Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912016A/B083DD08DEB611E59E13B879C4F9AE02/05106CB4AFB011EA8972F65BC4F9AE02.roa
File: 05106CB4AFB011EA8972F65BC4F9AE02.roa (raw, json)
Hash identifier: I5qY7a+FG0zOuas6VCCFx42Zv0OdC5+ZvEyOCBVw1Es=
Subject key identifier: 99:6A:73:8F:FB:21:01:8D:A4:B2:AE:48:0A:5E:E7:AD:DF:61:34:9F
Certificate issuer: /CN=A912016A/serialNumber=4B58B0B06109946660C09FBC9699A643B7F42AE6
Certificate serial: 20AC
Authority key identifier: 4B:58:B0:B0:61:09:94:66:60:C0:9F:BC:96:99:A6:43:B7:F4:2A:E6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S1iwsGEJlGZgwJ-8lpmmQ7f0KuY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912016A/B083DD08DEB611E59E13B879C4F9AE02/05106CB4AFB011EA8972F65BC4F9AE02.roa
Signing time: Fri 02 Feb 2024 16:33:31 +0000
ROA not before: Fri 02 Feb 2024 16:33:31 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 135043
IP address blocks: 103.207.80.0/22 maxlen: 24
2404:2e80::/32 maxlen: 32
2404:2e80::/48 maxlen: 48
2404:2e80:1::/48 maxlen: 48
2404:2e80:2::/48 maxlen: 48
2404:2e80:3::/48 maxlen: 48
2404:2e80:4::/48 maxlen: 48
2404:2e80:5::/48 maxlen: 48
2404:2e80:6::/48 maxlen: 48
2404:2e80:7::/48 maxlen: 48
2404:2e80:8::/48 maxlen: 48
2404:2e80:9::/48 maxlen: 48
2404:2e80:a::/48 maxlen: 48
2404:2e80:b::/48 maxlen: 48
2404:2e80:c::/48 maxlen: 48
2404:2e80:d::/48 maxlen: 48
2404:2e80:e::/48 maxlen: 48
2404:2e80:f::/48 maxlen: 48
2404:2e80:10::/48 maxlen: 48
2404:2e80:11::/48 maxlen: 48
2404:2e80:12::/48 maxlen: 48
2404:2e80:13::/48 maxlen: 48
2404:2e80:14::/48 maxlen: 48
2404:2e80:15::/48 maxlen: 48
2404:2e80:16::/48 maxlen: 48
2404:2e80:17::/48 maxlen: 48
2404:2e80:18::/48 maxlen: 48
2404:2e80:19::/48 maxlen: 48
2404:2e80:1a::/48 maxlen: 48
2404:2e80:1b::/48 maxlen: 48
2404:2e80:1c::/48 maxlen: 48
2404:2e80:1d::/48 maxlen: 48
2404:2e80:1e::/48 maxlen: 48
2404:2e80:1f::/48 maxlen: 48
2404:2e80:20::/48 maxlen: 48
2404:2e80:21::/48 maxlen: 48
2404:2e80:22::/48 maxlen: 48
2404:2e80:23::/48 maxlen: 48
2404:2e80:24::/48 maxlen: 48
2404:2e80:25::/48 maxlen: 48
2404:2e80:26::/48 maxlen: 48
2404:2e80:27::/48 maxlen: 48
2404:2e80:28::/48 maxlen: 48
2404:2e80:29::/48 maxlen: 48
2404:2e80:2a::/48 maxlen: 48
2404:2e80:2b::/48 maxlen: 48
2404:2e80:2c::/48 maxlen: 48
2404:2e80:2d::/48 maxlen: 48
2404:2e80:2e::/48 maxlen: 48
2404:2e80:2f::/48 maxlen: 48
2404:2e80:30::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912016A/B083DD08DEB611E59E13B879C4F9AE02/S1iwsGEJlGZgwJ-8lpmmQ7f0KuY.crl
rsync://rpki.apnic.net/member_repository/A912016A/B083DD08DEB611E59E13B879C4F9AE02/S1iwsGEJlGZgwJ-8lpmmQ7f0KuY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S1iwsGEJlGZgwJ-8lpmmQ7f0KuY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 13 Jun 2024 16:25:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8364 (0x20ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912016A/serialNumber=4B58B0B06109946660C09FBC9699A643B7F42AE6
Validity
Not Before: Feb 2 16:33:31 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=65bd195b-3abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:91:75:d7:bc:fa:43:82:52:9d:59:c2:02:a8:
95:1e:4c:e0:64:6f:7e:da:69:90:ac:62:cc:e7:0f:
82:9d:a4:1b:a8:d0:40:50:cf:87:95:d5:38:28:22:
18:23:81:e6:15:0c:57:d9:83:5b:2a:d3:4d:bc:51:
c6:13:d3:75:c0:35:2c:99:4e:f9:78:bf:e6:94:bc:
b3:e3:87:63:7c:e3:ec:c8:89:32:32:b3:0d:86:9e:
03:e0:2b:25:eb:0b:f0:c9:a1:70:83:21:3f:01:82:
d6:90:ec:29:dd:f1:8c:ce:b2:9c:c7:f3:1d:b7:19:
80:a1:e6:20:43:54:7a:09:11:84:6b:12:43:0d:b8:
af:24:46:50:5b:ea:eb:52:18:b9:1a:90:e7:90:9a:
1d:fa:5a:a3:b4:78:3e:35:c4:4d:47:33:0f:b2:f4:
46:0c:70:93:67:1d:75:d8:ac:e6:b9:cd:b1:e7:b7:
0b:44:7c:4b:6d:82:1b:57:51:4e:bd:67:b7:fe:5d:
9a:74:aa:dd:b3:98:fa:6f:2e:e8:d5:b3:e8:e6:71:
40:77:ae:bb:21:e8:29:04:81:01:24:2c:79:f3:37:
50:66:d5:aa:1c:67:07:c3:e0:20:4e:f6:ff:78:43:
00:77:2b:b5:92:e1:4a:7a:c8:3f:1f:1e:6b:16:76:
89:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:6A:73:8F:FB:21:01:8D:A4:B2:AE:48:0A:5E:E7:AD:DF:61:34:9F
X509v3 Authority Key Identifier:
keyid:4B:58:B0:B0:61:09:94:66:60:C0:9F:BC:96:99:A6:43:B7:F4:2A:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912016A/B083DD08DEB611E59E13B879C4F9AE02/S1iwsGEJlGZgwJ-8lpmmQ7f0KuY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S1iwsGEJlGZgwJ-8lpmmQ7f0KuY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912016A/B083DD08DEB611E59E13B879C4F9AE02/05106CB4AFB011EA8972F65BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.207.80.0/22
IPv6:
2404:2e80::/32
Signature Algorithm: sha256WithRSAEncryption
2c:65:df:44:78:11:e1:e9:f2:75:87:e8:4c:74:ec:3a:0d:5a:
57:12:28:d0:8b:46:25:0f:6a:29:dc:aa:55:3c:bd:c6:4c:52:
31:b9:08:7c:7b:d7:7b:b5:77:75:07:e9:30:ce:f2:e1:99:ba:
6e:48:0c:d5:64:40:78:a5:18:d6:f9:fb:3d:25:d4:71:b3:6f:
8c:0a:60:f5:c2:c1:cf:8c:44:ba:2f:67:b2:28:a6:7c:31:2e:
6f:30:ae:17:ca:c7:40:50:0b:f3:95:6a:cf:72:f7:dd:8c:29:
72:bc:de:0a:ee:07:1f:59:5f:a4:1d:b1:6c:4e:e9:62:53:12:
b8:49:f8:eb:2c:d7:d5:ce:b6:22:19:fb:8e:27:a4:d8:2e:99:
47:e0:3c:c6:d9:6d:91:a8:60:2e:53:7d:fa:a8:56:72:91:f7:
85:4d:30:84:59:9c:59:16:28:d1:a7:17:9e:1d:9a:2d:e5:0b:
ab:39:96:df:a5:f1:08:5d:02:5a:cc:6d:48:00:bb:a5:cf:6a:
cf:0f:e1:ed:70:07:99:cb:b2:bf:01:25:11:1c:60:b4:24:06:
0c:8d:7a:4b:3c:67:3e:31:15:97:e4:6d:2c:3c:a9:96:08:58:
c1:1f:a8:b0:d7:db:56:ea:aa:d2:63:40:28:b0:c2:5f:f1:c9:
d6:9a:9b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:47:44 2024 by rpki-client on console-fra.rpki-client.org