Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128077/980CA8FE3AD711EBA2921A4AC4F9AE02/7AD47B2234EE11EE927E9F6AC4F9AE02.roa
File: 7AD47B2234EE11EE927E9F6AC4F9AE02.roa (raw, json)
Hash identifier: Mt4tb4VC4mD0Nqt0BXFmGgw6RIVVzrPQVbsXvi8D500=
Subject key identifier: AF:74:09:49:13:26:BF:F9:1E:45:90:56:25:C5:0D:49:4C:84:E0:AD
Certificate issuer: /CN=A9128077/serialNumber=D049F15C5B0041983E8B35C517B65171F7165CDC
Certificate serial: 0709
Authority key identifier: D0:49:F1:5C:5B:00:41:98:3E:8B:35:C5:17:B6:51:71:F7:16:5C:DC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0EnxXFsAQZg-izXFF7ZRcfcWXNw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9128077/980CA8FE3AD711EBA2921A4AC4F9AE02/7AD47B2234EE11EE927E9F6AC4F9AE02.roa
Signing time: Mon 24 Mar 2025 22:02:46 +0000
ROA not before: Mon 24 Mar 2025 22:02:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 151638
IP address blocks: 103.150.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9128077/980CA8FE3AD711EBA2921A4AC4F9AE02/0EnxXFsAQZg-izXFF7ZRcfcWXNw.crl
rsync://rpki.apnic.net/member_repository/A9128077/980CA8FE3AD711EBA2921A4AC4F9AE02/0EnxXFsAQZg-izXFF7ZRcfcWXNw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0EnxXFsAQZg-izXFF7ZRcfcWXNw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 21:36:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1801 (0x709)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9128077, serialNumber=D049F15C5B0041983E8B35C517B65171F7165CDC
Validity
Not Before: Mar 24 22:02:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=67e1d686-ce22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:20:ee:e7:d0:66:09:ac:6a:e2:c3:72:42:53:
23:6f:c6:15:0a:3c:a0:b2:b1:50:a6:02:44:4f:e9:
30:d7:1f:7d:7a:3d:96:b2:de:4a:c9:a9:a1:cc:18:
40:b2:6b:d6:34:27:56:c2:59:6e:16:f0:71:28:6c:
77:ed:5b:26:7f:8b:05:16:3e:f5:33:8c:52:9d:43:
80:ff:f5:f6:a2:37:f5:ec:96:6f:74:a3:cc:73:47:
95:59:62:2b:6b:6a:07:53:99:61:c5:b8:5c:2d:a7:
da:a9:bd:6c:f4:2c:6e:11:d4:31:21:f6:80:a1:7c:
76:53:8c:20:ef:97:14:a6:09:44:78:f3:59:ae:ed:
4a:58:eb:88:b9:13:e6:d6:9c:41:8f:63:40:b4:35:
27:ce:fe:8c:2b:2e:61:a2:9e:8c:de:24:f2:86:1e:
60:98:e4:f5:63:d4:85:26:6d:65:66:91:4e:19:52:
14:fe:01:04:56:95:01:74:09:97:19:ba:06:1d:ac:
a7:38:90:88:2b:8d:b3:5c:dc:57:71:e1:98:d9:af:
13:95:e8:cb:eb:66:3b:26:66:b6:1a:4b:b2:e5:7e:
01:32:74:c2:6f:76:9e:4b:2a:28:7b:e8:81:29:3b:
eb:22:a4:eb:2c:88:a9:e5:ec:17:70:38:a5:b2:89:
0f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:74:09:49:13:26:BF:F9:1E:45:90:56:25:C5:0D:49:4C:84:E0:AD
X509v3 Authority Key Identifier:
keyid:D0:49:F1:5C:5B:00:41:98:3E:8B:35:C5:17:B6:51:71:F7:16:5C:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9128077/980CA8FE3AD711EBA2921A4AC4F9AE02/0EnxXFsAQZg-izXFF7ZRcfcWXNw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0EnxXFsAQZg-izXFF7ZRcfcWXNw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128077/980CA8FE3AD711EBA2921A4AC4F9AE02/7AD47B2234EE11EE927E9F6AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.150.49.0/24
Signature Algorithm: sha256WithRSAEncryption
20:cb:90:4f:b8:ed:5b:e0:68:58:d9:e7:fb:2d:69:b1:3a:32:
7a:a1:35:42:38:b5:85:03:18:e7:e9:68:0a:1c:b4:44:85:81:
73:c5:05:4b:24:85:cf:3f:4f:de:e6:38:05:a8:c2:4c:34:2c:
5d:d4:4c:e3:2a:26:e4:6b:5d:73:bc:69:fe:de:49:10:62:a9:
6d:b3:84:7f:6b:2b:ad:0c:7b:70:be:d6:dd:66:3c:d3:53:33:
9c:16:61:68:78:27:dc:e9:d8:1e:fc:7d:ca:e7:eb:4d:5a:56:
c6:63:95:6c:3e:61:62:89:ac:de:a9:0f:64:1b:a5:ae:9a:6b:
2d:5b:d0:24:5c:9a:88:d0:41:40:16:f4:d9:2d:40:36:67:bf:
d5:20:68:21:48:f2:38:cc:30:d1:bf:f4:24:ae:0c:d3:f4:64:
1f:6c:db:6b:00:da:a6:f5:4b:20:35:89:3f:73:9d:2b:b7:68:
6d:63:5b:10:8b:77:5e:8f:b1:ed:78:56:3a:0a:42:f1:9b:1f:
a5:fb:1f:65:5e:56:21:fd:16:23:b0:ff:f1:13:c1:58:75:c9:
a9:8b:e3:aa:cf:97:1a:44:22:8e:90:7b:5e:9a:82:0c:96:bf:
52:5d:b8:86:e6:3f:5c:cc:ee:c2:fb:bb:f2:25:73:d5:67:f6:
64:d6:94:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 01:12:14 2025 by rpki-client