:a0:b7:ec:9a:78:13:b4:c0:44:03:a7:5f:65:4b:
39:34:c9:70:3f:46:4e:ba:20:34:a3:74:59:c5:58:2b:dc:02:
81:14:c0:d3:f8:de:36:2c:33:be:12:52:e8:dc:62:44:91:03:
0e:1a:1a:0f:b9:0e:49:3b:64:5f:d3:c8:ff:84:56:d7:bf:34:
a2:80:53:31:de:09:71:34:85:d5:79:15:e6:f1:b5:02:86:06:
4b:29:47:30:ab:ba:5a:4e:22:04:09:53:2a:75:2d:00:1d:b9:
e1:4c:be:f2:82:f3:d7:62:90:d6:e9:2f:ff:24:e9:18:7e:b4:
9f:fd:5d:3e:8f:69:05:97:8a:a7:d7:9d:d7:43:1d:c7:9b:09:
4f:48:fa:cc:9c:04:ee:97:b0:a5:23:44:6c:78:ee:46:68:32:
fa:4b:e7:27:d3:ab:32:88:00:1e:96:a4:48:27:bc:14:69:16:
03:ab:ec:b1:31:ef:e1:61:83:d7:27:a0:49:fa:7a:c8:86:e6:
70:5e:ca:3e:54:96:22:2b:8d:93:61:7e:69:9e:12:78:02:59:
97:eb:ab:20:27:11:d0:de:a1:d3:c6:81:59:c4:f9:3d:c3:69:
51:67:c9:a1:a4:79:45:27:a0:80:4a:85:45:70:85:df:04:71:
3e:a0:3e:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 00:40:32 2026 by rpki-client