Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63515.roa
File: AS63515.roa (raw, json)
Hash identifier: b0h2gOg5q3GfQsmNi2aphLPTOiwLwLBuRia9IGsP1jA=
Subject key identifier: 53:96:EA:7A:AB:10:BF:FE:B1:AE:48:29:74:58:AA:67:84:E9:97:96
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 168AAC4A54B0815661AF442A1AE33A7C54AB4A1E
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63515.roa
Signing time: Thu 17 Apr 2025 15:00:00 +0000
ROA not before: Thu 17 Apr 2025 14:55:00 +0000
ROA not after: Thu 16 Apr 2026 15:00:00 +0000
asID: 63515
IP address blocks: 116.193.188.0/24 maxlen: 24
116.193.189.0/24 maxlen: 24
2404:ef00::/32 maxlen: 48
2406:6cc0::/32 maxlen: 48
2406:6cc0:a300::/48 maxlen: 48
2406:6cc0:a400::/48 maxlen: 48
2406:6cc0:a600::/48 maxlen: 48
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 27 Apr 2025 20:52:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:8a:ac:4a:54:b0:81:56:61:af:44:2a:1a:e3:3a:7c:54:ab:4a:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Apr 17 14:55:00 2025 GMT
Not After : Apr 16 15:00:00 2026 GMT
Subject: CN=5396EA7AAB10BFFEB1AE48297458AA6784E99796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a6:bc:ea:44:79:49:4d:05:6d:2e:76:21:2d:
4f:c6:c4:db:b8:37:50:8c:1f:ef:8e:ab:cb:6f:32:
30:b9:29:0c:d1:be:3d:64:df:29:27:4b:4a:f5:fd:
d9:4d:f4:a4:40:a6:0f:7c:d3:8c:fe:e6:36:79:6d:
38:ab:9f:79:ac:98:39:dc:67:90:1a:2e:f8:eb:7d:
20:47:e8:b9:3e:7a:bf:a2:3d:36:ec:eb:07:a3:06:
1b:16:6c:7d:fc:d3:70:93:80:f8:9b:54:02:a1:89:
b3:1b:df:01:29:18:0e:0e:8f:95:d5:dd:b7:b3:d1:
0d:58:15:f5:ce:1b:18:38:8e:17:06:3f:b8:37:84:
31:19:c3:1d:db:6f:ae:57:60:78:73:65:65:de:55:
f8:25:0b:6d:6f:ae:c7:b6:60:0a:a5:6a:a7:75:18:
cc:90:6e:44:4a:03:9a:14:87:f0:5c:b2:63:c9:f2:
9e:48:13:f4:54:9d:2c:46:be:fb:a7:40:49:04:9f:
16:7a:8f:8c:9a:ab:78:3c:80:12:47:a0:c8:1a:e5:
3e:66:9d:34:86:e3:8a:d0:e5:23:06:9e:6b:51:e8:
14:ee:20:49:f5:8a:16:c8:d3:21:92:96:fb:1b:ff:
16:15:fe:c6:33:c9:d1:6c:1d:29:9a:2c:6b:c6:6b:
d4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:96:EA:7A:AB:10:BF:FE:B1:AE:48:29:74:58:AA:67:84:E9:97:96
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63515.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.193.188.0/23
IPv6:
2404:ef00::/32
2406:6cc0::/32
Signature Algorithm: sha256WithRSAEncryption
9c:07:da:82:96:3b:96:54:13:ee:87:14:d3:d2:6c:ba:f1:b7:
8e:42:7f:6d:5d:45:cd:8d:b0:d4:f2:c3:87:0f:4f:4d:55:ec:
26:79:f2:22:97:eb:cf:51:eb:f1:01:aa:e0:a4:50:8b:f8:6d:
7b:22:f5:59:35:c3:d5:53:83:09:5a:ff:2f:9d:c0:ff:b6:33:
ce:e1:ea:ac:9d:7b:ca:fe:e4:95:dd:4d:78:09:1e:64:a3:e4:
89:48:69:eb:9f:32:7e:e5:84:4b:4d:b6:e5:7c:8d:b5:47:c7:
8f:4c:46:23:28:93:f0:4d:19:c1:17:cf:19:02:4b:c6:30:0e:
fc:9f:be:fb:e2:9a:50:ca:55:12:c2:25:ae:54:2a:53:44:31:
48:13:0a:16:8d:24:97:80:8f:7b:91:4b:9c:d6:71:d5:e3:4b:
3a:ae:ca:ae:eb:c3:67:0b:b2:3a:e4:f8:94:49:92:db:1f:aa:
b5:58:d1:4a:32:7d:94:c0:56:cf:ce:dc:28:c6:fc:1f:77:01:
d0:6f:c8:3a:00:ce:16:ae:6c:06:44:cb:57:49:3d:6b:04:56:
cc:35:2c:1b:96:b8:8c:d2:05:d4:ac:a4:1f:02:a8:c4:0e:9f:
b0:7e:4b:61:a9:ac:e6:17:b8:0b:03:a1:22:9b:74:12:4f:bf:
b4:e3:e6:e6
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIUFoqsSlSwgVZhr0QqGuM6fFSrSh4wDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQxNzE0NTUwMFoX
DTI2MDQxNjE1MDAwMFowMzExMC8GA1UEAxMoNTM5NkVBN0FBQjEwQkZGRUIxQUU0
ODI5NzQ1OEFBNjc4NEU5OTc5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAM2mvOpEeUlNBW0udiEtT8bE27g3UIwf746ry28yMLkpDNG+PWTfKSdLSvX9
2U30pECmD3zTjP7mNnltOKufeayYOdxnkBou+Ot9IEfouT56v6I9NuzrB6MGGxZs
ffzTcJOA+JtUAqGJsxvfASkYDg6PldXdt7PRDVgV9c4bGDiOFwY/uDeEMRnDHdtv
rldgeHNlZd5V+CULbW+ux7ZgCqVqp3UYzJBuREoDmhSH8FyyY8nynkgT9FSdLEa+
+6dASQSfFnqPjJqreDyAEkegyBrlPmadNIbjitDlIwaea1HoFO4gSfWKFsjTIZKW
+xv/FhX+xjPJ0WwdKZosa8Zr1H8CAwEAAaOCAeUwggHhMB0GA1UdDgQWBBRTlup6
qxC//rGuSCl0WKpnhOmXljAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzYzNTE1LnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAM
BAIAATAGAwQBdMG8MBQEAgACMA4DBQAkBO8AAwUAJAZswDANBgkqhkiG9w0BAQsF
AAOCAQEAnAfagpY7llQT7ocU09JsuvG3jkJ/bV1FzY2w1PLDhw9PTVXsJnnyIpfr
z1Hr8QGq4KRQi/hteyL1WTXD1VODCVr/L53A/7YzzuHqrJ17yv7kld1NeAkeZKPk
iUhp658yfuWES0225XyNtUfHj0xGIyiT8E0ZwRfPGQJLxjAO/J++++KaUMpVEsIl
rlQqU0QxSBMKFo0kl4CPe5FLnNZx1eNLOq7KruvDZwuyOuT4lEmS2x+qtVjRSjJ9
lMBWz87cKMb8H3cB0G/IOgDOFq5sBkTLV0k9awRWzDUsG5a4jNIF1KykHwKoxA6f
sH5LYams5he4CwOhIpt0Ek+/tOPm5g==
-----END CERTIFICATE-----
Generated at Thu Apr 24 20:37:21 2025 by rpki-client on console.sobornost.net