Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144633/A019E9CAF40111EAB061963FC4F9AE02/3AA3E4AE018111ECB7DFB21CC4F9AE02.roa
File: 3AA3E4AE018111ECB7DFB21CC4F9AE02.roa (raw, json)
Hash identifier: 5oc6Qp38wRPdhyK0UkEA8kQt2rT5qpKXkGxy5uDj59c=
Subject key identifier: 68:96:23:D8:2D:4F:C0:47:7D:F6:63:1B:4D:91:CC:C6:66:55:C7:69
Certificate issuer: /CN=A9144633/serialNumber=114D988E3151E9529B6BAD79D3E95436E537E123
Certificate serial: 078E
Authority key identifier: 11:4D:98:8E:31:51:E9:52:9B:6B:AD:79:D3:E9:54:36:E5:37:E1:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EU2YjjFR6VKba6150-lUNuU34SM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9144633/A019E9CAF40111EAB061963FC4F9AE02/3AA3E4AE018111ECB7DFB21CC4F9AE02.roa
Signing time: Mon 04 Nov 2024 06:58:29 +0000
ROA not before: Mon 04 Nov 2024 06:58:29 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 9534
IP address blocks: 14.192.192.0/18 maxlen: 18
14.192.192.0/23 maxlen: 23
14.192.208.0/24 maxlen: 24
14.192.209.0/24 maxlen: 24
14.192.210.0/24 maxlen: 24
14.192.211.0/24 maxlen: 24
14.192.212.0/24 maxlen: 24
14.192.213.0/24 maxlen: 24
14.192.214.0/24 maxlen: 24
14.192.215.0/24 maxlen: 24
14.192.216.0/21 maxlen: 21
14.192.216.0/24 maxlen: 24
14.192.217.0/24 maxlen: 24
14.192.218.0/24 maxlen: 24
14.192.219.0/24 maxlen: 24
14.192.220.0/24 maxlen: 24
14.192.221.0/24 maxlen: 24
14.192.222.0/24 maxlen: 24
14.192.223.0/24 maxlen: 24
14.192.236.0/22 maxlen: 22
14.192.240.0/22 maxlen: 22
14.192.244.0/23 maxlen: 23
14.192.246.0/24 maxlen: 24
14.192.247.0/24 maxlen: 24
43.255.172.0/22 maxlen: 22
43.255.172.0/24 maxlen: 24
43.255.173.0/24 maxlen: 24
43.255.174.0/24 maxlen: 24
43.255.175.0/24 maxlen: 24
58.71.128.0/17 maxlen: 18
58.71.144.0/22 maxlen: 22
58.71.152.0/21 maxlen: 21
103.4.44.0/22 maxlen: 22
113.210.0.0/15 maxlen: 16
113.210.48.0/20 maxlen: 20
113.210.48.0/21 maxlen: 21
113.210.56.0/21 maxlen: 21
113.210.64.0/20 maxlen: 20
113.210.80.0/20 maxlen: 20
113.210.80.0/23 maxlen: 23
113.210.96.0/20 maxlen: 20
113.210.96.0/21 maxlen: 21
113.210.104.0/21 maxlen: 21
113.210.105.0/24 maxlen: 24
113.210.106.0/24 maxlen: 24
113.210.112.0/20 maxlen: 20
113.210.112.0/21 maxlen: 21
113.210.120.0/21 maxlen: 21
113.210.176.0/20 maxlen: 20
113.210.192.0/20 maxlen: 20
113.211.96.0/20 maxlen: 20
113.211.96.0/21 maxlen: 21
113.211.104.0/21 maxlen: 21
113.211.112.0/20 maxlen: 20
113.211.112.0/21 maxlen: 21
113.211.120.0/21 maxlen: 21
113.211.128.0/20 maxlen: 20
113.211.128.0/21 maxlen: 21
113.211.136.0/21 maxlen: 21
113.211.144.0/20 maxlen: 20
113.211.160.0/20 maxlen: 20
113.211.176.0/20 maxlen: 20
121.120.0.0/15 maxlen: 16
121.122.0.0/15 maxlen: 17
202.122.144.0/20 maxlen: 21
202.146.64.0/20 maxlen: 21
202.146.80.0/20 maxlen: 21
202.179.96.0/19 maxlen: 20
202.179.111.0/24 maxlen: 24
202.179.112.0/21 maxlen: 21
2001:d08::/32 maxlen: 32
2001:d08:a0::/44 maxlen: 44
2001:d08:d0::/44 maxlen: 44
2001:d08:d0::/47 maxlen: 47
2001:d08:d2::/47 maxlen: 47
2001:d08:d4::/47 maxlen: 47
2001:d08:d6::/47 maxlen: 47
2001:d08:d8::/47 maxlen: 47
2001:d08:da::/47 maxlen: 47
2001:d08:dc::/47 maxlen: 47
2001:d08:de::/47 maxlen: 47
2001:d08:e0::/44 maxlen: 44
2001:d08:1000::/37 maxlen: 37
2001:d08:1800::/37 maxlen: 37
2001:d08:2000::/37 maxlen: 37
2001:d08:2800::/41 maxlen: 41
2001:d08:2900::/41 maxlen: 41
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9144633/A019E9CAF40111EAB061963FC4F9AE02/EU2YjjFR6VKba6150-lUNuU34SM.crl
rsync://rpki.apnic.net/member_repository/A9144633/A019E9CAF40111EAB061963FC4F9AE02/EU2YjjFR6VKba6150-lUNuU34SM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EU2YjjFR6VKba6150-lUNuU34SM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1934 (0x78e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9144633/serialNumber=114D988E3151E9529B6BAD79D3E95436E537E123
Validity
Not Before: Nov 4 06:58:29 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67287095-f0d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:29:f0:51:9c:04:df:5b:3b:1a:f9:3c:a0:ad:
ab:93:84:22:42:05:b6:8f:5c:82:97:47:3c:c0:c8:
5f:4c:5f:64:a6:ac:8b:a8:a6:5b:34:ef:57:1a:7f:
1d:e8:c5:64:74:c7:d5:57:d8:0a:65:5a:69:8a:6d:
ac:cb:da:56:68:f1:3f:ca:c1:ae:e9:f5:fe:4a:29:
13:19:0c:0c:dd:08:62:50:18:be:a5:e4:58:fe:cb:
b3:09:3e:9f:6c:f1:60:8b:13:f4:42:31:4f:2c:bb:
40:2a:a1:d1:4f:92:0b:68:7e:9c:92:96:6e:ac:a4:
dc:37:e9:36:72:1d:ec:12:ab:36:1f:74:c5:30:52:
cf:9c:75:19:ca:93:d0:f5:35:2d:e7:0a:1d:0a:da:
a6:16:30:f5:29:7c:27:fa:ed:02:fa:ba:a1:f5:ad:
02:19:0e:48:8e:c9:8f:15:8d:95:cc:65:fe:ad:70:
46:90:fd:fa:56:09:a5:5d:09:20:22:ef:ed:29:05:
ff:ae:f9:fb:0b:68:d3:3d:2a:93:9f:d3:e5:a9:02:
ba:50:c2:b4:20:d1:f6:f4:1c:09:b6:91:7f:3c:1a:
ea:c4:a0:15:b9:93:45:cd:51:8a:05:c8:19:61:34:
9e:87:bc:e4:98:25:1a:45:27:da:3b:4c:a1:e5:f5:
ec:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:96:23:D8:2D:4F:C0:47:7D:F6:63:1B:4D:91:CC:C6:66:55:C7:69
X509v3 Authority Key Identifier:
keyid:11:4D:98:8E:31:51:E9:52:9B:6B:AD:79:D3:E9:54:36:E5:37:E1:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9144633/A019E9CAF40111EAB061963FC4F9AE02/EU2YjjFR6VKba6150-lUNuU34SM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EU2YjjFR6VKba6150-lUNuU34SM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144633/A019E9CAF40111EAB061963FC4F9AE02/3AA3E4AE018111ECB7DFB21CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.192.0/18
43.255.172.0/22
58.71.128.0/17
103.4.44.0/22
113.210.0.0/15
121.120.0.0/14
202.122.144.0/20
202.146.64.0/19
202.179.96.0/19
IPv6:
2001:d08::/32
Signature Algorithm: sha256WithRSAEncryption
6f:e8:e5:ff:20:65:56:1d:0d:a4:f0:4f:44:b1:23:9c:7b:ec:
25:2e:67:91:6f:86:56:63:6b:83:51:5b:e6:48:2d:eb:ca:51:
ff:cf:c7:f0:6a:db:a5:04:46:1b:fc:ba:1e:58:44:fe:7b:7a:
fa:66:81:6a:71:79:a4:fc:7c:97:a0:63:c8:ad:48:ab:24:a6:
4e:a3:1a:0c:c4:70:b2:42:ab:2a:22:6f:b3:96:80:4e:99:26:
61:30:63:2d:87:e0:fb:e1:32:da:e5:be:1a:de:a2:dc:16:46:
9e:71:c4:16:d7:78:24:a9:2c:ba:4d:ef:db:8a:cc:97:f7:19:
e4:62:0f:c3:c9:71:4e:14:d7:19:af:48:30:54:d9:24:fb:9c:
22:70:94:9e:d6:b4:3b:16:62:19:b0:cc:09:a7:6a:06:2e:fc:
f1:68:c2:26:96:2c:1e:17:a7:20:cf:3c:17:5e:a0:98:8d:46:
20:a8:1f:09:04:ec:b2:2b:5a:03:87:34:8e:26:71:33:3e:2a:
f0:d9:1d:37:71:2a:31:04:28:65:a3:d0:52:98:a5:62:03:9b:
ea:82:0d:0f:03:83:79:b7:f9:f2:0a:8f:d8:ed:a7:6c:b8:99:
a7:19:45:54:f2:72:5a:54:30:98:c9:43:19:73:6b:e6:da:c6:
7a:c4:d9:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:14:25 2024 by rpki-client on console-ams.rpki-client.org