Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/20AC748C821511EE9A540744C4F9AE02.roa
File: 20AC748C821511EE9A540744C4F9AE02.roa (raw, json)
Hash identifier: AJgZnAhtOCxjnjB5D82DF0iNnEhJvphwARQER69cfRA=
Subject key identifier: 86:C3:C6:A0:40:A2:2E:41:C5:16:9B:BA:5B:37:D4:19:D6:56:6D:5A
Certificate issuer: /CN=A9148D01/serialNumber=7E36AB1C044321B74CF678263E0524FD34179BBD
Certificate serial: 0588
Authority key identifier: 7E:36:AB:1C:04:43:21:B7:4C:F6:78:26:3E:05:24:FD:34:17:9B:BD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjarHARDIbdM9ngmPgUk_TQXm70.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/20AC748C821511EE9A540744C4F9AE02.roa
Signing time: Mon 13 Nov 2023 11:09:35 +0000
ROA not before: Mon 13 Nov 2023 11:09:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134540
IP address blocks: 49.248.98.0/23 maxlen: 24
49.248.100.0/22 maxlen: 24
49.248.127.0/24 maxlen: 24
49.248.128.0/24 maxlen: 24
49.248.130.0/24 maxlen: 24
49.248.131.0/24 maxlen: 24
49.248.132.0/24 maxlen: 24
49.248.133.0/24 maxlen: 24
49.248.134.0/24 maxlen: 24
49.248.136.0/24 maxlen: 24
49.248.137.0/24 maxlen: 24
49.248.150.0/24 maxlen: 24
114.143.2.0/24 maxlen: 24
114.143.4.0/23 maxlen: 23
114.143.8.0/24 maxlen: 24
114.143.10.0/24 maxlen: 24
114.143.11.0/24 maxlen: 24
114.143.12.0/24 maxlen: 24
114.143.15.0/24 maxlen: 24
114.143.18.0/24 maxlen: 24
114.143.19.0/24 maxlen: 24
114.143.21.0/24 maxlen: 24
114.143.22.0/24 maxlen: 24
114.143.24.0/24 maxlen: 24
114.143.28.0/24 maxlen: 24
114.143.29.0/24 maxlen: 24
114.143.32.0/21 maxlen: 24
114.143.80.0/20 maxlen: 20
114.143.96.0/24 maxlen: 24
114.143.97.0/24 maxlen: 24
114.143.196.0/24 maxlen: 24
123.252.128.0/24 maxlen: 24
123.252.129.0/24 maxlen: 24
123.252.130.0/24 maxlen: 24
123.252.132.0/24 maxlen: 24
123.252.139.0/24 maxlen: 24
123.252.141.0/24 maxlen: 24
123.252.142.0/24 maxlen: 24
123.252.143.0/24 maxlen: 24
123.252.144.0/24 maxlen: 24
123.252.145.0/24 maxlen: 24
123.252.150.0/24 maxlen: 24
123.252.152.0/24 maxlen: 24
123.252.153.0/24 maxlen: 24
123.252.154.0/24 maxlen: 24
123.252.155.0/24 maxlen: 24
123.252.156.0/24 maxlen: 24
123.252.157.0/24 maxlen: 24
123.252.158.0/24 maxlen: 24
123.252.159.0/24 maxlen: 24
123.252.160.0/24 maxlen: 24
123.252.162.0/24 maxlen: 24
123.252.164.0/24 maxlen: 24
123.252.166.0/24 maxlen: 24
123.252.167.0/24 maxlen: 24
123.252.168.0/24 maxlen: 24
123.252.169.0/24 maxlen: 24
123.252.172.0/24 maxlen: 24
123.252.177.0/24 maxlen: 24
123.252.178.0/24 maxlen: 24
123.252.179.0/24 maxlen: 24
123.252.180.0/24 maxlen: 24
123.252.182.0/24 maxlen: 24
123.252.183.0/24 maxlen: 24
123.252.184.0/24 maxlen: 24
123.252.185.0/24 maxlen: 24
123.252.186.0/24 maxlen: 24
123.252.187.0/24 maxlen: 24
123.252.192.0/24 maxlen: 24
123.252.196.0/24 maxlen: 24
123.252.198.0/24 maxlen: 24
123.252.199.0/24 maxlen: 24
123.252.202.0/24 maxlen: 24
123.252.207.0/24 maxlen: 24
123.252.212.0/22 maxlen: 24
123.252.216.0/24 maxlen: 24
123.252.221.0/24 maxlen: 24
123.252.223.0/24 maxlen: 24
123.252.224.0/21 maxlen: 24
123.252.234.0/24 maxlen: 24
123.252.237.0/24 maxlen: 24
123.252.239.0/24 maxlen: 24
123.252.240.0/22 maxlen: 22
123.252.245.0/24 maxlen: 24
123.252.246.0/24 maxlen: 24
123.252.248.0/24 maxlen: 24
123.252.254.0/24 maxlen: 24
202.149.194.0/24 maxlen: 24
202.149.195.0/24 maxlen: 24
202.149.197.0/24 maxlen: 24
202.149.200.0/24 maxlen: 24
202.149.211.0/24 maxlen: 24
202.149.212.0/24 maxlen: 24
202.149.213.0/24 maxlen: 24
202.149.215.0/24 maxlen: 24
202.149.216.0/24 maxlen: 24
202.189.225.0/24 maxlen: 24
202.189.229.0/24 maxlen: 24
202.189.230.0/24 maxlen: 24
202.189.231.0/24 maxlen: 24
202.189.232.0/24 maxlen: 24
202.189.233.0/24 maxlen: 24
202.189.234.0/24 maxlen: 24
202.189.236.0/24 maxlen: 24
202.189.237.0/24 maxlen: 24
202.189.238.0/24 maxlen: 24
202.189.240.0/24 maxlen: 24
202.189.241.0/24 maxlen: 24
202.189.242.0/24 maxlen: 24
202.189.244.0/24 maxlen: 24
202.189.245.0/24 maxlen: 24
202.189.247.0/24 maxlen: 24
202.189.250.0/24 maxlen: 24
202.189.251.0/24 maxlen: 24
202.189.252.0/24 maxlen: 24
202.189.253.0/24 maxlen: 24
202.189.254.0/24 maxlen: 24
2402:d400:a1::/48 maxlen: 51
2402:d400:a2::/48 maxlen: 51
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/fjarHARDIbdM9ngmPgUk_TQXm70.crl
rsync://rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/fjarHARDIbdM9ngmPgUk_TQXm70.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjarHARDIbdM9ngmPgUk_TQXm70.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 08 Jun 2024 02:11:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1416 (0x588)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9148D01/serialNumber=7E36AB1C044321B74CF678263E0524FD34179BBD
Validity
Not Before: Nov 13 11:09:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=655203ef-28a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0f:05:8a:f8:6f:2b:e4:02:c5:8d:4a:5d:a8:
36:8c:29:42:d6:e7:36:dc:2a:96:0c:9f:05:44:ce:
26:f1:71:53:ec:03:d6:84:46:73:23:e4:03:62:2f:
ff:31:33:86:ba:a4:7c:30:78:c4:a0:34:56:80:44:
ce:69:b8:e8:8e:33:fc:00:c1:71:92:20:41:39:5a:
60:98:93:3f:e1:20:78:fc:5f:24:98:03:0c:15:82:
d1:6b:d6:57:53:4a:7f:c5:67:b5:be:ad:c5:e2:bb:
cb:8a:f7:8c:a1:c2:08:4c:8e:72:83:83:50:e6:0c:
82:82:16:12:b7:6f:ac:58:d7:85:58:0c:ea:2f:d5:
b5:3f:e9:3c:fc:1c:2a:69:91:23:a4:64:38:b9:12:
c3:d8:01:6e:c0:02:85:92:48:38:e2:32:45:07:28:
01:2d:1a:d9:8c:da:d1:e6:20:ba:5b:17:70:b1:72:
3f:32:1c:07:ec:79:a6:e4:18:15:75:9c:2c:f1:c1:
50:81:2e:fb:af:90:d4:07:dd:ae:10:ae:f5:d3:b4:
c7:74:7e:1f:47:7b:cc:d9:a5:5f:53:6b:78:c6:9d:
1a:a5:eb:41:4f:f0:05:17:74:47:0a:d5:05:4b:34:
83:2f:7a:6f:6d:dc:c9:27:8d:15:a0:1f:d6:43:3a:
dd:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C3:C6:A0:40:A2:2E:41:C5:16:9B:BA:5B:37:D4:19:D6:56:6D:5A
X509v3 Authority Key Identifier:
keyid:7E:36:AB:1C:04:43:21:B7:4C:F6:78:26:3E:05:24:FD:34:17:9B:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/fjarHARDIbdM9ngmPgUk_TQXm70.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjarHARDIbdM9ngmPgUk_TQXm70.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/20AC748C821511EE9A540744C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.248.98.0-49.248.103.255
49.248.127.0-49.248.128.255
49.248.130.0-49.248.134.255
49.248.136.0/23
49.248.150.0/24
114.143.2.0/24
114.143.4.0/23
114.143.8.0/24
114.143.10.0-114.143.12.255
114.143.15.0/24
114.143.18.0/23
114.143.21.0-114.143.22.255
114.143.24.0/24
114.143.28.0/23
114.143.32.0/21
114.143.80.0-114.143.97.255
114.143.196.0/24
123.252.128.0-123.252.130.255
123.252.132.0/24
123.252.139.0/24
123.252.141.0-123.252.145.255
123.252.150.0/24
123.252.152.0-123.252.160.255
123.252.162.0/24
123.252.164.0/24
123.252.166.0-123.252.169.255
123.252.172.0/24
123.252.177.0-123.252.180.255
123.252.182.0-123.252.187.255
123.252.192.0/24
123.252.196.0/24
123.252.198.0/23
123.252.202.0/24
123.252.207.0/24
123.252.212.0-123.252.216.255
123.252.221.0/24
123.252.223.0-123.252.231.255
123.252.234.0/24
123.252.237.0/24
123.252.239.0-123.252.243.255
123.252.245.0-123.252.246.255
123.252.248.0/24
123.252.254.0/24
202.149.194.0/23
202.149.197.0/24
202.149.200.0/24
202.149.211.0-202.149.213.255
202.149.215.0-202.149.216.255
202.189.225.0/24
202.189.229.0-202.189.234.255
202.189.236.0-202.189.238.255
202.189.240.0-202.189.242.255
202.189.244.0/23
202.189.247.0/24
202.189.250.0-202.189.254.255
IPv6:
2402:d400:a1::-2402:d400:a2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
c1:20:02:a9:87:e6:61:e2:14:56:04:2c:b2:e7:5b:5b:c0:00:
51:7c:63:ab:7a:64:be:15:60:ef:5c:3f:0d:2c:8f:e7:24:9c:
d5:d6:93:20:72:c6:58:fd:c5:4b:04:2b:ad:7c:92:f9:70:17:
a9:41:35:0d:eb:fc:d6:5c:ca:92:1c:d8:45:9a:52:65:96:c9:
c4:76:2c:00:8d:85:9c:58:b4:68:b3:08:16:c9:2f:74:46:c9:
34:aa:09:f7:c8:56:9e:be:1e:bb:36:f9:af:4a:7d:a3:91:d5:
90:7f:fb:67:c7:f5:ed:4c:88:9a:3c:4a:5e:c6:6b:25:f0:bd:
01:dd:5e:19:49:25:a2:bf:a0:6f:32:67:ad:68:01:15:e2:22:
79:7a:07:53:ab:95:92:45:1c:63:de:41:8d:a9:3a:21:c1:12:
7c:07:27:cf:2a:d4:15:df:2f:08:44:81:d4:f7:6a:2e:e8:4d:
b2:02:eb:e9:77:4b:26:a0:4f:18:37:8b:3b:c1:b6:f1:48:dc:
2b:a2:08:dc:30:fe:2c:79:25:51:90:19:15:b2:4d:63:9f:12:
81:a3:b6:72:80:02:38:19:20:9d:69:c7:26:95:6f:c6:65:ae:
f6:45:2c:4f:cd:60:96:c3:1d:26:05:7d:07:73:22:76:03:8b:
2e:06:75:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:55:15 2024 by rpki-client on console-fra.rpki-client.org