Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/E30FC8222C4711EE9EAB1646C4F9AE02.roa
File: E30FC8222C4711EE9EAB1646C4F9AE02.roa (raw, json)
Hash identifier: w7i5VW8AX+kf8O5HVSwgr+tycavbxBAycf9emV078OM=
Subject key identifier: 6E:B1:E4:8D:84:11:D0:0A:0E:31:67:AE:D5:32:52:F5:43:30:68:21
Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Certificate serial: 375F
Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/E30FC8222C4711EE9EAB1646C4F9AE02.roa
Signing time: Thu 27 Jul 2023 07:46:38 +0000
ROA not before: Thu 27 Jul 2023 07:46:38 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 17552
IP address blocks: 27.145.0.0/16 maxlen: 24
58.8.0.0/16 maxlen: 24
58.9.0.0/16 maxlen: 24
58.10.0.0/16 maxlen: 24
58.11.0.0/16 maxlen: 24
61.90.0.0/17 maxlen: 24
61.91.128.0/21 maxlen: 24
61.91.144.0/21 maxlen: 24
61.91.190.0/24 maxlen: 24
61.91.191.0/24 maxlen: 24
61.91.192.0/24 maxlen: 24
61.91.193.0/24 maxlen: 24
61.91.201.0/24 maxlen: 24
61.91.214.0/24 maxlen: 24
110.168.0.0/17 maxlen: 24
110.168.128.0/17 maxlen: 24
110.169.0.0/16 maxlen: 24
110.171.0.0/17 maxlen: 24
110.171.128.0/17 maxlen: 24
114.109.0.0/16 maxlen: 24
115.87.0.0/17 maxlen: 24
115.87.128.0/17 maxlen: 24
119.46.255.0/24 maxlen: 24
119.76.0.0/16 maxlen: 24
124.120.0.0/16 maxlen: 24
124.121.0.0/16 maxlen: 24
124.122.0.0/16 maxlen: 24
171.96.0.0/16 maxlen: 24
171.97.0.0/16 maxlen: 24
171.98.0.0/16 maxlen: 24
171.99.0.0/16 maxlen: 24
171.100.0.0/16 maxlen: 24
171.101.0.0/16 maxlen: 24
171.102.0.0/16 maxlen: 24
171.103.0.0/16 maxlen: 24
182.17.0.0/16 maxlen: 24
202.133.128.0/20 maxlen: 24
202.133.144.0/20 maxlen: 24
202.133.160.0/19 maxlen: 24
202.176.64.0/18 maxlen: 18
202.176.64.0/19 maxlen: 24
202.176.96.0/19 maxlen: 24
202.176.128.0/18 maxlen: 24
210.213.0.0/18 maxlen: 24
2001:fb1::/32 maxlen: 32
2001:fb1::/44 maxlen: 48
2001:fb1:10::/44 maxlen: 48
2001:fb1:20::/44 maxlen: 48
2001:fb1:30::/44 maxlen: 48
2001:fb1:40::/44 maxlen: 48
2001:fb1:50::/44 maxlen: 48
2001:fb1:60::/44 maxlen: 48
2001:fb1:70::/44 maxlen: 48
2001:fb1:80::/44 maxlen: 48
2001:fb1:90::/44 maxlen: 48
2001:fb1:a0::/44 maxlen: 48
2001:fb1:b0::/44 maxlen: 48
2001:fb1:c0::/44 maxlen: 48
2001:fb1:d0::/44 maxlen: 48
2001:fb1:e0::/44 maxlen: 48
2001:fb1:f0::/44 maxlen: 48
2001:fb1:100::/44 maxlen: 48
2001:fb1:110::/44 maxlen: 48
2001:fb1:120::/44 maxlen: 48
2001:fb1:130::/44 maxlen: 48
2001:fb1:140::/44 maxlen: 48
2001:fb1:150::/44 maxlen: 48
2001:fb1:160::/44 maxlen: 48
2001:fb1:170::/44 maxlen: 48
2001:fb1:180::/44 maxlen: 48
2001:fb1:fc0::/48 maxlen: 48
2001:fb1:fd0::/48 maxlen: 48
2001:fb1:fe0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl
rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 07 Jun 2024 14:21:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14175 (0x375f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Validity
Not Before: Jul 27 07:46:38 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=64c220de-5d18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:03:84:f8:80:d0:71:c9:a4:e9:4b:a3:10:3a:
14:01:65:a7:28:c6:69:16:31:8a:3d:d9:05:2c:13:
6f:ef:e8:f5:68:c5:3e:c9:16:b2:7e:7e:2b:71:8f:
be:4b:ac:38:3c:74:03:b3:6f:e8:5d:d9:39:04:06:
ff:fd:55:85:20:3d:2e:b3:9f:ca:86:33:6b:f4:e3:
6f:7b:99:6c:44:04:46:e3:01:08:bf:92:d6:2a:d3:
3e:9c:1e:ef:3b:5f:e1:6e:26:f5:de:19:35:84:7d:
11:7b:35:b5:39:e1:97:c4:99:60:a4:3e:c0:0c:3f:
dc:4f:8b:23:e7:dc:1a:4c:70:65:3d:a3:da:ca:ec:
ff:c7:98:39:85:1b:7e:21:d7:81:84:8c:f7:31:1e:
e6:c2:6d:5e:db:97:e6:74:d8:b6:72:1a:0e:e7:5d:
9a:ff:48:a5:d6:b3:b5:c4:db:3f:84:aa:2e:a7:96:
ab:fd:99:cc:09:da:60:b7:bd:6b:8e:72:8b:8e:c5:
aa:cf:42:27:78:eb:88:09:16:e4:2f:ac:ca:aa:50:
22:ba:d1:60:66:fc:eb:10:17:9f:0a:4f:6a:36:7c:
96:32:a8:55:57:7d:d5:2e:d9:81:c7:b5:c5:5f:ce:
70:1e:af:a4:d0:7b:7e:35:f0:d9:fa:54:ad:55:d2:
c3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:B1:E4:8D:84:11:D0:0A:0E:31:67:AE:D5:32:52:F5:43:30:68:21
X509v3 Authority Key Identifier:
keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/E30FC8222C4711EE9EAB1646C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.145.0.0/16
58.8.0.0/14
61.90.0.0/17
61.91.128.0/21
61.91.144.0/21
61.91.190.0-61.91.193.255
61.91.201.0/24
61.91.214.0/24
110.168.0.0/15
110.171.0.0/16
114.109.0.0/16
115.87.0.0/16
119.46.255.0/24
119.76.0.0/16
124.120.0.0-124.122.255.255
171.96.0.0/13
182.17.0.0/16
202.133.128.0/18
202.176.64.0-202.176.191.255
210.213.0.0/18
IPv6:
2001:fb1::/32
Signature Algorithm: sha256WithRSAEncryption
94:0a:d9:0f:cc:aa:be:91:5d:9a:84:ef:19:7d:fa:d4:74:c7:
6a:8d:c2:71:4c:78:b2:4a:3a:38:df:a3:6d:61:aa:24:3e:ba:
94:6c:85:75:a3:c2:af:ca:10:24:03:82:19:98:73:b8:2a:43:
a7:9a:c0:77:b7:51:0f:ed:4c:e4:87:04:d6:e2:b0:37:14:4a:
f1:67:16:37:c8:df:1b:ab:3b:b9:82:f3:bd:0c:7d:c1:54:35:
90:fd:db:46:1c:b1:f7:53:8d:3a:91:c9:18:49:45:ee:a1:b3:
94:87:b2:4a:c5:a9:6c:dc:08:7e:77:56:3b:3a:71:61:71:6b:
40:12:4b:f5:27:b3:f3:2a:ca:3d:f1:40:d8:52:22:37:8c:34:
9b:6a:6c:ed:9c:3f:50:2f:ab:58:fb:06:99:af:20:04:b1:78:
9f:41:3e:c3:fa:66:4e:2e:b8:d2:eb:1b:7a:8e:91:21:91:09:
ce:a5:86:03:b1:12:00:32:c3:ee:49:d2:d0:6c:5e:87:39:45:
05:9f:97:12:9c:0b:75:e8:9b:56:bd:2d:cc:28:82:69:8c:1b:
58:04:b2:1e:e0:2d:dc:27:18:b5:3b:64:c1:d3:d0:e5:02:e9:
1a:a2:4d:62:5a:6a:9b:1f:d1:eb:ef:b0:4f:62:b9:aa:b7:e6:
29:46:61:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 15:08:09 2024 by rpki-client on console-fra.rpki-client.org