Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/EC0E245CF74211EEA182A952C4F9AE02.roa
File: EC0E245CF74211EEA182A952C4F9AE02.roa (raw, json)
Hash identifier: 8BZnHd6aGsdJmphgS32PS3wAYQMMb45rh9EbaJkomOw=
Subject key identifier: 1E:17:C3:03:76:8E:DB:AE:01:DC:D7:91:74:F4:5C:2F:FE:F1:FD:6D
Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91
Certificate serial: 195F
Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/EC0E245CF74211EEA182A952C4F9AE02.roa
Signing time: Tue 14 Jan 2025 16:34:23 +0000
ROA not before: Tue 14 Jan 2025 16:34:23 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 45758
IP address blocks: 118.214.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl
rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 16:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6495 (0x195f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915D03A
Validity
Not Before: Jan 14 16:34:23 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=6786920f-bd5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:62:0a:48:1f:48:fb:d9:c4:6c:2e:41:73:b7:
da:ce:de:97:01:61:40:51:8d:a5:4e:c2:41:68:ce:
8e:2f:16:99:96:97:c3:fc:a1:8c:2b:e6:74:4e:db:
2f:56:9a:37:e4:d2:4d:63:eb:4d:3d:32:79:96:6c:
32:5e:92:88:b3:98:28:39:1c:6f:b8:6d:3f:11:ef:
df:e3:a4:76:da:54:a2:de:93:b3:a4:35:1a:4c:72:
b1:0d:3e:42:37:57:5f:4e:c9:a0:a4:5d:9f:f2:44:
e0:66:e7:b3:54:1d:49:1d:d5:bb:86:78:59:0a:19:
55:d3:78:51:8c:91:d7:d6:d9:c7:28:b3:0b:dc:85:
87:45:32:d6:9e:87:14:03:8a:7b:47:64:1e:f7:6e:
7f:b2:8c:da:ab:26:92:58:15:d2:63:59:b7:68:b7:
8f:f5:f8:ca:b4:c6:61:9e:81:3f:bc:ab:5e:95:3a:
28:31:28:a6:3b:09:8b:e2:41:74:c7:57:d2:c2:87:
fc:cb:fa:2e:3d:74:ca:a8:c8:4b:b3:ad:22:76:9a:
60:c9:cf:7f:ce:a7:5f:0d:ae:cc:27:f1:c4:dd:ca:
bf:c1:9b:cb:c3:fd:ac:b0:76:4c:fd:dd:d2:cd:c9:
71:3d:d0:44:38:ba:a5:be:39:53:da:17:dc:a5:35:
d2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:17:C3:03:76:8E:DB:AE:01:DC:D7:91:74:F4:5C:2F:FE:F1:FD:6D
X509v3 Authority Key Identifier:
keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/EC0E245CF74211EEA182A952C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
118.214.5.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:0e:78:89:20:46:40:66:4a:35:1a:89:83:17:83:3f:a2:55:
4a:73:a5:e3:28:84:6e:0d:e5:27:51:33:1a:25:a4:9e:bd:1e:
ec:61:43:0a:90:e7:bf:cd:54:a2:f3:8d:e7:60:4c:23:b2:f7:
40:71:0c:b6:97:a8:fe:f4:33:9c:ff:fd:d9:44:e9:36:81:17:
39:a0:d6:7e:90:e6:63:d3:80:18:3f:7c:86:79:97:83:c1:41:
d5:e0:be:30:27:fc:7a:af:f0:53:38:95:d3:db:46:81:25:49:
87:c6:87:87:ac:e8:f4:1e:b8:99:41:ab:f2:de:a9:25:7e:12:
d9:c9:7e:6e:93:4c:4a:99:69:24:aa:4a:73:8c:6a:2b:d5:fc:
2f:79:1a:30:62:77:4d:38:a0:d6:b0:70:3c:9b:3e:89:f6:7a:
2e:40:89:04:5f:f4:ea:b5:70:87:fb:f6:29:fb:12:a7:3c:63:
36:4b:8e:84:be:46:4b:df:c9:59:34:3f:d0:7f:6d:e8:0d:89:
22:4c:67:77:d2:ab:48:1e:51:b5:c1:34:d4:95:60:c6:0c:ff:
ba:50:06:57:09:be:17:97:e4:3a:59:a8:78:1d:b9:0a:65:6b:
2a:e6:c0:55:c4:3a:0e:4d:b6:97:eb:a7:97:1a:a7:77:25:a7:
8f:76:ad:01
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICGV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD
NTQyQTBEOTEwHhcNMjUwMTE0MTYzNDIzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02Nzg2OTIwZi1iZDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvGIKSB9I+9nEbC5Bc7fazt6XAWFAUY2lTsJBaM6OLxaZlpfD/KGMK+Z0Ttsv
Vpo35NJNY+tNPTJ5lmwyXpKIs5goORxvuG0/Ee/f46R22lSi3pOzpDUaTHKxDT5C
N1dfTsmgpF2f8kTgZuezVB1JHdW7hnhZChlV03hRjJHX1tnHKLML3IWHRTLWnocU
A4p7R2Qe925/sozaqyaSWBXSY1m3aLeP9fjKtMZhnoE/vKtelTooMSimOwmL4kF0
x1fSwof8y/ouPXTKqMhLs60idppgyc9/zqdfDa7MJ/HE3cq/wZvLw/2ssHZM/d3S
zclxPdBEOLqlvjlT2hfcpTXSuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFB4XwwN2
jtuuAdzXkXT0XC/+8f1tMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky
NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE
WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvRUMwRTI0NUNG
NzQyMTFFRUExODJBOTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAB21gUwDQYJKoZIhvcNAQELBQADggEBAI0OeIkgRkBmSjUa
iYMXgz+iVUpzpeMohG4N5SdRMxolpJ69HuxhQwqQ57/NVKLzjedgTCOy90BxDLaX
qP70M5z//dlE6TaBFzmg1n6Q5mPTgBg/fIZ5l4PBQdXgvjAn/Hqv8FM4ldPbRoEl
SYfGh4es6PQeuJlBq/LeqSV+EtnJfm6TTEqZaSSqSnOMaivV/C95GjBid004oNaw
cDybPon2ei5AiQRf9Oq1cIf79in7Eqc8YzZLjoS+RkvfyVk0P9B/begNiSJMZ3fS
q0geUbXBNNSVYMYM/7pQBlcJvheX5DpZqHgduQplayrmwFXEOg5Ntpfrp5cap3cl
p492rQE=
-----END CERTIFICATE-----
Generated at Fri Apr 11 16:09:03 2025 by rpki-client