Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/4EE07E481F7F11ECA7242F6CC4F9AE02.roa
File: 4EE07E481F7F11ECA7242F6CC4F9AE02.roa (raw, json)
Hash identifier: TA9EFDfSdd7+EEK/5RjdrLiMORuBq9ygTpVOMFIYOcU=
Subject key identifier: CE:9E:F4:78:D9:9B:D8:27:93:EE:CA:72:20:12:8C:3A:F2:6D:74:82
Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A
Certificate serial: 34D7
Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/4EE07E481F7F11ECA7242F6CC4F9AE02.roa
Signing time: Mon 22 Jul 2024 14:40:19 +0000
ROA not before: Mon 22 Jul 2024 14:40:19 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 134461
IP address blocks: 2405:a000:20::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl
rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 14:21:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13527 (0x34d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91697FA, serialNumber=9F82DBC9466312C5BA2E921279302400956A982A
Validity
Not Before: Jul 22 14:40:19 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=669e6f53-52dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e9:86:b3:2c:f4:bd:eb:aa:b2:96:a8:27:8b:
df:c0:cf:e4:41:a8:df:44:75:7c:79:6c:78:81:e8:
87:b6:c6:9a:4a:36:54:8e:e7:a3:ae:27:06:df:5d:
5a:85:cb:45:9e:99:82:4f:27:74:92:ac:65:9e:25:
ee:56:b4:3d:ee:0b:e3:d9:bd:51:e5:63:fd:94:e4:
7f:af:38:9b:56:66:c4:18:a0:d8:34:7f:99:31:2d:
cb:ba:7f:cb:7f:98:ca:f1:b5:83:d9:ea:90:3c:d3:
6d:8f:4f:75:c6:15:fc:8a:6a:fc:3f:6c:80:49:06:
b0:16:47:11:2c:1a:2d:a0:bd:2c:f3:6a:48:31:9e:
23:44:0d:00:76:5e:e9:1c:73:43:8e:39:2a:22:2b:
88:3a:08:19:d6:69:94:43:5c:84:c4:13:f7:ef:40:
9b:d1:e3:f0:51:4b:f4:f2:a9:f9:df:98:ed:81:a7:
02:5f:ac:c2:48:ee:0f:85:de:db:4e:76:2a:71:4f:
15:1c:bc:c0:b7:3f:bf:b7:3a:e4:d2:6b:a9:b7:2d:
44:6d:28:56:7b:4e:6a:3e:59:ed:48:12:4d:13:fd:
14:c4:9c:a5:91:42:b4:42:77:dc:99:b7:a2:ae:d3:
6a:eb:01:5d:07:83:62:e1:b0:ca:d8:8b:6d:85:48:
80:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:9E:F4:78:D9:9B:D8:27:93:EE:CA:72:20:12:8C:3A:F2:6D:74:82
X509v3 Authority Key Identifier:
keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/4EE07E481F7F11ECA7242F6CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a000:20::/48
Signature Algorithm: sha256WithRSAEncryption
98:70:d1:3f:77:75:9b:9e:e0:5c:50:fb:9e:08:9e:ae:4d:18:
76:7e:63:68:ec:35:c0:c9:9d:99:66:ed:56:0a:a3:44:a9:e4:
81:d1:78:d7:69:05:fd:61:f9:bd:1d:e4:5e:85:cb:bf:a3:37:
9d:ab:a5:80:49:c4:5a:2e:be:b0:cb:a2:7f:fb:fd:fd:9b:73:
d5:57:d2:62:95:39:ee:da:ac:15:3f:31:de:fc:5a:71:6f:48:
c0:93:12:80:91:3b:e3:53:c0:9e:92:13:69:5b:09:1f:7a:0f:
c4:60:c0:d2:80:96:b1:d1:da:a2:82:de:c8:0b:ba:de:7a:cd:
ef:9e:df:9d:52:30:32:db:ea:54:ed:bc:98:17:06:f4:c6:c7:
fd:01:2e:41:b9:6b:dd:9d:f4:6f:f9:9b:b4:06:27:37:d5:d3:
7e:d3:19:d0:62:59:9a:9a:55:fb:07:8d:9d:fc:f6:e6:2f:00:
88:ba:05:ea:d6:bc:96:ca:9c:8a:ed:49:80:47:ea:4e:7b:93:
3a:39:b7:a5:23:1a:ca:6d:71:55:70:ed:5b:bb:df:c0:56:80:
39:04:46:31:bc:cb:30:44:81:ed:da:f6:a4:8a:43:71:f8:22:
ce:5d:f6:b8:fe:5c:cc:71:4d:b5:be:65:40:e1:8e:7d:b3:e3:
27:56:64:68
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICNNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw
OTU2QTk4MkEwHhcNMjQwNzIyMTQ0MDE5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjllNmY1My01MmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2emGsyz0veuqspaoJ4vfwM/kQajfRHV8eWx4geiHtsaaSjZUjuejricG311a
hctFnpmCTyd0kqxlniXuVrQ97gvj2b1R5WP9lOR/rzibVmbEGKDYNH+ZMS3Lun/L
f5jK8bWD2eqQPNNtj091xhX8imr8P2yASQawFkcRLBotoL0s82pIMZ4jRA0Adl7p
HHNDjjkqIiuIOggZ1mmUQ1yExBP370Cb0ePwUUv08qn535jtgacCX6zCSO4Phd7b
TnYqcU8VHLzAtz+/tzrk0mupty1EbShWe05qPlntSBJNE/0UxJylkUK0Qnfcmbei
rtNq6wFdB4Ni4bDK2ItthUiAFQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFM6e9HjZ
m9gnk+7KciASjDrybXSCMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE
ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt
Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvNEVFMDdFNDgx
RjdGMTFFQ0E3MjQyRjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwAkBaAAACAwDQYJKoZIhvcNAQELBQADggEBAJhw0T93dZue
4FxQ+54Inq5NGHZ+Y2jsNcDJnZlm7VYKo0Sp5IHReNdpBf1h+b0d5F6Fy7+jN52r
pYBJxFouvrDLon/7/f2bc9VX0mKVOe7arBU/Md78WnFvSMCTEoCRO+NTwJ6SE2lb
CR96D8RgwNKAlrHR2qKC3sgLut56ze+e351SMDLb6lTtvJgXBvTGx/0BLkG5a92d
9G/5m7QGJzfV037TGdBiWZqaVfsHjZ389uYvAIi6BerWvJbKnIrtSYBH6k57kzo5
t6UjGsptcVVw7Vu738BWgDkERjG8yzBEge3a9qSKQ3H4Is5d9rj+XMxxTbW+ZUDh
jn2z4ydWZGg=
-----END CERTIFICATE-----
Generated at Sun Apr 13 16:25:25 2025 by rpki-client