Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/503D70161E0111E9A590C837C4F9AE02.roa
File: 503D70161E0111E9A590C837C4F9AE02.roa (raw, json)
Hash identifier: hM5LLTEFQCDCNpYp2M2duD/B+AO8Du0IE3zabt4wCQY=
Subject key identifier: 7A:AF:C0:08:FD:82:0B:69:44:C3:0B:15:65:7D:14:2B:C4:3E:9C:C8
Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Certificate serial: 38BD
Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/503D70161E0111E9A590C837C4F9AE02.roa
Signing time: Tue 16 Jul 2024 14:31:23 +0000
ROA not before: Tue 16 Jul 2024 14:31:23 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 45807
IP address blocks: 119.46.66.0/24 maxlen: 24
171.102.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl
rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 14:20:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14525 (0x38bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Validity
Not Before: Jul 16 14:31:23 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=6696843a-6cb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:d1:b7:91:94:60:b2:34:2a:d1:12:c2:7c:72:
d7:e0:74:4e:4f:43:d6:8b:da:0b:79:61:ed:46:f4:
ec:38:75:af:e6:73:bb:87:15:57:d9:52:70:12:05:
ed:78:07:24:dc:fa:3e:3a:ed:22:dd:41:d2:96:74:
f5:a5:9c:53:c8:92:7f:3a:1a:5d:fc:b1:c4:95:33:
99:77:75:ce:a4:70:f7:e4:b1:8c:ed:0d:a8:c4:ee:
a5:27:bd:98:94:73:5b:34:79:9d:6d:23:6e:90:a8:
23:12:88:64:a3:8f:fd:fe:f7:ab:89:f5:63:2f:be:
81:fc:51:00:25:d4:44:f0:f5:a0:41:f2:a5:4c:3c:
2e:46:63:38:43:2d:fe:c7:2b:48:39:b0:f5:68:ab:
7c:c0:c7:0a:84:d1:c1:49:ef:eb:f8:e0:20:1d:8b:
66:f9:73:30:e4:05:5d:10:4c:b0:5d:e1:69:02:5e:
78:1a:92:0e:21:f1:13:b6:7d:f6:6d:71:d4:ca:1a:
b2:22:54:32:39:88:ad:35:38:56:93:85:88:00:44:
93:cb:49:9e:45:05:a0:92:9a:cc:1d:b8:9c:1a:76:
e1:8f:01:2b:fa:ef:c6:9c:1c:3d:67:b8:02:47:97:
e6:bd:92:e1:5d:8b:32:a0:2f:dd:02:cb:ff:19:34:
f5:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:AF:C0:08:FD:82:0B:69:44:C3:0B:15:65:7D:14:2B:C4:3E:9C:C8
X509v3 Authority Key Identifier:
keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/503D70161E0111E9A590C837C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
119.46.66.0/24
171.102.41.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:ed:ab:8c:67:7c:8e:24:4a:b2:9f:78:ee:67:0f:7d:1d:71:
7d:c9:8a:f2:3e:b3:6d:4e:9c:3d:ba:97:d4:fa:5c:9a:8d:c3:
39:6e:30:fd:61:39:ab:89:27:68:47:40:7d:18:42:44:3b:53:
4b:18:f9:6d:e2:02:35:b9:bd:cf:bd:1f:0c:d7:ff:59:30:88:
f5:04:2c:e2:de:ad:43:4c:d4:cb:f8:5b:9f:3c:8b:df:ad:0a:
d9:4a:9d:4f:3a:4f:7d:22:ff:c2:3b:50:bd:f6:91:16:af:7b:
bd:6b:5c:5b:bb:6b:bc:c4:5b:c4:f8:bb:99:46:96:1d:a1:c0:
09:9e:f1:b4:aa:0d:4a:cc:63:e2:28:ac:85:6f:0f:ef:b3:fa:
e7:80:fd:c5:83:7b:e2:9c:3c:66:10:f2:7c:1f:12:cf:5b:13:
1b:87:e9:cd:d1:05:28:a1:16:1d:3e:52:d0:2e:3f:a2:80:43:
2c:4c:6b:1f:b8:83:82:04:12:42:c3:27:b9:0b:74:a9:22:42:
67:64:3d:ad:8d:19:d5:3a:b5:6d:66:3b:d0:9e:78:63:b5:10:
df:89:d0:94:ee:dd:91:d7:5a:52:eb:29:17:c3:4b:6e:6a:b4:
c3:cd:a7:cd:b8:a1:ea:45:30:f0:3f:3a:c5:c7:80:b9:be:ef:
69:2a:57:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 14:30:39 2025 by rpki-client