Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/A0121BD4871711EA924C6626C4F9AE02.roa
File: A0121BD4871711EA924C6626C4F9AE02.roa (raw, json)
Hash identifier: 0+s+PL2T/t5/liZYenC9VRNOA7AWjKpWCtVdFdUbyQg=
Subject key identifier: 5C:87:B6:C1:D4:BE:E3:B2:1D:68:93:C6:0B:94:2F:32:9F:34:ED:A2
Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957
Certificate serial: 33AF
Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/A0121BD4871711EA924C6626C4F9AE02.roa
Signing time: Thu 25 Jan 2024 08:43:23 +0000
ROA not before: Thu 25 Jan 2024 08:43:23 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 23673
IP address blocks: 43.230.192.0/22 maxlen: 22
43.230.192.0/24 maxlen: 24
43.230.193.0/24 maxlen: 24
43.230.194.0/24 maxlen: 24
43.230.195.0/24 maxlen: 24
103.197.240.0/22 maxlen: 24
103.206.68.0/22 maxlen: 24
103.239.52.0/22 maxlen: 22
103.239.52.0/24 maxlen: 24
103.239.53.0/24 maxlen: 24
103.239.54.0/24 maxlen: 24
103.239.55.0/24 maxlen: 24
110.235.240.0/20 maxlen: 20
110.235.240.0/24 maxlen: 24
110.235.241.0/24 maxlen: 24
110.235.242.0/24 maxlen: 24
110.235.243.0/24 maxlen: 24
110.235.244.0/24 maxlen: 24
110.235.245.0/24 maxlen: 24
110.235.246.0/24 maxlen: 24
110.235.247.0/24 maxlen: 24
110.235.248.0/24 maxlen: 24
110.235.249.0/24 maxlen: 24
110.235.250.0/24 maxlen: 24
110.235.251.0/24 maxlen: 24
110.235.252.0/24 maxlen: 24
110.235.253.0/24 maxlen: 24
110.235.254.0/24 maxlen: 24
110.235.255.0/24 maxlen: 24
124.248.160.0/19 maxlen: 19
124.248.160.0/24 maxlen: 24
124.248.161.0/24 maxlen: 24
124.248.162.0/24 maxlen: 24
124.248.163.0/24 maxlen: 24
124.248.164.0/24 maxlen: 24
124.248.165.0/24 maxlen: 24
124.248.166.0/24 maxlen: 24
124.248.167.0/24 maxlen: 24
124.248.168.0/24 maxlen: 24
124.248.169.0/24 maxlen: 24
124.248.170.0/24 maxlen: 24
124.248.171.0/24 maxlen: 24
124.248.172.0/24 maxlen: 24
124.248.173.0/24 maxlen: 24
124.248.174.0/24 maxlen: 24
124.248.175.0/24 maxlen: 24
124.248.176.0/24 maxlen: 24
124.248.177.0/24 maxlen: 24
124.248.178.0/24 maxlen: 24
124.248.179.0/24 maxlen: 24
124.248.180.0/24 maxlen: 24
124.248.181.0/24 maxlen: 24
124.248.182.0/24 maxlen: 24
124.248.183.0/24 maxlen: 24
124.248.184.0/24 maxlen: 24
124.248.185.0/24 maxlen: 24
124.248.186.0/24 maxlen: 24
124.248.187.0/24 maxlen: 24
124.248.188.0/24 maxlen: 24
124.248.189.0/24 maxlen: 24
124.248.190.0/24 maxlen: 24
124.248.191.0/24 maxlen: 24
202.62.32.0/19 maxlen: 19
202.62.32.0/24 maxlen: 24
202.62.33.0/24 maxlen: 24
202.62.34.0/24 maxlen: 24
202.62.35.0/24 maxlen: 24
202.62.36.0/24 maxlen: 24
202.62.37.0/24 maxlen: 24
202.62.38.0/24 maxlen: 24
202.62.39.0/24 maxlen: 24
202.62.40.0/24 maxlen: 24
202.62.41.0/24 maxlen: 24
202.62.42.0/24 maxlen: 24
202.62.43.0/24 maxlen: 24
202.62.44.0/24 maxlen: 24
202.62.45.0/24 maxlen: 24
202.62.46.0/24 maxlen: 24
202.62.47.0/24 maxlen: 24
202.62.48.0/24 maxlen: 24
202.62.49.0/24 maxlen: 24
202.62.50.0/24 maxlen: 24
202.62.51.0/24 maxlen: 24
202.62.52.0/24 maxlen: 24
202.62.53.0/24 maxlen: 24
202.62.54.0/24 maxlen: 24
202.62.55.0/24 maxlen: 24
202.62.56.0/24 maxlen: 24
202.62.57.0/24 maxlen: 24
202.62.58.0/24 maxlen: 24
202.62.59.0/24 maxlen: 24
202.62.60.0/24 maxlen: 24
202.62.61.0/24 maxlen: 24
202.62.62.0/24 maxlen: 24
202.62.63.0/24 maxlen: 24
203.189.128.0/19 maxlen: 19
203.189.128.0/24 maxlen: 24
203.189.129.0/24 maxlen: 24
203.189.130.0/24 maxlen: 24
203.189.131.0/24 maxlen: 24
203.189.132.0/22 maxlen: 24
203.189.136.0/23 maxlen: 24
203.189.138.0/23 maxlen: 24
203.189.140.0/23 maxlen: 24
203.189.142.0/23 maxlen: 24
203.189.144.0/22 maxlen: 24
203.189.148.0/22 maxlen: 24
203.189.152.0/23 maxlen: 24
203.189.154.0/23 maxlen: 24
203.189.156.0/23 maxlen: 24
203.189.158.0/23 maxlen: 24
2402:c100::/32 maxlen: 32
2402:c100::/48 maxlen: 48
2402:c100:c00::/48 maxlen: 48
2402:c100:c01::/48 maxlen: 48
2402:c100:c02::/48 maxlen: 48
2402:c100:c000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl
rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 07 Jun 2024 14:25:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13231 (0x33af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957
Validity
Not Before: Jan 25 08:43:23 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=65b21f2b-0695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:82:c7:6e:4f:71:a5:84:75:5e:77:d9:c7:d6:
63:7f:02:b2:1d:db:5a:3f:c8:ba:b2:f8:25:bf:92:
fe:39:6d:7d:eb:db:aa:b6:59:cc:6d:74:ba:22:89:
f2:dc:5e:93:35:31:27:a1:f4:da:6b:0f:f4:27:52:
be:43:90:df:1f:00:88:26:f7:9f:80:e1:09:58:7c:
e0:b7:90:4b:80:e1:ac:ea:29:88:18:5c:bd:0e:c9:
e0:9a:73:8c:61:01:9e:c0:29:29:cb:9a:33:d1:ca:
3e:71:dc:ca:c7:9d:85:41:3b:92:7e:b8:c3:3c:2d:
83:df:c8:65:6f:3a:51:62:24:94:81:ec:25:e8:89:
f7:43:4a:80:60:2b:57:d2:50:f6:43:69:c5:44:0f:
cc:a1:b1:7c:34:3b:4a:d8:b7:35:67:d2:79:b4:72:
17:5b:b7:1a:09:90:bd:b3:ee:96:25:fc:38:07:f3:
d2:f5:8a:9c:f6:b2:bc:70:57:df:dc:90:2e:ae:90:
f2:ec:47:7e:9f:75:b7:ed:11:9e:b4:1c:fb:30:64:
3b:58:46:60:93:aa:e0:37:e4:d9:9e:37:e5:8b:fd:
10:4a:14:b7:b9:e0:30:a8:88:d8:bf:1a:e3:46:94:
4b:9f:74:3c:8a:65:f5:38:c0:7b:62:f8:7a:18:6d:
94:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:87:B6:C1:D4:BE:E3:B2:1D:68:93:C6:0B:94:2F:32:9F:34:ED:A2
X509v3 Authority Key Identifier:
keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/A0121BD4871711EA924C6626C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.230.192.0/22
103.197.240.0/22
103.206.68.0/22
103.239.52.0/22
110.235.240.0/20
124.248.160.0/19
202.62.32.0/19
203.189.128.0/19
IPv6:
2402:c100::/32
Signature Algorithm: sha256WithRSAEncryption
2b:f4:ba:a6:9a:0b:9e:c9:7d:2c:dd:92:de:c1:7b:f0:01:74:
5b:97:43:02:6d:c7:43:a8:69:cc:60:b9:f0:c9:3b:39:f8:49:
2a:5e:4a:93:f6:8b:f3:f3:7b:9b:61:13:62:79:c5:26:93:34:
b9:bf:d0:b2:12:69:2d:82:7a:e7:6c:a8:ef:8b:d0:d1:40:6d:
f0:05:8c:5a:b6:15:cd:f8:bc:63:37:d4:01:52:f1:32:98:17:
64:e7:95:33:d5:df:de:c3:75:c3:1c:2e:24:94:43:7c:f8:e9:
ae:bc:7d:36:dc:b7:63:f0:34:b9:9a:73:a7:0b:82:a2:7f:b3:
31:df:59:c6:a6:32:f5:65:f2:de:bc:ab:e9:1a:e4:3a:4b:94:
24:21:ef:11:7f:2d:97:97:46:64:7e:6a:2d:5f:66:53:93:4c:
e9:a3:b1:89:87:bb:2b:76:0f:a6:e1:bc:c7:fd:d5:09:5a:9e:
18:1b:19:eb:c6:14:19:51:f0:a9:14:c2:aa:16:72:f3:78:25:
58:d2:84:81:e8:0c:84:67:19:27:da:a3:bc:76:52:fe:44:5b:
0c:ec:b7:7e:5e:04:69:cd:28:70:d8:f7:a9:fa:8e:8b:b2:ec:
29:5b:7a:a4:1f:d9:85:b7:50:9d:cd:10:30:b8:e0:c0:fa:82:
f7:aa:41:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 16:40:57 2024 by rpki-client on console-ams.rpki-client.org