Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/FB3F8334973B11ED935E7109C4F9AE02.roa
File: FB3F8334973B11ED935E7109C4F9AE02.roa (raw, json)
Hash identifier: mjR3c+t+smHjLqMf4drJmz9rxODMszK1LD6+M9LGeIY=
Subject key identifier: 08:C8:AF:71:6A:56:A9:62:47:FB:98:74:6E:26:66:7A:AB:38:95:3B
Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0
Certificate serial: 25C0
Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/FB3F8334973B11ED935E7109C4F9AE02.roa
Signing time: Sat 08 Feb 2025 17:55:43 +0000
ROA not before: Sat 08 Feb 2025 17:55:43 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 9541
IP address blocks: 103.178.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl
rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 17:40:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9664 (0x25c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913B805
Validity
Not Before: Feb 8 17:55:43 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67a79a9f-967b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0d:dc:fe:ba:a3:be:6d:fc:5f:42:af:c7:ff:
69:a0:26:0c:84:25:41:c1:1d:e0:11:2b:17:b9:c8:
66:4f:ff:c0:20:68:c9:59:49:0b:a3:91:51:2e:50:
99:82:fc:92:50:eb:46:13:e4:04:3f:88:39:52:9a:
12:39:3f:7a:9f:b2:fa:68:b3:0b:39:af:46:c0:9b:
1b:09:32:c3:aa:da:15:ad:35:d1:e8:ee:a9:0d:3f:
59:85:8b:ab:e3:a8:df:4a:09:7e:5f:b3:a0:ec:4e:
ee:f6:ef:1c:b4:0f:d1:74:1c:b8:a8:8f:f8:dc:74:
dc:ee:93:98:2f:dc:88:e6:dd:97:bd:82:b6:0d:17:
3f:17:29:3d:72:a9:1d:fa:e4:38:a7:db:db:44:0b:
7f:87:1e:b2:ee:61:be:49:ac:df:be:0d:2b:35:b0:
e4:b5:51:be:b4:7a:f4:9c:56:45:cb:7f:7e:c1:b0:
42:c3:11:e8:1e:59:e4:e5:7b:1c:c2:04:98:2c:0f:
7f:04:e8:00:10:d5:69:32:a6:75:fe:c3:85:49:c2:
29:b9:54:ab:fe:f3:dc:5a:08:ad:3a:1e:f1:61:f5:
4e:53:8b:4a:37:9d:90:bc:99:d4:0c:76:72:33:9a:
3a:ee:07:61:69:60:9d:31:56:af:83:22:36:7a:10:
44:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C8:AF:71:6A:56:A9:62:47:FB:98:74:6E:26:66:7A:AB:38:95:3B
X509v3 Authority Key Identifier:
keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/FB3F8334973B11ED935E7109C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.178.52.0/24
Signature Algorithm: sha256WithRSAEncryption
29:66:d8:fc:30:59:3d:a2:21:74:f0:08:5d:55:c8:35:0b:ac:
6c:b1:bf:bd:f0:f0:98:70:b2:7d:81:8a:8c:71:1b:16:2c:55:
21:f4:14:99:74:b4:21:aa:2f:28:d1:8d:06:dd:a8:06:57:9f:
dc:ae:f7:58:f5:34:a3:11:70:d4:d2:1e:f7:4f:87:7f:11:df:
5c:8e:fa:33:3b:73:ce:30:92:b8:91:fe:f2:c2:3a:d1:ce:8b:
c8:f8:40:ee:0a:74:f0:45:08:03:a3:a8:3c:33:e5:9a:1a:cf:
ca:d0:48:50:30:77:7e:51:77:bb:10:b1:e7:41:42:25:b0:ed:
3a:e6:ce:b3:6b:ee:ca:0b:28:78:bd:f9:6e:f9:3e:ff:4e:c2:
56:5f:7b:2c:96:ca:61:62:f5:58:ea:f1:5f:42:ac:ea:17:8b:
53:1a:98:2f:38:9d:5e:77:26:37:ff:fd:6f:09:26:68:52:84:
73:58:82:be:f3:0c:6a:81:ba:3e:2a:db:23:22:d2:04:8c:62:
cb:84:4e:82:1b:fe:5a:33:ad:2b:d1:b6:db:5b:f9:75:1d:8d:
e8:f5:e2:a0:95:0c:18:08:fe:92:e9:28:14:e9:c9:b7:43:ba:
c3:60:f0:cc:c5:6a:5a:6f:66:5d:fd:41:8f:66:4c:f9:30:e8:
b5:8f:f9:c4
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICJcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw
RDNEOEE2RDAwHhcNMjUwMjA4MTc1NTQzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2E3OWE5Zi05NjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtA3c/rqjvm38X0Kvx/9poCYMhCVBwR3gESsXuchmT//AIGjJWUkLo5FRLlCZ
gvySUOtGE+QEP4g5UpoSOT96n7L6aLMLOa9GwJsbCTLDqtoVrTXR6O6pDT9ZhYur
46jfSgl+X7Og7E7u9u8ctA/RdBy4qI/43HTc7pOYL9yI5t2XvYK2DRc/Fyk9cqkd
+uQ4p9vbRAt/hx6y7mG+Sazfvg0rNbDktVG+tHr0nFZFy39+wbBCwxHoHlnk5Xsc
wgSYLA9/BOgAENVpMqZ1/sOFScIpuVSr/vPcWgitOh7xYfVOU4tKN52QvJnUDHZy
M5o67gdhaWCdMVavgyI2ehBEZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAjIr3Fq
VqliR/uYdG4mZnqrOJU7MB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC
N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw
dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvRkIzRjgzMzQ5
NzNCMTFFRDkzNUU3MTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnsjQwDQYJKoZIhvcNAQELBQADggEBAClm2PwwWT2iIXTw
CF1VyDULrGyxv73w8Jhwsn2BioxxGxYsVSH0FJl0tCGqLyjRjQbdqAZXn9yu91j1
NKMRcNTSHvdPh38R31yO+jM7c84wkriR/vLCOtHOi8j4QO4KdPBFCAOjqDwz5Zoa
z8rQSFAwd35Rd7sQsedBQiWw7TrmzrNr7soLKHi9+W75Pv9OwlZfeyyWymFi9Vjq
8V9CrOoXi1MamC84nV53Jjf//W8JJmhShHNYgr7zDGqBuj4q2yMi0gSMYsuEToIb
/lozrSvRtttb+XUdjej14qCVDBgI/pLpKBTpybdDusNg8MzFalpvZl39QY9mTPkw
6LWP+cQ=
-----END CERTIFICATE-----
Generated at Fri Apr 11 10:46:52 2025 by rpki-client