Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/AS24203.roa
File: AS24203.roa (raw, json)
Hash identifier: ROjHujVXG4cB58VK5zlYjPWTnOEgQBZXwj9Frk00Q8s=
Subject key identifier: ED:4A:14:C3:96:06:DB:3F:B0:3B:FA:16:9E:37:BC:E8:87:6A:ED:FE
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 6F407C1BDFFF5E800A4CE57F7E97F0849482B36D
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/AS24203.roa
Signing time: Mon 11 Aug 2025 09:06:28 +0000
ROA not before: Mon 11 Aug 2025 09:01:28 +0000
ROA not after: Mon 10 Aug 2026 09:06:28 +0000
asID: 24203
IP address blocks: 140.213.0.0/16 maxlen: 16
140.213.0.0/24 maxlen: 24
140.213.2.0/24 maxlen: 24
140.213.4.0/24 maxlen: 24
140.213.5.0/24 maxlen: 24
140.213.6.0/24 maxlen: 24
140.213.7.0/24 maxlen: 24
140.213.9.0/24 maxlen: 24
140.213.11.0/24 maxlen: 24
140.213.13.0/24 maxlen: 24
140.213.14.0/24 maxlen: 24
140.213.15.0/24 maxlen: 24
140.213.16.0/24 maxlen: 24
140.213.17.0/24 maxlen: 24
140.213.18.0/24 maxlen: 24
140.213.19.0/24 maxlen: 24
140.213.20.0/24 maxlen: 24
140.213.21.0/24 maxlen: 24
140.213.22.0/24 maxlen: 24
140.213.23.0/24 maxlen: 24
140.213.24.0/24 maxlen: 24
140.213.25.0/24 maxlen: 24
140.213.26.0/24 maxlen: 24
140.213.27.0/24 maxlen: 24
140.213.28.0/24 maxlen: 24
140.213.29.0/24 maxlen: 24
140.213.30.0/24 maxlen: 24
140.213.31.0/24 maxlen: 24
140.213.32.0/24 maxlen: 24
140.213.33.0/24 maxlen: 24
140.213.34.0/24 maxlen: 24
140.213.35.0/24 maxlen: 24
140.213.36.0/24 maxlen: 24
140.213.37.0/24 maxlen: 24
140.213.38.0/24 maxlen: 24
140.213.39.0/24 maxlen: 24
140.213.40.0/24 maxlen: 24
140.213.41.0/24 maxlen: 24
140.213.42.0/24 maxlen: 24
140.213.43.0/24 maxlen: 24
140.213.44.0/24 maxlen: 24
140.213.45.0/24 maxlen: 24
140.213.46.0/24 maxlen: 24
140.213.48.0/24 maxlen: 24
140.213.49.0/24 maxlen: 24
140.213.51.0/24 maxlen: 24
140.213.52.0/24 maxlen: 24
140.213.53.0/24 maxlen: 24
140.213.55.0/24 maxlen: 24
140.213.56.0/24 maxlen: 24
140.213.57.0/24 maxlen: 24
140.213.58.0/24 maxlen: 24
140.213.59.0/24 maxlen: 24
140.213.60.0/24 maxlen: 24
140.213.61.0/24 maxlen: 24
140.213.62.0/24 maxlen: 24
140.213.63.0/24 maxlen: 24
140.213.64.0/24 maxlen: 24
140.213.65.0/24 maxlen: 24
140.213.66.0/24 maxlen: 24
140.213.67.0/24 maxlen: 24
140.213.68.0/24 maxlen: 24
140.213.69.0/24 maxlen: 24
140.213.70.0/24 maxlen: 24
140.213.71.0/24 maxlen: 24
140.213.72.0/24 maxlen: 24
140.213.73.0/24 maxlen: 24
140.213.74.0/24 maxlen: 24
140.213.75.0/24 maxlen: 24
140.213.76.0/24 maxlen: 24
140.213.78.0/24 maxlen: 24
140.213.79.0/24 maxlen: 24
140.213.80.0/24 maxlen: 24
140.213.81.0/24 maxlen: 24
140.213.82.0/24 maxlen: 24
140.213.86.0/24 maxlen: 24
140.213.87.0/24 maxlen: 24
140.213.98.0/24 maxlen: 24
140.213.99.0/24 maxlen: 24
140.213.100.0/24 maxlen: 24
140.213.101.0/24 maxlen: 24
140.213.102.0/24 maxlen: 24
140.213.103.0/24 maxlen: 24
140.213.104.0/24 maxlen: 24
140.213.105.0/24 maxlen: 24
140.213.106.0/24 maxlen: 24
140.213.107.0/24 maxlen: 24
140.213.108.0/24 maxlen: 24
140.213.109.0/24 maxlen: 24
140.213.110.0/24 maxlen: 24
140.213.111.0/24 maxlen: 24
140.213.112.0/24 maxlen: 24
140.213.113.0/24 maxlen: 24
140.213.114.0/24 maxlen: 24
140.213.115.0/24 maxlen: 24
140.213.116.0/24 maxlen: 24
140.213.117.0/24 maxlen: 24
140.213.120.0/24 maxlen: 24
140.213.121.0/24 maxlen: 24
140.213.122.0/24 maxlen: 24
140.213.123.0/24 maxlen: 24
140.213.124.0/24 maxlen: 24
140.213.125.0/24 maxlen: 24
140.213.126.0/24 maxlen: 24
140.213.127.0/24 maxlen: 24
140.213.128.0/24 maxlen: 24
140.213.129.0/24 maxlen: 24
140.213.130.0/24 maxlen: 24
140.213.131.0/24 maxlen: 24
140.213.132.0/24 maxlen: 24
140.213.133.0/24 maxlen: 24
140.213.134.0/24 maxlen: 24
140.213.135.0/24 maxlen: 24
140.213.136.0/24 maxlen: 24
140.213.137.0/24 maxlen: 24
140.213.139.0/24 maxlen: 24
140.213.140.0/24 maxlen: 24
140.213.141.0/24 maxlen: 24
140.213.142.0/24 maxlen: 24
140.213.143.0/24 maxlen: 24
140.213.144.0/24 maxlen: 24
140.213.145.0/24 maxlen: 24
140.213.146.0/24 maxlen: 24
140.213.147.0/24 maxlen: 24
140.213.148.0/24 maxlen: 24
140.213.149.0/24 maxlen: 24
140.213.150.0/24 maxlen: 24
140.213.151.0/24 maxlen: 24
140.213.153.0/24 maxlen: 24
140.213.154.0/24 maxlen: 24
140.213.155.0/24 maxlen: 24
140.213.156.0/24 maxlen: 24
140.213.157.0/24 maxlen: 24
140.213.158.0/24 maxlen: 24
140.213.159.0/24 maxlen: 24
140.213.160.0/24 maxlen: 24
140.213.161.0/24 maxlen: 24
140.213.162.0/24 maxlen: 24
140.213.163.0/24 maxlen: 24
140.213.164.0/24 maxlen: 24
140.213.165.0/24 maxlen: 24
140.213.166.0/24 maxlen: 24
140.213.167.0/24 maxlen: 24
140.213.168.0/24 maxlen: 24
140.213.169.0/24 maxlen: 24
140.213.170.0/24 maxlen: 24
140.213.171.0/24 maxlen: 24
140.213.172.0/24 maxlen: 24
140.213.173.0/24 maxlen: 24
140.213.174.0/24 maxlen: 24
140.213.175.0/24 maxlen: 24
140.213.176.0/24 maxlen: 24
140.213.177.0/24 maxlen: 24
140.213.178.0/24 maxlen: 24
140.213.179.0/24 maxlen: 24
140.213.180.0/24 maxlen: 24
140.213.181.0/24 maxlen: 24
140.213.182.0/24 maxlen: 24
140.213.183.0/24 maxlen: 24
140.213.184.0/24 maxlen: 24
140.213.185.0/24 maxlen: 24
140.213.191.0/24 maxlen: 24
140.213.204.0/24 maxlen: 24
140.213.206.0/24 maxlen: 24
140.213.207.0/24 maxlen: 24
140.213.208.0/24 maxlen: 24
140.213.209.0/24 maxlen: 24
140.213.218.0/24 maxlen: 24
140.213.219.0/24 maxlen: 24
140.213.220.0/24 maxlen: 24
140.213.221.0/24 maxlen: 24
140.213.222.0/24 maxlen: 24
140.213.224.0/24 maxlen: 24
140.213.226.0/24 maxlen: 24
140.213.227.0/24 maxlen: 24
140.213.228.0/24 maxlen: 24
140.213.229.0/24 maxlen: 24
140.213.230.0/24 maxlen: 24
140.213.231.0/24 maxlen: 24
140.213.232.0/24 maxlen: 24
140.213.233.0/24 maxlen: 24
140.213.237.0/24 maxlen: 24
140.213.238.0/24 maxlen: 24
140.213.239.0/24 maxlen: 24
140.213.240.0/24 maxlen: 24
140.213.241.0/24 maxlen: 24
140.213.242.0/24 maxlen: 24
140.213.243.0/24 maxlen: 24
140.213.244.0/24 maxlen: 24
140.213.245.0/24 maxlen: 24
140.213.246.0/24 maxlen: 24
140.213.247.0/24 maxlen: 24
140.213.250.0/24 maxlen: 24
140.213.251.0/24 maxlen: 24
140.213.252.0/24 maxlen: 24
140.213.253.0/24 maxlen: 24
140.213.254.0/24 maxlen: 24
140.213.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 25 Aug 2025 10:26:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:40:7c:1b:df:ff:5e:80:0a:4c:e5:7f:7e:97:f0:84:94:82:b3:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Aug 11 09:01:28 2025 GMT
Not After : Aug 10 09:06:28 2026 GMT
Subject: CN=ED4A14C39606DB3FB03BFA169E37BCE8876AEDFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:25:e6:95:4b:17:69:e6:5d:c6:f0:ff:2c:59:
46:9b:fd:9d:10:56:ae:65:b8:31:11:83:a4:93:18:
32:2c:46:43:9b:29:72:8e:dd:d4:23:f1:3d:b4:18:
1c:ba:16:ad:7e:e6:fb:cd:fe:2d:bf:cf:7e:10:a4:
0c:07:1d:e7:a8:9f:99:80:5c:af:a1:d1:76:fb:cf:
bb:84:18:47:93:b5:c2:eb:39:53:b0:88:69:97:88:
2e:90:ec:e6:fb:32:64:e2:f4:ac:40:e4:20:aa:5b:
9e:43:ae:1a:1a:ec:e2:79:96:5a:46:23:7e:ad:7d:
d3:65:57:bd:b8:72:2e:6c:61:76:57:d4:a2:42:90:
ef:47:27:e1:b2:5b:8e:28:e8:9d:c4:b1:79:73:f6:
8f:57:a4:1f:13:0a:cd:e5:b8:8a:f0:3d:d1:82:9a:
d1:15:b7:d3:e9:4b:a0:7a:bc:58:84:0d:6b:4d:3a:
d9:e1:cf:bd:8b:10:74:fb:cc:b1:02:1e:a3:e3:28:
5f:48:23:d2:33:4c:b3:e8:61:ec:99:03:67:90:6a:
c1:d8:55:d6:8a:59:df:2f:35:7a:c5:9b:78:ea:80:
28:3f:b0:7b:08:bc:7f:ee:35:91:54:dc:28:36:28:
4d:cf:4b:07:0c:0e:a9:5c:35:6e:76:d4:7b:8c:08:
59:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:4A:14:C3:96:06:DB:3F:B0:3B:FA:16:9E:37:BC:E8:87:6A:ED:FE
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/AS24203.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.0.0/16
Signature Algorithm: sha256WithRSAEncryption
75:a7:9f:c3:5e:78:7d:e4:9f:a9:ee:51:03:42:26:db:0c:02:
57:80:8f:4b:f1:49:cb:70:19:d7:20:84:74:e2:d2:f9:7c:1b:
eb:cb:0e:8b:15:54:0f:92:46:f6:77:92:c1:78:91:dd:dc:dd:
ef:69:55:ea:55:9b:b6:c3:7e:78:6b:68:34:c0:8c:84:87:d4:
34:0c:f0:1b:31:16:93:12:5a:b2:e3:05:11:db:f1:26:3e:46:
51:0e:fd:6a:2e:b4:fd:d8:68:37:18:99:8f:96:ea:1b:52:84:
4f:c5:64:2f:72:d7:42:6b:85:4b:cb:16:c9:27:55:07:d4:dd:
39:8b:e0:96:20:cb:a6:50:a7:4a:ad:4f:7e:ae:6d:c0:99:e5:
da:00:95:bc:79:ea:bd:ff:4e:e1:0f:5a:83:e9:7b:0b:93:89:
1e:f8:bf:d4:9b:54:22:d8:52:59:0e:e0:a1:b7:44:fb:70:d4:
47:69:a1:6b:70:ca:c3:c5:84:e5:36:37:c7:0e:43:d0:cf:3c:
44:38:dc:45:f8:9a:e7:7e:43:4f:42:f6:b6:bd:a2:b2:7d:a8:
77:f1:89:af:fd:96:51:bd:52:60:36:14:12:95:4e:cb:fb:b4:
f0:08:af:7f:f8:02:67:52:2e:b4:45:c7:8f:b9:a2:1a:94:81:
38:ee:d7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:51:02 2025 by rpki-client