Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56241.roa
File: AS56241.roa (raw, json)
Hash identifier: RV9kmkJDh/5a0P+Fie/MDQWAeca5FsBDspMEkWBoJy8=
Subject key identifier: 44:D1:9D:D2:C9:EA:C9:93:10:E5:27:68:D9:1D:0B:79:4B:FD:98:27
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 27458B714C52262A326EFC003CA99EBFBE53FC7A
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56241.roa
Signing time: Mon 13 Oct 2025 02:58:37 +0000
ROA not before: Mon 13 Oct 2025 02:53:37 +0000
ROA not after: Mon 12 Oct 2026 02:58:37 +0000
asID: 56241
IP address blocks: 45.126.152.0/24 maxlen: 24
45.126.153.0/24 maxlen: 24
45.126.155.0/24 maxlen: 24
103.10.56.0/24 maxlen: 24
103.10.145.0/24 maxlen: 24
103.85.221.0/24 maxlen: 24
103.85.222.0/24 maxlen: 24
103.85.223.0/24 maxlen: 24
103.86.144.0/24 maxlen: 24
103.86.145.0/24 maxlen: 24
103.255.52.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Oct 2025 14:07:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:45:8b:71:4c:52:26:2a:32:6e:fc:00:3c:a9:9e:bf:be:53:fc:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Oct 13 02:53:37 2025 GMT
Not After : Oct 12 02:58:37 2026 GMT
Subject: CN=44D19DD2C9EAC99310E52768D91D0B794BFD9827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:12:17:67:e1:a9:14:60:a4:0e:92:a9:78:33:
e2:b4:09:99:de:04:c2:aa:02:36:83:d2:9a:21:ac:
bd:9d:1a:ad:49:b6:de:55:75:ad:bf:7e:e8:3b:3a:
8a:de:88:88:13:76:82:76:41:7c:f3:84:e8:a3:16:
d2:0c:aa:a8:39:37:b5:e8:6e:39:98:45:37:1e:ce:
76:20:60:f6:35:a0:96:9d:71:e4:b8:a2:f9:f8:3c:
23:9c:cb:70:05:37:94:f3:1d:80:e3:86:44:11:6a:
a4:cc:b8:e6:ca:cd:79:d8:08:24:92:36:d8:1b:78:
9e:33:da:89:6c:3f:52:23:3b:62:3b:de:51:81:dc:
e7:c9:2f:91:bf:b9:bd:8a:5d:9a:e3:ad:e3:26:ce:
f9:b8:96:7b:97:fa:79:e7:b7:37:41:97:78:91:d6:
10:f2:28:34:4a:67:e8:0a:7d:6a:90:16:17:5f:97:
3f:83:8a:13:e2:68:05:b7:1a:46:0d:7a:c9:38:dc:
eb:18:6e:e5:f9:04:60:67:64:91:82:07:00:ac:81:
a2:1d:2b:23:91:b5:4a:ab:b5:65:a5:63:13:24:bc:
82:b3:d2:4a:28:54:c4:57:29:2b:d2:00:31:c6:ed:
fc:8e:2d:57:9f:d1:03:86:39:42:ac:6e:eb:3d:25:
4e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:D1:9D:D2:C9:EA:C9:93:10:E5:27:68:D9:1D:0B:79:4B:FD:98:27
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56241.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.126.152.0/23
45.126.155.0/24
103.10.56.0/24
103.10.145.0/24
103.85.221.0-103.85.223.255
103.86.144.0/23
103.255.52.0/23
Signature Algorithm: sha256WithRSAEncryption
04:f3:6d:92:0b:0c:49:2a:69:c7:29:de:2f:86:f8:b5:cf:38:
fc:ef:b3:3d:9a:f1:eb:81:58:7a:9a:de:55:c7:c8:5f:2c:8b:
8a:8c:bb:41:c7:77:ca:9b:04:d9:54:e0:c9:56:c3:8b:9a:74:
0c:dd:1a:1e:a5:3c:09:12:98:f3:35:36:bb:63:0c:32:6e:7e:
bc:b4:cf:cf:b4:8b:25:9e:0a:66:25:ed:5d:c6:8c:5a:fe:ee:
3d:af:7f:fa:cc:ae:c7:70:8f:a2:8c:45:56:95:35:01:80:bd:
23:8b:5b:f0:ee:4d:19:41:a2:d6:96:87:1d:4f:26:cd:62:7a:
a2:b7:f8:02:65:f9:4d:57:ad:73:16:95:5a:94:6e:8c:bd:e9:
c1:8a:a0:66:d1:e6:fa:f7:83:62:5c:e2:87:4a:17:7c:d1:1e:
88:34:7e:b2:60:b2:8b:0d:3e:44:33:d3:99:47:c0:d8:fc:21:
e1:63:4c:0e:a9:4d:b7:11:6b:0e:f8:df:86:da:69:d1:64:f4:
f9:90:4d:05:b2:06:95:e8:68:32:c1:94:2f:a4:c9:e3:cb:b9:
87:2f:d1:83:5b:3c:97:1e:32:dc:8d:d7:38:41:ef:8b:30:2d:
f3:17:d0:bf:3e:2d:c8:95:ec:e3:7f:47:19:eb:2a:5d:94:27:
1c:98:7a:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 06:00:25 2025 by rpki-client