Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS131775.roa
File: AS131775.roa (raw, json)
Hash identifier: fDLtXNdsSd2XnXknHhdVs2MzWqKK2G7TcBv/xATGqtc=
Subject key identifier: 58:F1:7E:AD:B9:5A:6F:82:07:29:6E:F7:93:A9:EA:04:BA:16:13:3A
Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Certificate serial: 7A4252DFBD268A360C4575569C4E6AF4BD3F5FDF
Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131775.roa
Signing time: Sun 03 May 2026 03:37:58 +0000
ROA not before: Sun 03 May 2026 03:32:58 +0000
ROA not after: Sun 02 May 2027 03:37:58 +0000
asID: 131775
IP address blocks: 103.16.198.0/24 maxlen: 24
103.16.199.0/24 maxlen: 24
103.131.51.0/24 maxlen: 24
103.230.246.0/24 maxlen: 24
103.251.44.0/24 maxlen: 24
103.251.45.0/24 maxlen: 24
163.227.124.0/24 maxlen: 24
202.74.236.0/24 maxlen: 24
202.74.237.0/24 maxlen: 24
202.74.238.0/24 maxlen: 24
202.74.239.0/24 maxlen: 24
2001:df5:6940::/48 maxlen: 48
2406:f040::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 09:32:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:42:52:df:bd:26:8a:36:0c:45:75:56:9c:4e:6a:f4:bd:3f:5f:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Validity
Not Before: May 3 03:32:58 2026 GMT
Not After : May 2 03:37:58 2027 GMT
Subject: CN=58F17EADB95A6F8207296EF793A9EA04BA16133A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6e:7a:06:e4:2d:88:8b:5c:37:9d:10:ac:17:
29:89:3d:28:0e:6c:df:fa:43:e5:94:3c:e9:83:18:
32:b8:e4:10:9c:b5:a0:93:80:3c:52:fa:95:42:27:
e1:bb:56:0f:3e:8d:03:cf:c1:6d:29:6d:e3:be:fa:
39:39:7f:44:7d:76:d2:07:b9:03:de:15:15:67:29:
4c:59:6e:8b:8e:1b:d8:f9:b1:45:c5:db:e7:c4:03:
ab:ec:fd:be:46:f0:82:4d:20:04:74:44:a7:3a:59:
3a:7b:9d:23:07:e4:4d:70:d8:56:e6:87:e7:74:c5:
ab:ac:38:a9:22:46:75:38:b7:06:86:63:1c:5f:6f:
5f:2a:59:58:90:6d:e1:2b:b1:07:2b:0d:c8:30:48:
81:d7:2d:65:4b:ce:91:19:96:e8:73:e7:63:13:32:
85:50:aa:a8:79:e8:10:95:ef:6e:a9:29:e3:1a:b1:
91:7f:b0:cd:30:56:47:db:9a:9f:6b:1e:61:c3:10:
7a:2d:53:53:cf:8e:1b:88:5c:f5:99:75:54:e8:ec:
cb:91:ce:71:a6:6d:58:e0:3c:27:5c:2b:70:e9:77:
d9:7d:d1:59:aa:6f:c1:79:7c:50:e3:b6:b7:02:e6:
e8:3f:2b:3d:eb:39:89:e5:a7:2b:6e:e4:49:23:cf:
05:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F1:7E:AD:B9:5A:6F:82:07:29:6E:F7:93:A9:EA:04:BA:16:13:3A
X509v3 Authority Key Identifier:
keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131775.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.16.198.0/23
103.131.51.0/24
103.230.246.0/24
103.251.44.0/23
163.227.124.0/24
202.74.236.0/22
IPv6:
2001:df5:6940::/48
2406:f040::/32
Signature Algorithm: sha256WithRSAEncryption
55:1c:69:e9:ea:e9:08:1d:6b:ef:7a:02:09:33:85:96:2b:b0:
e6:76:0f:5d:75:0b:4a:b0:42:62:f7:8b:3f:3f:db:55:43:a1:
82:9e:53:ae:de:29:ba:b4:d4:1f:4b:2a:13:35:c3:53:13:49:
04:39:30:b0:52:5f:61:4e:b5:a4:1b:13:4a:26:be:73:de:c7:
12:8d:5e:fa:e6:bd:cc:4a:7b:0d:e7:9f:a6:e9:e7:54:bd:17:
ed:91:8c:61:ee:e3:22:c1:2a:46:c7:48:d3:27:2b:ad:fd:53:
e8:26:a5:88:43:8f:5b:8c:6d:a9:bb:37:0f:83:8b:76:9f:78:
11:0d:a8:e2:69:96:1b:db:8d:9b:7b:32:40:27:ad:fb:e9:a7:
f1:60:bf:1a:ed:0c:ab:bb:8f:25:91:23:b1:8f:43:7b:60:82:
2a:b5:3e:15:d9:0c:53:37:58:d3:d8:31:80:0d:6c:dc:a9:67:
8d:52:a6:24:2b:12:cd:90:98:cc:6c:69:d7:be:30:4e:d1:44:
aa:db:96:fd:c3:c0:db:c0:8a:a6:b8:e1:55:82:0d:9d:3f:b3:
7a:94:60:66:9c:af:5d:6a:e0:3f:73:76:7a:b6:76:40:5f:85:
dd:d9:c4:78:d7:2f:52:03:b8:74:a0:a2:81:7e:29:42:a1:82:
6c:89:96:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:56:50 2026 by rpki-client