Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/ABE3468CBB5611EE936F4785C4F9AE02.roa
File: ABE3468CBB5611EE936F4785C4F9AE02.roa (raw, json)
Hash identifier: 85cGKhcFvfLsa3fKkS4OSkRQ0VqdCtjeFSWGED/065w=
Subject key identifier: 2D:63:EA:EB:82:8A:9F:77:D0:85:3A:21:0F:F3:64:CD:1B:1D:1E:30
Certificate issuer: /CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6
Certificate serial: 03A5
Authority key identifier: D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/ABE3468CBB5611EE936F4785C4F9AE02.roa
Signing time: Wed 31 Jul 2024 02:33:10 +0000
ROA not before: Wed 31 Jul 2024 02:33:10 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 152190
IP address blocks: 147.50.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl
rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 00:25:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933 (0x3a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91262CA
Validity
Not Before: Jul 31 02:33:10 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66a9a266-07af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7c:6d:09:47:eb:6e:91:a8:8a:fc:25:1e:f1:
04:a5:8b:07:69:72:62:70:04:e0:25:eb:58:ca:98:
7d:08:9c:fe:29:0b:c4:13:8f:f7:4c:78:48:c3:c9:
a0:9d:cc:31:ae:c5:58:58:b5:07:55:c0:0d:9b:63:
2f:b6:40:1a:25:b4:c0:c2:48:1e:80:e6:60:4f:ff:
da:89:d6:bd:99:db:30:e4:d9:67:2d:ae:5b:e2:95:
15:db:32:b2:37:1d:99:7a:72:35:0e:1a:64:5c:a1:
16:58:1f:d7:f4:f2:d8:7f:ae:56:f6:05:83:13:d6:
18:e0:12:59:fc:1f:7f:23:1c:0e:dd:c4:e8:b4:fc:
3e:f9:59:90:f4:39:23:f9:cf:fc:7f:22:c2:5c:64:
9f:1e:74:57:57:43:de:05:5b:d8:16:23:2c:71:ea:
77:94:82:c5:52:bd:45:8b:1f:13:c1:2b:f2:1a:2d:
80:fd:fb:b8:6c:8a:1c:ee:4f:8b:34:2a:f4:47:f2:
ca:08:92:32:3d:19:1c:82:1b:93:15:65:af:b9:e6:
66:47:24:df:ed:b5:b2:44:1c:27:dd:e8:34:f0:95:
9b:73:a1:af:72:b1:39:c3:00:ff:41:e5:b6:3b:00:
d6:d7:4b:bb:55:06:e0:8f:8d:3c:7a:df:6b:31:eb:
4a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:63:EA:EB:82:8A:9F:77:D0:85:3A:21:0F:F3:64:CD:1B:1D:1E:30
X509v3 Authority Key Identifier:
keyid:D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/ABE3468CBB5611EE936F4785C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
147.50.62.0/24
Signature Algorithm: sha256WithRSAEncryption
00:b7:c6:f3:2b:5f:04:02:bf:cd:60:94:40:6e:f1:1b:99:ed:
2a:77:12:9f:9a:6c:0c:67:98:c9:cd:ed:3d:b6:2e:5a:f3:7b:
60:e4:7b:c4:bc:06:83:0a:77:75:1c:23:8c:13:03:20:31:f4:
ab:62:2b:06:f5:13:6c:c0:77:68:96:bf:f2:c9:e2:35:57:47:
5a:68:a1:b3:ac:61:f3:5c:93:bc:71:ad:c4:ca:01:31:bb:ee:
aa:cd:e9:bb:7c:68:ad:d1:3f:0b:8e:e3:11:86:a6:b9:a7:ee:
90:3e:af:c2:1d:bd:b2:7f:09:56:b3:51:4c:3b:cb:3f:0b:d1:
11:65:fd:2e:1e:e9:1c:db:0b:5c:63:09:70:c2:ec:f0:96:83:
0a:80:83:f0:ca:11:89:26:fb:a5:03:75:6e:f7:b5:b3:bd:56:
8d:c5:c8:9d:72:c3:88:06:62:1e:30:d6:fa:f3:ca:a3:8d:2c:
2e:1a:e4:4a:e2:dc:fb:95:56:38:42:89:de:42:71:9f:10:50:
d0:50:80:8a:10:94:82:bb:12:e9:a8:92:19:29:d5:2f:bb:67:
ed:c2:55:f4:f5:37:15:df:f2:7f:3a:ac:8a:c6:bb:83:2d:4a:
c8:03:3d:bb:8e:d3:a3:8b:81:e0:a0:79:df:30:4e:12:9b:51:
32:7e:d2:94
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICA6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjYyQ0ExMTAvBgNVBAUTKEQ2M0RFODJBNzU5Rjk2NTdGOEYwNzNCMjUxMjUxQUFF
NjdCQTRCQTYwHhcNMjQwNzMxMDIzMzEwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmE5YTI2Ni0wN2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAt3xtCUfrbpGoivwlHvEEpYsHaXJicATgJetYyph9CJz+KQvEE4/3THhIw8mg
ncwxrsVYWLUHVcANm2MvtkAaJbTAwkgegOZgT//aida9mdsw5NlnLa5b4pUV2zKy
Nx2ZenI1DhpkXKEWWB/X9PLYf65W9gWDE9YY4BJZ/B9/IxwO3cTotPw++VmQ9Dkj
+c/8fyLCXGSfHnRXV0PeBVvYFiMscep3lILFUr1Fix8TwSvyGi2A/fu4bIoc7k+L
NCr0R/LKCJIyPRkcghuTFWWvueZmRyTf7bWyRBwn3eg08JWbc6GvcrE5wwD/QeW2
OwDW10u7VQbgj408et9rMetKaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFC1j6uuC
ip930IU6IQ/zZM0bHR4wMB8GA1UdIwQYMBaAFNY96Cp1n5ZX+PBzslElGq5nukum
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9FQzFFRTY1MjhB
NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxsZjQ4SE95VVNVYXJtZTZT
NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyLzFqM29LbldmbGxmNDhIT3lVU1Vhcm1lNlM2WS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MjYyQ0EvRUMxRUU2NTI4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvQUJFMzQ2OENC
QjU2MTFFRTkzNkY0Nzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBACTMj4wDQYJKoZIhvcNAQELBQADggEBAAC3xvMrXwQCv81g
lEBu8RuZ7Sp3Ep+abAxnmMnN7T22Llrze2Dke8S8BoMKd3UcI4wTAyAx9KtiKwb1
E2zAd2iWv/LJ4jVXR1poobOsYfNck7xxrcTKATG77qrN6bt8aK3RPwuO4xGGprmn
7pA+r8IdvbJ/CVazUUw7yz8L0RFl/S4e6RzbC1xjCXDC7PCWgwqAg/DKEYkm+6UD
dW73tbO9Vo3FyJ1yw4gGYh4w1vrzyqONLC4a5Eri3PuVVjhCid5CcZ8QUNBQgIoQ
lIK7Eumokhkp1S+7Z+3CVfT1NxXf8n86rIrGu4MtSsgDPbuO06OLgeCged8wThKb
UTJ+0pQ=
-----END CERTIFICATE-----
Generated at Fri Apr 11 19:00:17 2025 by rpki-client