Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS17451.roa
File: AS17451.roa (raw, json)
Hash identifier: 7gREfdrCY/xDUKYPfjfIbsRCr4A+pOpT6c2tddauOMM=
Subject key identifier: 30:68:57:C8:41:F6:7A:07:3D:47:2B:A4:14:C9:F1:A5:CA:08:75:1A
Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Certificate serial: 5288CC5682CCAD631A6C8015C9F6DCC7E37C8A45
Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS17451.roa
Signing time: Tue 26 May 2026 06:33:11 +0000
ROA not before: Tue 26 May 2026 06:28:11 +0000
ROA not after: Tue 25 May 2027 06:33:11 +0000
asID: 17451
IP address blocks: 2404:8000:79::/48 maxlen: 48
2404:8000:103c::/48 maxlen: 48
2404:8000:103d::/48 maxlen: 48
2404:8000:103e::/48 maxlen: 48
2404:8000:103f::/48 maxlen: 48
2404:8000:1059::/48 maxlen: 48
2404:8000:105c::/48 maxlen: 48
2404:8000:105d::/48 maxlen: 48
2404:8000:105e::/48 maxlen: 48
2404:8000:105f::/48 maxlen: 48
2404:8000:1064::/48 maxlen: 48
2404:8000:1071::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 18 Jun 2026 03:08:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:88:cc:56:82:cc:ad:63:1a:6c:80:15:c9:f6:dc:c7:e3:7c:8a:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Validity
Not Before: May 26 06:28:11 2026 GMT
Not After : May 25 06:33:11 2027 GMT
Subject: CN=306857C841F67A073D472BA414C9F1A5CA08751A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ae:9f:d9:2a:a6:fa:96:3c:07:6e:7f:02:b2:
7a:04:f1:53:c5:88:93:7c:10:07:e1:03:a9:ac:bf:
91:bf:c6:f1:30:f0:5a:65:d0:21:f1:51:fe:53:46:
90:d7:c0:e8:da:6c:b5:98:f0:9b:1a:88:3e:7e:ea:
37:7a:73:c8:44:1c:f8:60:b9:cf:2b:3d:21:83:a2:
02:1c:19:27:74:b5:6a:2e:b0:7d:91:f6:88:59:1b:
e6:90:62:d4:9d:30:79:76:8d:00:7c:0c:24:70:3f:
29:f3:9d:74:4f:7b:d4:30:34:f9:7b:0d:52:1e:29:
f3:07:4c:5d:a7:24:f4:a8:dc:a3:d3:c7:4b:86:ec:
96:7a:ba:22:84:9f:b3:ec:08:00:a8:57:a7:34:79:
c1:25:48:cf:79:54:24:a9:fa:cc:d4:a4:b7:e4:2f:
af:5f:95:88:03:7d:b7:9c:0c:d1:b5:c1:3a:35:4a:
af:9c:b6:52:69:a4:0e:92:4d:44:1d:58:ca:05:08:
e7:90:a5:56:a0:be:96:c3:5c:28:48:c7:19:77:bb:
8b:e1:15:4e:64:80:c6:98:ef:c7:a9:b3:53:8e:a5:
9d:3c:52:ef:0c:2c:a4:a4:29:db:4b:45:19:cd:78:
51:79:c6:61:80:3f:cb:1b:14:8a:c3:ba:95:e5:f8:
2a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:68:57:C8:41:F6:7A:07:3D:47:2B:A4:14:C9:F1:A5:CA:08:75:1A
X509v3 Authority Key Identifier:
keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS17451.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:8000:79::/48
2404:8000:103c::/46
2404:8000:1059::/48
2404:8000:105c::/46
2404:8000:1064::/48
2404:8000:1071::/48
Signature Algorithm: sha256WithRSAEncryption
34:80:c0:69:42:fc:9d:84:08:4e:91:c1:83:63:86:f3:a4:8e:
4f:b7:94:7b:03:42:37:c2:df:95:fd:7f:95:39:36:f4:16:e4:
44:e1:22:0d:45:df:83:ec:80:d9:4d:ec:2b:08:9b:25:a6:a1:
a0:41:d8:13:37:05:a5:a1:40:bc:07:c2:ff:59:ea:30:26:07:
1e:48:a7:59:aa:91:94:51:d2:5a:79:ab:86:10:d1:9d:75:49:
37:d0:17:76:11:cb:c6:51:62:93:14:d1:fd:f3:8b:44:72:1d:
8b:73:70:6c:aa:4b:9d:c0:db:d1:0d:57:93:fe:d7:8d:06:be:
b1:1d:c7:1b:a9:46:a0:db:eb:ca:89:e0:6e:73:2e:13:b3:c8:
31:33:fd:26:5f:d1:2e:7a:bc:72:c3:bf:dd:58:9f:06:f7:4c:
60:ec:a6:8c:a7:f4:20:e0:1b:52:16:e2:93:43:77:e8:94:07:
94:ee:c1:c5:a5:94:76:47:7e:44:b0:36:d3:c0:40:a0:f6:b2:
1d:07:3a:db:d2:fe:bf:d8:86:37:2f:82:2d:ac:9e:fb:5d:0f:
cf:b3:47:90:8b:6e:ed:97:28:cc:b1:e5:b9:dc:2a:cc:f9:90:
8f:6f:bb:9b:91:04:d9:81:9c:45:c4:19:50:e1:6d:ed:74:40:
63:f7:1e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 08:47:33 2026 by rpki-client