Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/eec6eef9-713c-4e6b-b2bc-4c0452890345/0/AS45727.roa
File: AS45727.roa (raw, json)
Hash identifier: NQJlZcEt8XbEu6li30gl5gj7oBqSk0UpCNFCIlpUiV0=
Subject key identifier: 48:17:79:2E:A9:AD:4D:93:34:08:DF:3F:FC:DA:50:71:C8:51:C3:F1
Certificate issuer: /CN=6D508CF79A65F098AC311FE1079E8840C240F1E0
Certificate serial: 3704BC1BAE839B264CF4081CB8331284B43C3C3C
Authority key identifier: 6D:50:8C:F7:9A:65:F0:98:AC:31:1F:E1:07:9E:88:40:C2:40:F1:E0
Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6D508CF79A65F098AC311FE1079E8840C240F1E0.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/eec6eef9-713c-4e6b-b2bc-4c0452890345/0/AS45727.roa
Signing time: Sun 03 May 2026 03:16:18 +0000
ROA not before: Sun 03 May 2026 03:11:18 +0000
ROA not after: Sun 02 May 2027 03:16:18 +0000
asID: 45727
IP address blocks: 103.10.66.0/24 maxlen: 24
114.142.172.0/24 maxlen: 24
114.142.173.0/24 maxlen: 24
116.206.10.0/24 maxlen: 24
116.206.11.0/24 maxlen: 24
116.206.12.0/24 maxlen: 24
116.206.13.0/24 maxlen: 24
116.206.14.0/24 maxlen: 24
116.206.15.0/24 maxlen: 24
116.206.28.0/24 maxlen: 24
116.206.29.0/24 maxlen: 24
116.206.34.0/24 maxlen: 24
180.214.232.0/24 maxlen: 24
180.214.233.0/24 maxlen: 24
180.214.234.0/24 maxlen: 24
202.67.40.0/24 maxlen: 24
202.67.41.0/24 maxlen: 24
202.67.42.0/24 maxlen: 24
202.67.43.0/24 maxlen: 24
223.255.225.0/24 maxlen: 24
223.255.229.0/24 maxlen: 24
223.255.230.0/24 maxlen: 24
2400:8b00:100::/44 maxlen: 44
2400:8b00:110::/44 maxlen: 44
2400:8b00:120::/44 maxlen: 44
2400:8b00:130::/44 maxlen: 44
2400:8b00:200::/44 maxlen: 44
2400:8b00:210::/44 maxlen: 44
2400:8b00:220::/44 maxlen: 44
2400:8b00:230::/44 maxlen: 44
2400:8b00:500::/44 maxlen: 44
2400:8b00:510::/44 maxlen: 44
2400:8b00:520::/44 maxlen: 44
2400:8b00:530::/44 maxlen: 44
2400:8b00:800::/44 maxlen: 44
2400:8b00:810::/44 maxlen: 44
2400:8b00:820::/44 maxlen: 44
2400:8b00:830::/44 maxlen: 44
2400:8b00:d90::/44 maxlen: 44
2400:8b00:da0::/44 maxlen: 44
2400:8b00:db0::/44 maxlen: 44
2400:8b00:1000::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/eec6eef9-713c-4e6b-b2bc-4c0452890345/0/6D508CF79A65F098AC311FE1079E8840C240F1E0.crl
rsync://rpki-rsync.idnic.net/repo/eec6eef9-713c-4e6b-b2bc-4c0452890345/0/6D508CF79A65F098AC311FE1079E8840C240F1E0.mft
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6D508CF79A65F098AC311FE1079E8840C240F1E0.cer
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 09:32:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:04:bc:1b:ae:83:9b:26:4c:f4:08:1c:b8:33:12:84:b4:3c:3c:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D508CF79A65F098AC311FE1079E8840C240F1E0
Validity
Not Before: May 3 03:11:18 2026 GMT
Not After : May 2 03:16:18 2027 GMT
Subject: CN=4817792EA9AD4D933408DF3FFCDA5071C851C3F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:af:f3:99:9e:02:14:bd:e1:ad:ba:af:ac:d5:
c7:62:24:98:75:77:a7:0a:19:d4:97:44:ce:e5:43:
37:d6:40:b8:e7:fd:0e:d9:1b:c9:66:05:b2:67:39:
63:40:63:65:a2:fe:05:66:78:ce:ae:1a:a3:58:75:
ba:84:da:c9:3e:89:b0:d3:8e:9e:3b:ec:09:d3:07:
d7:7d:c5:3d:8c:7e:b4:2a:c1:b1:ea:7c:a8:6f:a9:
57:09:e1:1a:2b:2a:b9:c9:20:0d:34:18:b5:31:82:
a2:a0:22:50:03:a7:44:88:b3:8f:10:30:ae:98:67:
0d:7a:ef:bb:05:2d:fe:d5:80:ab:ef:0c:14:fb:4b:
f1:3e:fb:b6:31:82:b0:e9:96:4e:9f:99:4e:07:d7:
7a:02:b3:1c:ce:ee:fd:9a:06:ca:e5:b4:03:9d:d9:
f0:bc:84:e9:50:ba:2e:7e:ac:32:d2:f3:cd:db:c1:
b6:8b:2c:24:aa:4a:25:9a:7a:3f:3e:ed:3f:fd:cb:
a3:a7:89:12:aa:cc:f5:d5:93:63:52:12:3a:36:63:
a9:10:7e:0d:01:ef:d2:6a:a2:8a:5e:50:55:c1:b0:
7c:51:b1:e3:fd:ca:ef:48:94:05:dd:83:57:4c:88:
3c:0b:a4:f6:e9:23:f4:66:00:f4:4d:49:5e:9d:2c:
7a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:17:79:2E:A9:AD:4D:93:34:08:DF:3F:FC:DA:50:71:C8:51:C3:F1
X509v3 Authority Key Identifier:
keyid:6D:50:8C:F7:9A:65:F0:98:AC:31:1F:E1:07:9E:88:40:C2:40:F1:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/eec6eef9-713c-4e6b-b2bc-4c0452890345/0/6D508CF79A65F098AC311FE1079E8840C240F1E0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6D508CF79A65F098AC311FE1079E8840C240F1E0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/eec6eef9-713c-4e6b-b2bc-4c0452890345/0/AS45727.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.10.66.0/24
114.142.172.0/23
116.206.10.0-116.206.15.255
116.206.28.0/23
116.206.34.0/24
180.214.232.0-180.214.234.255
202.67.40.0/22
223.255.225.0/24
223.255.229.0-223.255.230.255
IPv6:
2400:8b00:100::/42
2400:8b00:200::/42
2400:8b00:500::/42
2400:8b00:800::/42
2400:8b00:d90::-2400:8b00:dbf:ffff:ffff:ffff:ffff:ffff
2400:8b00:1000::/44
Signature Algorithm: sha256WithRSAEncryption
c8:f7:2c:19:c3:9f:85:bb:51:d7:ad:cf:d4:6c:5c:6c:de:ea:
55:a5:8f:83:31:9b:13:a8:5a:51:05:cf:d8:54:46:f1:95:46:
7e:95:ce:38:bd:94:71:30:82:a1:9a:32:b6:07:2c:ca:d5:75:
2c:20:1d:54:47:e4:e8:56:79:17:d2:46:98:8d:b7:69:7f:db:
13:af:39:43:b0:c0:bf:7e:f7:cd:11:8c:10:ea:36:24:64:dd:
04:46:7d:d7:ec:aa:cd:f9:30:6b:13:c3:dd:a8:28:52:d2:d3:
0e:a3:5e:f5:f0:1b:b0:a3:7d:23:7b:a3:23:be:38:c3:d4:12:
73:41:22:a5:8a:38:19:75:a2:92:d4:4f:3d:b0:3c:cf:86:76:
d5:0b:9c:9a:67:9d:92:c6:cf:a5:9a:c2:ec:15:d7:5d:8a:d7:
20:35:6d:4c:f0:d1:85:3e:66:b7:a5:1d:71:44:9c:e6:b8:88:
4a:2e:59:91:1d:db:44:98:6f:b6:8d:e7:02:2c:46:b3:a5:2f:
51:3d:94:ee:9b:cc:63:15:f8:16:94:da:92:0f:65:f2:f7:56:
c5:d2:b9:c4:bc:2c:eb:2c:3f:8e:dc:0e:8f:9b:64:35:f4:89:
99:1d:c7:97:af:49:9e:4f:00:24:25:f3:f5:31:48:40:e5:22:
64:9b:0b:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:25:24 2026 by rpki-client