Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/8186EA3008A211EA83441161C4F9AE02.roa
File: 8186EA3008A211EA83441161C4F9AE02.roa (raw, json)
Hash identifier: Cxeg6/2R0l/1Ra7SpfOt4WX+yqNXRq0yTeO61ABIfck=
Subject key identifier: 20:19:13:12:E8:A1:1E:E1:C8:B4:89:FD:B1:D7:5E:E6:1A:DE:B0:BF
Certificate issuer: /CN=A911408F/serialNumber=340890FA2027C5469DA0C5FD83748F66A8892EB7
Certificate serial: 0B5C
Authority key identifier: 34:08:90:FA:20:27:C5:46:9D:A0:C5:FD:83:74:8F:66:A8:89:2E:B7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAiQ-iAnxUadoMX9g3SPZqiJLrc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/8186EA3008A211EA83441161C4F9AE02.roa
Signing time: Sun 24 Dec 2023 19:27:01 +0000
ROA not before: Sun 24 Dec 2023 19:27:01 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 137385
IP address blocks: 103.106.240.0/22 maxlen: 24
2402:49c0::/32 maxlen: 32
2402:49c0::/48 maxlen: 48
2402:49c0:1::/48 maxlen: 48
2402:49c0:2::/48 maxlen: 48
2402:49c0:3::/48 maxlen: 48
2402:49c0:4::/48 maxlen: 48
2402:49c0:5::/48 maxlen: 48
2402:49c0:6::/48 maxlen: 48
2402:49c0:7::/48 maxlen: 48
2402:49c0:8::/48 maxlen: 48
2402:49c0:9::/48 maxlen: 48
2402:49c0:a::/48 maxlen: 48
2402:49c0:b::/48 maxlen: 48
2402:49c0:c::/48 maxlen: 48
2402:49c0:d::/48 maxlen: 48
2402:49c0:e::/48 maxlen: 48
2402:49c0:f::/48 maxlen: 48
2402:49c0:10::/48 maxlen: 48
2402:49c0:11::/48 maxlen: 48
2402:49c0:12::/48 maxlen: 48
2402:49c0:13::/48 maxlen: 48
2402:49c0:14::/48 maxlen: 48
2402:49c0:15::/48 maxlen: 48
2402:49c0:16::/48 maxlen: 48
2402:49c0:17::/48 maxlen: 48
2402:49c0:18::/48 maxlen: 48
2402:49c0:19::/48 maxlen: 48
2402:49c0:1a::/48 maxlen: 48
2402:49c0:1b::/48 maxlen: 48
2402:49c0:1c::/48 maxlen: 48
2402:49c0:1d::/48 maxlen: 48
2402:49c0:1e::/48 maxlen: 48
2402:49c0:1f::/48 maxlen: 48
2402:49c0:20::/48 maxlen: 48
2402:49c0:21::/48 maxlen: 48
2402:49c0:22::/48 maxlen: 48
2402:49c0:23::/48 maxlen: 48
2402:49c0:24::/48 maxlen: 48
2402:49c0:25::/48 maxlen: 48
2402:49c0:26::/48 maxlen: 48
2402:49c0:27::/48 maxlen: 48
2402:49c0:28::/48 maxlen: 48
2402:49c0:29::/48 maxlen: 48
2402:49c0:2a::/48 maxlen: 48
2402:49c0:2b::/48 maxlen: 48
2402:49c0:2c::/48 maxlen: 48
2402:49c0:2d::/48 maxlen: 48
2402:49c0:2e::/48 maxlen: 48
2402:49c0:2f::/48 maxlen: 48
2402:49c0:30::/48 maxlen: 48
2402:49c0:31::/48 maxlen: 48
2402:49c0:32::/48 maxlen: 48
2402:49c0:33::/48 maxlen: 48
2402:49c0:34::/48 maxlen: 48
2402:49c0:35::/48 maxlen: 48
2402:49c0:36::/48 maxlen: 48
2402:49c0:37::/48 maxlen: 48
2402:49c0:38::/48 maxlen: 48
2402:49c0:39::/48 maxlen: 48
2402:49c0:3a::/48 maxlen: 48
2402:49c0:3b::/48 maxlen: 48
2402:49c0:3c::/48 maxlen: 48
2402:49c0:3d::/48 maxlen: 48
2402:49c0:3e::/48 maxlen: 48
2402:49c0:3f::/48 maxlen: 48
2402:49c0:40::/48 maxlen: 48
2402:49c0:41::/48 maxlen: 48
2402:49c0:42::/48 maxlen: 48
2402:49c0:43::/48 maxlen: 48
2402:49c0:44::/48 maxlen: 48
2402:49c0:45::/48 maxlen: 48
2402:49c0:46::/48 maxlen: 48
2402:49c0:47::/48 maxlen: 48
2402:49c0:48::/48 maxlen: 48
2402:49c0:49::/48 maxlen: 48
2402:49c0:4a::/48 maxlen: 48
2402:49c0:4b::/48 maxlen: 48
2402:49c0:4c::/48 maxlen: 48
2402:49c0:4d::/48 maxlen: 48
2402:49c0:4e::/48 maxlen: 48
2402:49c0:4f::/48 maxlen: 48
2402:49c0:50::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/NAiQ-iAnxUadoMX9g3SPZqiJLrc.crl
rsync://rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/NAiQ-iAnxUadoMX9g3SPZqiJLrc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAiQ-iAnxUadoMX9g3SPZqiJLrc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 13 Jun 2024 19:50:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2908 (0xb5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911408F/serialNumber=340890FA2027C5469DA0C5FD83748F66A8892EB7
Validity
Not Before: Dec 24 19:27:01 2023 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=65888604-028c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:06:b3:92:e9:b9:e6:73:a8:17:37:58:a6:2f:
58:5e:b7:8e:d0:69:87:b2:d5:9d:1e:7c:9e:31:90:
b8:94:23:54:d9:06:99:e1:9f:11:93:e2:7e:58:24:
72:ff:c4:aa:bb:a3:fe:f7:a6:a4:d2:2a:0f:37:a0:
7a:75:b6:ad:f6:97:7a:90:82:bc:8f:7d:95:6e:95:
5a:d7:ff:af:af:f7:ea:e0:a1:4c:00:9f:a5:f7:4f:
8b:18:68:e6:7b:86:83:aa:d4:8e:d9:72:97:d8:bd:
65:76:b6:89:f3:ee:60:d3:32:27:e1:12:90:66:c7:
00:66:f2:2a:af:3e:78:7c:0f:5c:e7:54:d9:32:5c:
5d:e3:77:a3:dd:67:c4:6f:6f:a5:4a:b9:03:13:9f:
e3:22:d3:af:46:6e:b5:4f:9e:40:b8:7d:63:75:c8:
b4:2c:75:7f:aa:e9:e0:d3:df:54:39:fe:c0:0b:c3:
6a:8b:12:df:ed:1e:7c:2b:d1:d7:21:ec:1e:eb:56:
4e:73:ee:ac:d7:17:77:97:a6:2d:ff:c1:f6:d7:fe:
06:c4:81:e7:0f:70:14:0f:3b:7f:61:fa:bc:81:cc:
95:99:5d:4b:d3:75:9d:41:9c:84:02:e0:d1:b7:36:
cb:03:0c:82:5f:2a:57:22:1a:da:e2:d6:91:d0:3e:
1e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:19:13:12:E8:A1:1E:E1:C8:B4:89:FD:B1:D7:5E:E6:1A:DE:B0:BF
X509v3 Authority Key Identifier:
keyid:34:08:90:FA:20:27:C5:46:9D:A0:C5:FD:83:74:8F:66:A8:89:2E:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/NAiQ-iAnxUadoMX9g3SPZqiJLrc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAiQ-iAnxUadoMX9g3SPZqiJLrc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/8186EA3008A211EA83441161C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.106.240.0/22
IPv6:
2402:49c0::/32
Signature Algorithm: sha256WithRSAEncryption
95:99:61:d5:62:a6:03:08:63:2a:7e:47:11:8e:28:34:49:44:
54:91:18:4f:09:70:02:7b:91:b4:58:88:66:b3:52:34:e5:20:
6c:4c:46:da:e1:2e:6d:a2:86:83:e9:49:e7:a8:82:2d:9d:0d:
a5:00:b4:cb:0f:1c:78:45:5b:bd:e7:c5:a0:02:75:85:6f:0d:
39:1f:01:ae:48:de:40:b9:ae:1b:e4:70:f1:7a:2d:2c:d6:28:
5b:21:c4:ae:a2:8e:0d:ca:1b:b7:f8:fa:30:97:e8:83:f1:bb:
1c:ca:8b:65:2a:fa:04:ff:bd:2e:93:b1:a3:a8:0a:81:06:a7:
b4:9a:eb:e5:ed:52:90:2b:ed:30:1c:8a:6d:74:2d:4d:27:4e:
c9:c7:24:c5:5b:b2:40:dd:ce:9d:89:b6:6f:95:7b:6a:01:cc:
dc:d1:59:b9:7c:6b:0c:62:71:06:57:00:63:7a:71:3c:81:73:
1f:7a:47:87:a6:20:9d:18:e8:04:1d:ef:4c:41:6d:7a:d6:2e:
78:2d:90:62:bb:9f:bd:d3:13:99:46:e4:42:5d:68:d7:f0:62:
62:60:71:2a:22:4f:53:c5:ae:46:38:9b:de:47:c7:f6:fe:f3:
40:7f:d5:ef:0a:a9:f8:40:0d:07:25:e4:66:bb:d1:49:1d:ab:
b2:c3:e9:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 21:06:48 2024 by rpki-client on console-fra.rpki-client.org