Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/639394F4B05611EF95B2931BC4F9AE02.roa
File: 639394F4B05611EF95B2931BC4F9AE02.roa (raw, json)
Hash identifier: C08kfFB3sbHdAzC9hLJnr0tm+lqFd1yHsi8+zNn8y4s=
Subject key identifier: AD:FB:FA:CC:E7:7C:21:97:B3:11:B5:0F:43:26:7C:20:A6:FF:C7:D2
Certificate issuer: /CN=A9161613/serialNumber=09FC077F33E3AD67BF147755167A3AD4EACB1E7C
Certificate serial: 05A4
Authority key identifier: 09:FC:07:7F:33:E3:AD:67:BF:14:77:55:16:7A:3A:D4:EA:CB:1E:7C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/639394F4B05611EF95B2931BC4F9AE02.roa
Signing time: Thu 12 Dec 2024 23:13:29 +0000
ROA not before: Thu 12 Dec 2024 23:13:29 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 131212
IP address blocks: 112.199.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.crl
rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 23:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1444 (0x5a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9161613, serialNumber=09FC077F33E3AD67BF147755167A3AD4EACB1E7C
Validity
Not Before: Dec 12 23:13:29 2024 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=675b6e19-b5ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a2:88:6f:aa:74:2f:81:c4:67:a8:c8:a4:db:
0c:90:33:e3:c0:1d:b5:56:b8:08:4d:34:12:81:a1:
8c:5d:e4:bd:65:eb:37:93:28:db:70:49:80:76:bc:
4d:b0:e6:02:ca:e2:f0:12:7f:41:94:b5:b8:8c:fa:
6e:89:80:0e:1a:ab:ad:5a:97:5d:89:f2:d9:21:e5:
13:bb:25:7c:9c:ed:c4:49:09:04:4d:18:cc:b6:9b:
6b:d3:8e:60:40:f8:6e:cd:3f:80:26:76:1e:28:23:
1a:88:ad:5e:22:27:c2:7f:d5:90:8e:79:53:4b:a1:
f0:b3:e5:6f:ed:b9:d0:04:20:0a:9a:4c:d0:97:6f:
a5:c9:e6:63:ee:54:31:cf:4c:7b:4e:84:20:8a:93:
ce:05:71:4a:43:4f:52:cd:f2:3a:a5:66:a7:69:99:
b6:81:db:f8:b6:ed:75:98:20:ed:2f:6c:97:be:b1:
bc:76:3d:54:34:bd:5f:33:68:c4:f3:d9:2f:dd:84:
78:9d:b5:1b:4a:2f:c6:70:fd:d9:35:2b:69:00:4f:
f6:09:05:85:20:46:33:1c:8c:43:03:ad:d9:46:a7:
2a:ef:7e:f7:f4:01:de:20:eb:00:48:94:db:b8:05:
84:a4:33:71:e3:bd:5f:0e:09:f8:78:bb:d6:63:6f:
fd:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:FB:FA:CC:E7:7C:21:97:B3:11:B5:0F:43:26:7C:20:A6:FF:C7:D2
X509v3 Authority Key Identifier:
keyid:09:FC:07:7F:33:E3:AD:67:BF:14:77:55:16:7A:3A:D4:EA:CB:1E:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/639394F4B05611EF95B2931BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
112.199.91.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:85:12:ae:9d:0b:83:f2:db:8e:74:7c:9a:74:fd:63:3d:fe:
95:d2:fe:ef:e8:ea:ad:29:5e:48:f3:bd:f7:50:37:59:79:28:
a8:69:f3:3f:19:08:ce:d1:1c:08:e3:ee:a3:e9:3e:ce:89:e9:
c8:7b:e4:07:db:17:a0:29:5b:2b:2a:04:7b:55:fd:39:41:1e:
7d:b0:c1:e3:bd:82:58:c1:e0:bf:3b:8a:8d:4c:40:ee:ec:4a:
b6:76:c4:c1:22:c0:29:50:6f:84:1d:01:16:c2:9f:20:2b:59:
e6:7c:f8:fc:59:4d:f3:59:51:d4:ca:62:dd:75:bb:0f:3b:e2:
c9:af:82:d4:70:39:3b:da:b0:fd:bc:a8:6c:81:60:4f:a7:97:
bf:fa:44:36:8d:99:e5:55:be:c9:60:dd:17:d1:7d:cd:8d:79:
69:c1:12:e2:8c:e1:9d:c4:ca:3d:b5:56:63:8e:9d:a2:c4:52:
85:4f:48:76:b7:83:5e:37:b9:4d:99:45:12:17:10:5b:8c:bc:
56:24:42:32:2c:ea:2b:23:9c:fe:6d:74:a9:4e:a2:3e:2b:2d:
60:a0:b1:90:8c:97:69:ee:9a:59:2a:d9:5d:59:9a:7b:49:e4:
e7:a7:97:c1:e9:7a:56:ef:03:cc:31:d2:39:b0:57:d1:f4:a4:
13:2c:56:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:47:00 2025 by rpki-client