Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/7196A634B0F311E5AB30F151C4F9AE02.roa
File: 7196A634B0F311E5AB30F151C4F9AE02.roa (raw, json)
Hash identifier: Kbpia/qupnA06FurrFYKFEEf+UuqsP/Ed+y/KIGt6qY=
Subject key identifier: 8C:E8:A3:A6:1C:E9:A0:B6:A6:98:FE:88:31:F7:C6:96:7A:44:0F:36
Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8
Certificate serial: 25FB
Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/7196A634B0F311E5AB30F151C4F9AE02.roa
Signing time: Thu 26 Sep 2024 15:52:56 +0000
ROA not before: Thu 26 Sep 2024 15:52:56 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 56299
IP address blocks: 125.5.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl
rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 15:42:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9723 (0x25fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9145446, serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8
Validity
Not Before: Sep 26 15:52:56 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66f58358-c263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5f:64:e2:5d:43:4c:ce:c0:34:85:e4:54:ed:
a2:98:2b:21:7e:06:28:b5:62:f7:8c:3b:5b:6d:df:
dd:07:c8:69:52:39:c4:9f:fa:0c:08:50:91:9b:3d:
b0:98:f1:b1:03:ce:3e:10:39:63:fb:c8:ed:cc:01:
a4:31:d1:42:98:57:90:b2:6f:7f:22:6f:42:c6:3f:
0b:18:6c:54:a8:ba:5b:bd:ab:0d:06:aa:83:45:33:
e9:e3:6e:ee:07:67:ca:ae:e4:37:39:19:73:3b:1b:
e9:df:aa:be:db:78:2d:a2:21:b4:e3:89:a1:4c:97:
12:11:c3:23:ef:1b:9e:00:98:a7:16:0d:38:9e:d0:
0f:de:6b:ba:79:ba:22:84:58:a2:5c:c8:6e:93:20:
ec:e1:71:eb:c6:e6:ce:ec:99:f9:a1:be:c3:5b:ae:
8b:29:57:59:b3:3b:cd:14:d0:b0:3a:b4:ad:e5:a6:
f7:b6:19:58:77:e9:76:91:7f:0c:46:4d:cb:a3:44:
8d:c3:81:59:73:06:59:13:0d:1f:f1:2c:a7:3e:37:
ac:b4:04:bd:3b:79:59:d8:b6:01:99:aa:8a:f9:de:
cd:25:ef:10:61:98:4e:3c:92:42:79:95:e1:97:71:
2c:5b:7e:ab:0d:2d:6e:55:e1:46:52:1c:8f:bd:78:
69:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:E8:A3:A6:1C:E9:A0:B6:A6:98:FE:88:31:F7:C6:96:7A:44:0F:36
X509v3 Authority Key Identifier:
keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/7196A634B0F311E5AB30F151C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
125.5.7.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:1c:a9:45:e0:9f:7f:b1:a8:bc:c4:a1:2b:93:31:19:14:1a:
0f:78:0a:c4:65:0b:49:53:1b:a5:af:bc:04:8d:72:1e:2c:19:
3d:a2:b9:9f:d5:52:62:b3:20:d7:84:a9:55:bf:07:c9:ab:06:
2f:30:2e:3f:64:0a:10:7e:98:f2:f9:db:1e:21:75:91:14:9a:
c3:a5:de:e3:5f:f4:e0:0d:c6:8d:38:d7:97:52:17:aa:f3:6d:
5b:89:6d:c1:20:8e:de:77:bb:94:5b:d2:17:8b:c2:57:12:d7:
11:68:79:95:06:d8:a7:26:c2:e2:ff:d1:9c:0a:bb:fb:e9:67:
d0:4d:6d:cc:ad:48:8d:ed:9f:5f:5b:3b:73:e4:48:40:cf:55:
cc:b9:f7:c6:07:66:0c:dd:ab:65:d6:ec:30:ce:87:3e:ae:7b:
cb:fd:62:94:0e:73:0c:43:1b:95:16:08:5b:9b:97:1b:7e:39:
db:3f:3c:36:a1:dd:3c:1b:50:28:cb:d5:96:02:b5:5f:72:be:
39:b0:43:ce:e3:fc:3f:a2:ed:dd:37:bf:a6:a8:cf:a0:47:ca:
89:99:70:56:bd:b9:5c:28:81:44:f4:a0:3a:17:15:13:9b:ea:
e3:06:3a:7b:d5:44:f4:b4:3a:a8:44:e0:7f:33:8f:f4:29:d6:
56:d1:ea:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 01:12:12 2025 by rpki-client