Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153457/4C1A034C1D7B11E2BE3DA6C808B02CD2/6660F0B422C311EDA0AD9A5FC4F9AE02.roa
File: 6660F0B422C311EDA0AD9A5FC4F9AE02.roa (raw, json)
Hash identifier: 8swxE+E7P8xqrI+oi5JkKQRJKtT2SB3D2LfOzvh5WdI=
Subject key identifier: F2:45:93:88:20:A3:3E:75:55:D9:BD:D6:62:6F:89:90:C1:80:59:40
Certificate issuer: /CN=A9153457/serialNumber=6B0E42D8859E0B1CDE54157ACB8D7604AD3FF1B3
Certificate serial: 349C
Authority key identifier: 6B:0E:42:D8:85:9E:0B:1C:DE:54:15:7A:CB:8D:76:04:AD:3F:F1:B3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aw5C2IWeCxzeVBV6y412BK0_8bM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9153457/4C1A034C1D7B11E2BE3DA6C808B02CD2/6660F0B422C311EDA0AD9A5FC4F9AE02.roa
Signing time: Thu 30 May 2024 14:50:21 +0000
ROA not before: Thu 30 May 2024 14:50:21 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 4795
IP address blocks: 202.155.0.0/17 maxlen: 17
202.155.0.0/22 maxlen: 22
202.155.0.0/24 maxlen: 24
202.155.2.0/23 maxlen: 24
202.155.4.0/23 maxlen: 23
202.155.5.0/24 maxlen: 24
202.155.6.0/24 maxlen: 24
202.155.7.0/24 maxlen: 24
202.155.8.0/24 maxlen: 24
202.155.9.0/24 maxlen: 24
202.155.10.0/23 maxlen: 23
202.155.12.0/22 maxlen: 22
202.155.12.0/23 maxlen: 23
202.155.14.0/24 maxlen: 24
202.155.15.0/24 maxlen: 24
202.155.16.0/23 maxlen: 23
202.155.18.0/24 maxlen: 24
202.155.19.0/24 maxlen: 24
202.155.20.0/22 maxlen: 22
202.155.22.0/24 maxlen: 24
202.155.24.0/23 maxlen: 23
202.155.25.0/24 maxlen: 24
202.155.26.0/23 maxlen: 23
202.155.26.0/24 maxlen: 24
202.155.28.0/23 maxlen: 23
202.155.30.0/23 maxlen: 23
202.155.32.0/23 maxlen: 23
202.155.32.0/24 maxlen: 24
202.155.34.0/23 maxlen: 23
202.155.36.0/23 maxlen: 23
202.155.37.0/24 maxlen: 24
202.155.38.0/23 maxlen: 23
202.155.40.0/22 maxlen: 22
202.155.40.0/23 maxlen: 23
202.155.43.0/24 maxlen: 24
202.155.44.0/22 maxlen: 22
202.155.44.0/23 maxlen: 23
202.155.48.0/20 maxlen: 20
202.155.48.0/24 maxlen: 24
202.155.49.0/24 maxlen: 24
202.155.50.0/23 maxlen: 24
202.155.52.0/23 maxlen: 23
202.155.54.0/23 maxlen: 23
202.155.54.0/24 maxlen: 24
202.155.56.0/24 maxlen: 24
202.155.57.0/24 maxlen: 24
202.155.58.0/24 maxlen: 24
202.155.59.0/24 maxlen: 24
202.155.60.0/23 maxlen: 23
202.155.62.0/23 maxlen: 23
202.155.65.0/24 maxlen: 24
202.155.66.0/23 maxlen: 23
202.155.68.0/23 maxlen: 23
202.155.69.0/24 maxlen: 24
202.155.70.0/23 maxlen: 23
202.155.70.0/24 maxlen: 24
202.155.72.0/22 maxlen: 23
202.155.76.0/23 maxlen: 23
202.155.78.0/23 maxlen: 23
202.155.78.0/24 maxlen: 24
202.155.79.0/24 maxlen: 24
202.155.80.0/23 maxlen: 23
202.155.82.0/23 maxlen: 23
202.155.84.0/24 maxlen: 24
202.155.85.0/24 maxlen: 24
202.155.86.0/24 maxlen: 24
202.155.87.0/24 maxlen: 24
202.155.88.0/23 maxlen: 23
202.155.88.0/24 maxlen: 24
202.155.90.0/24 maxlen: 24
202.155.91.0/24 maxlen: 24
202.155.92.0/24 maxlen: 24
202.155.93.0/24 maxlen: 24
202.155.94.0/23 maxlen: 23
202.155.96.0/23 maxlen: 23
202.155.98.0/23 maxlen: 23
202.155.98.0/24 maxlen: 24
202.155.100.0/23 maxlen: 23
202.155.100.0/24 maxlen: 24
202.155.102.0/24 maxlen: 24
202.155.103.0/24 maxlen: 24
202.155.104.0/23 maxlen: 23
202.155.106.0/23 maxlen: 23
202.155.108.0/23 maxlen: 23
202.155.110.0/23 maxlen: 23
202.155.112.0/23 maxlen: 24
202.155.114.0/23 maxlen: 23
202.155.114.0/24 maxlen: 24
202.155.115.0/24 maxlen: 24
202.155.116.0/23 maxlen: 23
202.155.118.0/23 maxlen: 23
202.155.118.0/24 maxlen: 24
202.155.120.0/21 maxlen: 21
202.155.120.0/23 maxlen: 23
202.155.122.0/23 maxlen: 23
202.155.124.0/23 maxlen: 23
202.155.124.0/24 maxlen: 24
202.155.126.0/24 maxlen: 24
202.155.127.0/24 maxlen: 24
202.155.128.0/19 maxlen: 21
202.155.128.0/24 maxlen: 24
202.155.130.0/24 maxlen: 24
202.155.133.0/24 maxlen: 24
202.155.134.0/24 maxlen: 24
202.155.136.0/24 maxlen: 24
202.155.137.0/24 maxlen: 24
202.155.138.0/24 maxlen: 24
202.155.139.0/24 maxlen: 24
202.155.140.0/22 maxlen: 22
202.155.140.0/23 maxlen: 23
202.155.140.0/24 maxlen: 24
202.155.142.0/24 maxlen: 24
202.155.143.0/24 maxlen: 24
202.155.146.0/23 maxlen: 23
202.155.147.0/24 maxlen: 24
202.155.148.0/23 maxlen: 23
202.155.148.0/24 maxlen: 24
202.155.150.0/23 maxlen: 24
202.155.152.0/22 maxlen: 22
202.155.152.0/24 maxlen: 24
202.155.155.0/24 maxlen: 24
202.155.156.0/24 maxlen: 24
202.155.157.0/24 maxlen: 24
202.155.158.0/23 maxlen: 23
202.155.158.0/24 maxlen: 24
2001:e00::/31 maxlen: 32
2001:e00:25::/49 maxlen: 49
2001:e00:26::/49 maxlen: 49
2001:e00:100:8000::/49 maxlen: 49
2001:e00:1005::/48 maxlen: 48
2001:e00:10e4:8400::/56 maxlen: 56
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9153457/4C1A034C1D7B11E2BE3DA6C808B02CD2/aw5C2IWeCxzeVBV6y412BK0_8bM.crl
rsync://rpki.apnic.net/member_repository/A9153457/4C1A034C1D7B11E2BE3DA6C808B02CD2/aw5C2IWeCxzeVBV6y412BK0_8bM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aw5C2IWeCxzeVBV6y412BK0_8bM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 07 Jun 2024 14:22:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13468 (0x349c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9153457/serialNumber=6B0E42D8859E0B1CDE54157ACB8D7604AD3FF1B3
Validity
Not Before: May 30 14:50:21 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6658922d-45b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:01:26:5b:29:ad:8b:8c:70:d2:55:4e:c9:d1:
41:ad:df:1b:6e:a4:10:8e:e2:e9:a3:a7:f0:f6:d8:
75:11:d8:69:11:2e:59:f8:3f:60:64:b5:d1:b8:3a:
af:02:66:3b:71:90:49:ff:21:b0:fc:7a:9c:a6:a1:
a8:8f:d6:58:e6:4b:69:ac:99:82:5b:4e:22:2c:f5:
a6:96:1a:f3:30:34:cc:e3:0b:72:13:3d:e8:c7:96:
9a:d0:f2:b1:47:26:4c:2a:fe:ef:12:44:0f:0d:a2:
e8:c4:f2:7d:df:3f:26:26:39:e6:f4:aa:35:68:3e:
ce:ac:4d:37:b4:c6:9b:fb:74:f5:f7:3f:7d:d2:31:
2e:7d:88:0d:84:5a:e5:ae:c1:ac:2b:d5:28:aa:72:
1a:86:50:30:b2:1b:b9:62:b3:06:f6:63:bf:3d:9f:
61:52:24:fe:d9:1f:dc:d5:ce:25:89:d5:a3:0d:2f:
13:cf:ef:65:57:7f:6e:6f:6c:61:ed:87:23:14:6f:
47:f5:41:b2:7e:ca:05:c3:60:af:e5:4c:30:2e:9a:
95:d3:49:7c:4a:89:af:bf:2b:2d:39:9d:73:07:7f:
f2:37:95:c0:01:4c:9f:02:12:26:07:94:d0:b3:0b:
d6:54:5f:19:66:ad:42:00:9a:cb:e2:5c:1e:87:5c:
16:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:45:93:88:20:A3:3E:75:55:D9:BD:D6:62:6F:89:90:C1:80:59:40
X509v3 Authority Key Identifier:
keyid:6B:0E:42:D8:85:9E:0B:1C:DE:54:15:7A:CB:8D:76:04:AD:3F:F1:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9153457/4C1A034C1D7B11E2BE3DA6C808B02CD2/aw5C2IWeCxzeVBV6y412BK0_8bM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aw5C2IWeCxzeVBV6y412BK0_8bM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153457/4C1A034C1D7B11E2BE3DA6C808B02CD2/6660F0B422C311EDA0AD9A5FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.155.0.0-202.155.159.255
IPv6:
2001:e00::/31
Signature Algorithm: sha256WithRSAEncryption
63:82:a7:71:74:56:ff:92:76:9f:2f:27:81:d6:5a:bc:35:38:
68:d3:19:0d:67:94:eb:88:37:51:e9:c6:e1:43:85:00:a9:3f:
a9:4e:6d:d9:aa:4c:b9:b6:7a:5f:e1:80:39:df:45:77:a6:d2:
a6:c3:5f:11:7a:9e:7d:ba:0e:4a:63:81:8e:b8:cc:c3:ba:78:
60:1b:cc:14:02:5b:fc:2f:05:0c:82:4d:30:27:26:19:f7:75:
53:81:8b:3f:05:fd:73:fa:32:e1:51:8a:6a:67:9d:45:39:1b:
de:12:89:d2:b0:c9:96:82:78:9e:57:9c:c7:3c:9f:59:ea:b8:
22:1d:45:e6:be:4d:ca:cb:d9:2c:f4:16:5d:a1:7d:33:f4:02:
a9:65:dd:18:fd:09:43:16:11:17:ab:1c:11:85:bb:5b:f2:a5:
6a:37:b0:76:b9:e5:0d:8b:8e:66:eb:34:15:6d:25:3d:e0:0e:
b7:c4:57:2f:19:42:4a:2b:ef:b2:9f:83:44:8e:ca:50:62:bd:
93:2f:2e:56:f0:f4:34:c5:22:4d:94:1b:27:9c:ef:a8:27:30:
02:9e:53:48:e9:4f:72:fa:63:82:19:0a:d5:dd:cc:4e:94:5f:
16:fa:b5:8f:ca:83:0e:fd:cd:74:27:6f:09:8d:b8:75:b7:e6:
52:00:3a:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 15:08:09 2024 by rpki-client on console-fra.rpki-client.org