Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138077.roa
File: AS138077.roa (raw, json)
Hash identifier: LRPDS3W0mHRaTCZqq+Sy7G7FchMrCPNM+FT7XoURybA=
Subject key identifier: C9:49:31:2C:21:FF:04:03:DD:5D:7A:01:BA:F2:22:60:03:CC:EF:C8
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 4C4BAA31A05BD83BB9CDE54E4766D3BC61281895
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138077.roa
Signing time: Sun 16 Mar 2025 03:14:37 +0000
ROA not before: Sun 16 Mar 2025 03:09:37 +0000
ROA not after: Sun 15 Mar 2026 03:14:37 +0000
asID: 138077
IP address blocks: 103.7.187.0/24 maxlen: 24
103.52.2.0/23 maxlen: 24
103.87.70.0/23 maxlen: 24
103.140.20.0/23 maxlen: 24
103.160.54.0/23 maxlen: 24
103.160.154.0/23 maxlen: 24
103.169.204.0/23 maxlen: 24
117.103.116.0/23 maxlen: 24
202.56.172.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 27 Apr 2025 20:52:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:4b:aa:31:a0:5b:d8:3b:b9:cd:e5:4e:47:66:d3:bc:61:28:18:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Mar 16 03:09:37 2025 GMT
Not After : Mar 15 03:14:37 2026 GMT
Subject: CN=C949312C21FF0403DD5D7A01BAF2226003CCEFC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fd:12:fd:08:98:99:5e:79:d8:0b:5d:28:c4:
a0:d4:d7:70:df:dd:82:bc:78:02:89:20:7c:b5:46:
ce:9a:dd:f9:28:85:d9:a2:a7:5b:59:4a:47:9d:bb:
11:18:38:47:2e:f2:2a:ef:50:62:8e:2e:34:c8:d8:
77:1f:7f:6f:67:ff:6f:b7:09:12:b3:f1:fd:d5:86:
95:91:03:0c:d0:d0:23:e6:14:b5:db:8a:95:f2:f0:
c2:20:a5:bc:3e:5b:70:8d:61:4c:a9:28:c1:36:d0:
61:ef:6e:96:f5:57:a9:ed:50:6b:b9:46:69:91:1a:
b5:93:8d:35:88:fb:f3:e2:64:42:cd:6b:08:ab:d4:
b9:16:4f:0a:09:e6:fa:3d:a8:78:39:8e:b1:c8:de:
bf:64:be:84:84:eb:5a:89:9e:31:d1:b7:e6:4c:63:
03:3a:fd:d7:72:35:94:b3:75:1d:38:ac:ea:42:04:
28:c7:63:82:42:25:08:c2:4a:66:26:9e:f1:d2:74:
81:c6:03:06:1d:76:45:ae:3a:97:13:71:fc:7e:3d:
c1:bb:a9:a2:87:f6:3a:a1:c7:9a:b0:b4:76:18:83:
f8:ef:67:a3:46:b8:b0:7b:1a:30:04:a8:c2:3b:44:
82:bc:09:7b:27:33:52:d0:02:31:41:e5:e5:8c:f2:
64:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:49:31:2C:21:FF:04:03:DD:5D:7A:01:BA:F2:22:60:03:CC:EF:C8
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138077.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.7.187.0/24
103.52.2.0/23
103.87.70.0/23
103.140.20.0/23
103.160.54.0/23
103.160.154.0/23
103.169.204.0/23
117.103.116.0/23
202.56.172.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:b2:22:7a:1f:0b:ce:9c:3d:e9:3c:93:18:a1:df:f4:74:c9:
76:20:42:3e:06:dc:30:c0:a8:25:22:2b:af:21:31:62:0a:bc:
81:f6:46:8a:54:81:78:04:15:a6:58:83:5a:0d:27:07:f9:d9:
ee:aa:e7:f6:68:8c:53:8e:41:2e:2a:f5:3c:ac:cf:d3:58:b7:
ba:e9:42:1f:37:3c:fc:6e:dd:c3:72:a8:e5:f9:d9:22:2a:f4:
f7:f1:2d:31:01:df:da:16:ba:8f:ab:74:be:f6:52:62:82:09:
3c:a2:b0:53:61:15:7f:ee:b0:ed:82:32:28:c7:8e:42:49:52:
9d:b7:d5:db:ff:c2:4d:87:f5:17:91:cd:69:ad:60:45:b2:d4:
d5:5e:8b:82:66:46:c4:f0:d2:03:64:15:93:93:4b:e6:6d:72:
bb:33:3b:47:e0:f9:1f:5a:93:24:9f:78:6b:52:48:46:cc:af:
0f:de:4e:76:1a:23:11:88:12:76:86:0d:76:88:55:be:27:e5:
64:89:8b:f6:c2:c0:27:35:d5:02:b6:6b:36:a0:d3:ff:9c:75:
84:11:3a:04:76:fe:2a:d1:60:be:b6:35:74:10:b0:33:8d:0f:
ca:e6:c8:da:e3:50:43:24:db:02:a1:db:ba:bc:c2:98:66:9d:
ff:d5:9e:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 20:37:18 2025 by rpki-client on console.sobornost.net