Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912016A/B083DD08DEB611E59E13B879C4F9AE02/05106CB4AFB011EA8972F65BC4F9AE02.roa
File: 05106CB4AFB011EA8972F65BC4F9AE02.roa (raw, json)
Hash identifier: 92gAmRF+UjT7qi3HgspO5M3xKNUrfaTQm2Z8Zii+ZFg=
Subject key identifier: 13:51:7C:2D:94:94:29:D5:CC:34:B1:3B:F6:B4:3D:C0:69:C3:67:C1
Certificate issuer: /CN=A912016A/serialNumber=4B58B0B06109946660C09FBC9699A643B7F42AE6
Certificate serial: 2176
Authority key identifier: 4B:58:B0:B0:61:09:94:66:60:C0:9F:BC:96:99:A6:43:B7:F4:2A:E6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S1iwsGEJlGZgwJ-8lpmmQ7f0KuY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912016A/B083DD08DEB611E59E13B879C4F9AE02/05106CB4AFB011EA8972F65BC4F9AE02.roa
Signing time: Wed 26 Feb 2025 16:13:14 +0000
ROA not before: Wed 26 Feb 2025 16:13:14 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 135043
IP address blocks: 103.207.80.0/22 maxlen: 24
2404:2e80::/32 maxlen: 32
2404:2e80::/48 maxlen: 48
2404:2e80:1::/48 maxlen: 48
2404:2e80:2::/48 maxlen: 48
2404:2e80:3::/48 maxlen: 48
2404:2e80:4::/48 maxlen: 48
2404:2e80:5::/48 maxlen: 48
2404:2e80:6::/48 maxlen: 48
2404:2e80:7::/48 maxlen: 48
2404:2e80:8::/48 maxlen: 48
2404:2e80:9::/48 maxlen: 48
2404:2e80:a::/48 maxlen: 48
2404:2e80:b::/48 maxlen: 48
2404:2e80:c::/48 maxlen: 48
2404:2e80:d::/48 maxlen: 48
2404:2e80:e::/48 maxlen: 48
2404:2e80:f::/48 maxlen: 48
2404:2e80:10::/48 maxlen: 48
2404:2e80:11::/48 maxlen: 48
2404:2e80:12::/48 maxlen: 48
2404:2e80:13::/48 maxlen: 48
2404:2e80:14::/48 maxlen: 48
2404:2e80:15::/48 maxlen: 48
2404:2e80:16::/48 maxlen: 48
2404:2e80:17::/48 maxlen: 48
2404:2e80:18::/48 maxlen: 48
2404:2e80:19::/48 maxlen: 48
2404:2e80:1a::/48 maxlen: 48
2404:2e80:1b::/48 maxlen: 48
2404:2e80:1c::/48 maxlen: 48
2404:2e80:1d::/48 maxlen: 48
2404:2e80:1e::/48 maxlen: 48
2404:2e80:1f::/48 maxlen: 48
2404:2e80:20::/48 maxlen: 48
2404:2e80:21::/48 maxlen: 48
2404:2e80:22::/48 maxlen: 48
2404:2e80:23::/48 maxlen: 48
2404:2e80:24::/48 maxlen: 48
2404:2e80:25::/48 maxlen: 48
2404:2e80:26::/48 maxlen: 48
2404:2e80:27::/48 maxlen: 48
2404:2e80:28::/48 maxlen: 48
2404:2e80:29::/48 maxlen: 48
2404:2e80:2a::/48 maxlen: 48
2404:2e80:2b::/48 maxlen: 48
2404:2e80:2c::/48 maxlen: 48
2404:2e80:2d::/48 maxlen: 48
2404:2e80:2e::/48 maxlen: 48
2404:2e80:2f::/48 maxlen: 48
2404:2e80:30::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912016A/B083DD08DEB611E59E13B879C4F9AE02/S1iwsGEJlGZgwJ-8lpmmQ7f0KuY.crl
rsync://rpki.apnic.net/member_repository/A912016A/B083DD08DEB611E59E13B879C4F9AE02/S1iwsGEJlGZgwJ-8lpmmQ7f0KuY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S1iwsGEJlGZgwJ-8lpmmQ7f0KuY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 15:58:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8566 (0x2176)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912016A
Validity
Not Before: Feb 26 16:13:14 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67bf3d99-7ca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ab:ad:38:51:2e:6d:f3:c9:07:c3:e4:a5:ec:
93:ac:d8:c6:f6:5d:13:7c:d1:aa:81:eb:95:30:69:
a9:7c:07:cb:cc:54:12:8d:3d:71:42:4a:cd:0b:51:
80:72:a8:71:99:62:8c:96:42:9f:97:4e:6f:a8:5c:
6f:7c:48:44:81:13:25:0f:7e:b4:bf:02:38:16:9f:
9b:4b:ac:4a:fa:82:c9:13:a1:a2:7b:e6:05:1e:aa:
c3:03:3a:ad:54:a7:1f:52:f5:08:de:bc:05:bd:2c:
37:9d:05:d8:9b:81:c9:4f:0b:3b:4e:78:e8:67:4e:
d4:56:f7:c7:ac:2c:ca:0e:63:f6:9f:da:aa:7b:10:
3d:5d:62:07:58:73:cf:bc:f5:e3:81:82:12:12:bd:
35:27:4e:01:af:98:79:b5:32:bb:82:10:ad:b5:f7:
0c:35:d8:62:25:3d:dd:5e:2d:79:a9:08:4b:15:0c:
a4:b3:83:63:85:d3:6a:8b:01:01:89:77:18:4c:a0:
96:2d:cf:93:8f:b7:d4:df:7b:e7:76:31:23:9b:07:
dc:a2:45:3f:fc:49:e0:79:b6:5a:38:92:86:a7:e5:
ba:a7:30:cb:e1:e5:0d:cd:d8:02:84:39:29:66:05:
49:ef:6a:df:66:12:aa:cc:79:73:7c:e4:56:0d:9b:
14:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:51:7C:2D:94:94:29:D5:CC:34:B1:3B:F6:B4:3D:C0:69:C3:67:C1
X509v3 Authority Key Identifier:
keyid:4B:58:B0:B0:61:09:94:66:60:C0:9F:BC:96:99:A6:43:B7:F4:2A:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912016A/B083DD08DEB611E59E13B879C4F9AE02/S1iwsGEJlGZgwJ-8lpmmQ7f0KuY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S1iwsGEJlGZgwJ-8lpmmQ7f0KuY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912016A/B083DD08DEB611E59E13B879C4F9AE02/05106CB4AFB011EA8972F65BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.207.80.0/22
IPv6:
2404:2e80::/32
Signature Algorithm: sha256WithRSAEncryption
63:90:96:58:05:fd:38:53:a5:e0:ae:53:a4:89:d8:13:22:d0:
b4:51:8f:73:78:0e:f5:be:84:c1:46:ce:37:4e:47:d0:db:b9:
d0:db:d8:c2:c9:15:dd:54:78:df:76:72:53:a2:14:d5:81:a3:
a4:3c:ce:81:72:84:ae:db:b2:56:0c:e4:6d:f0:08:86:34:eb:
e9:4a:6c:43:2c:71:63:1a:5e:3d:8f:08:87:70:c8:5f:0d:52:
77:87:23:f9:c5:b5:95:d9:25:6a:89:91:63:11:24:e6:50:0f:
c0:54:79:9c:f8:02:62:a4:17:dc:49:63:ad:65:8c:94:9c:7b:
df:fc:84:3e:42:5f:3b:af:a9:6e:f8:84:92:84:c1:d8:fc:f0:
28:9e:e4:08:17:ea:90:df:54:57:68:1b:99:54:61:71:28:a4:
47:3a:d7:6a:ea:42:9a:34:45:26:52:54:18:25:a4:6d:f7:f1:
61:6d:c7:e7:6a:a6:bf:5d:41:62:7d:2b:78:15:46:4e:53:3c:
39:bb:07:db:ec:63:ed:b7:dc:8c:5b:c0:1e:c9:ee:bf:20:7b:
cb:5f:e5:83:68:fb:e7:54:aa:92:c1:88:1e:84:fd:b1:68:64:
2d:ca:70:a1:2b:13:7e:25:3b:24:df:7d:bc:ed:f7:12:d9:b7:
f6:a7:e7:a2
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICIXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjAxNkExMTAvBgNVBAUTKDRCNThCMEIwNjEwOTk0NjY2MEMwOUZCQzk2OTlBNjQz
QjdGNDJBRTYwHhcNMjUwMjI2MTYxMzE0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2JmM2Q5OS03Y2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwKutOFEubfPJB8PkpeyTrNjG9l0TfNGqgeuVMGmpfAfLzFQSjT1xQkrNC1GA
cqhxmWKMlkKfl05vqFxvfEhEgRMlD360vwI4Fp+bS6xK+oLJE6Gie+YFHqrDAzqt
VKcfUvUI3rwFvSw3nQXYm4HJTws7TnjoZ07UVvfHrCzKDmP2n9qqexA9XWIHWHPP
vPXjgYISEr01J04Br5h5tTK7ghCttfcMNdhiJT3dXi15qQhLFQyks4NjhdNqiwEB
iXcYTKCWLc+Tj7fU33vndjEjmwfcokU//EngebZaOJKGp+W6pzDL4eUNzdgChDkp
ZgVJ72rfZhKqzHlzfORWDZsUZwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBNRfC2U
lCnVzDSxO/a0PcBpw2fBMB8GA1UdIwQYMBaAFEtYsLBhCZRmYMCfvJaZpkO39Crm
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDE2QS9CMDgzREQwOERF
QjYxMUU1OUUxM0I4NzlDNEY5QUUwMi9TMWl3c0dFSmxHWmd3Si04bHBtbVE3ZjBL
dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1MxaXdzR0VKbEdaZ3dKLThscG1tUTdmMEt1WS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MjAxNkEvQjA4M0REMDhERUI2MTFFNTlFMTNCODc5QzRGOUFFMDIvMDUxMDZDQjRB
RkIwMTFFQTg5NzJGNjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E
HzAdMAwEAgABMAYDBAJnz1AwDQQCAAIwBwMFACQELoAwDQYJKoZIhvcNAQELBQAD
ggEBAGOQllgF/ThTpeCuU6SJ2BMi0LRRj3N4DvW+hMFGzjdOR9DbudDb2MLJFd1U
eN92clOiFNWBo6Q8zoFyhK7bslYM5G3wCIY06+lKbEMscWMaXj2PCIdwyF8NUneH
I/nFtZXZJWqJkWMRJOZQD8BUeZz4AmKkF9xJY61ljJSce9/8hD5CXzuvqW74hJKE
wdj88Cie5AgX6pDfVFdoG5lUYXEopEc612rqQpo0RSZSVBglpG338WFtx+dqpr9d
QWJ9K3gVRk5TPDm7B9vsY+233IxbwB7J7r8ge8tf5YNo++dUqpLBiB6E/bFoZC3K
cKErE34lOyTffbzt9xLZt/an56I=
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:06:56 2025 by rpki-client