Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/820BE5609CEE11EF9001717EC4F9AE02.roa
File: 820BE5609CEE11EF9001717EC4F9AE02.roa (raw, json)
Hash identifier: kIvT/50E2laNc1gLfjO5rKE/sWwcpe4nrifpeBT23BI=
Subject key identifier: 4F:A1:D5:FD:8E:72:D3:A9:F4:A3:62:2B:B1:7D:56:C1:72:57:CE:61
Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8
Certificate serial: 1624
Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/820BE5609CEE11EF9001717EC4F9AE02.roa
Signing time: Thu 07 Nov 2024 09:56:07 +0000
ROA not before: Thu 07 Nov 2024 09:56:07 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 134963
IP address blocks: 182.160.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl
rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 16:50:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5668 (0x1624)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8
Validity
Not Before: Nov 7 09:56:07 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=672c8eb7-4907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1d:b3:77:9b:04:90:ce:6d:a0:53:1c:06:49:
08:bb:5f:c0:1e:4a:2c:1e:c3:14:9b:86:48:03:17:
24:8c:c7:05:00:ed:40:f2:3e:78:66:47:30:7d:fe:
12:ca:d3:f5:fe:2a:7f:be:27:ed:d5:74:bd:76:7d:
3b:db:18:29:b7:24:1d:10:17:c2:0d:35:62:65:1d:
07:09:ae:bf:6b:61:17:8f:0a:a1:78:2a:e5:98:24:
0b:c3:c2:a4:11:82:57:5d:89:fb:a3:95:34:8a:8b:
31:96:35:17:2a:32:58:60:7e:84:ab:81:d4:f5:75:
f8:68:8b:d0:b9:79:ff:c2:ee:a1:00:62:43:cc:20:
4a:1c:c7:28:22:57:3c:fc:88:23:7a:d3:ff:7b:90:
73:5f:19:2e:7a:3e:91:b1:29:09:f0:a7:36:4c:da:
f0:89:a5:e1:6b:3f:4b:50:c8:55:8b:f5:5c:0a:b3:
c9:07:2d:58:7f:05:e6:ca:da:13:a1:43:c1:b4:d1:
f5:b8:4b:01:27:bf:d3:cc:25:9b:1c:98:33:ca:7b:
23:85:b2:c0:8f:dc:e9:1b:65:2a:ec:54:a6:bc:d7:
31:7c:7e:6f:68:0f:8e:08:94:b2:2d:11:d5:d6:01:
16:d7:4f:58:83:18:fb:f4:a3:fc:9e:e5:c1:be:aa:
ac:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:A1:D5:FD:8E:72:D3:A9:F4:A3:62:2B:B1:7D:56:C1:72:57:CE:61
X509v3 Authority Key Identifier:
keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/820BE5609CEE11EF9001717EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
182.160.56.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:6e:da:2f:45:92:9e:35:f5:c4:3d:89:11:cd:51:60:e4:38:
f4:f7:22:89:78:e4:2b:df:bf:d9:d9:31:b7:41:b2:ad:d6:32:
cf:80:1e:44:76:10:95:0d:92:2a:18:d9:a6:b5:10:f3:e0:12:
50:10:61:8a:82:2a:d5:c8:74:32:45:31:28:57:21:73:d2:cd:
97:fb:8e:26:74:81:61:40:f4:b1:98:3a:a5:19:83:76:cb:d0:
25:32:74:f5:da:9a:8b:da:e0:34:0e:14:ee:9c:40:52:9a:55:
aa:f4:08:15:80:ee:e4:33:56:07:38:a4:6e:f2:8d:75:3e:ed:
99:5d:62:e2:3d:0b:a9:ce:5d:d5:7b:f6:95:02:7f:1e:9d:37:
70:e8:b4:2f:28:a8:3b:e6:e0:d4:24:c1:b9:f5:1f:64:e4:f5:
09:51:f3:c7:e8:c4:c0:cc:83:55:fc:a1:65:1d:7b:ef:49:24:
12:d3:36:0e:5f:b6:15:2b:09:a3:18:d2:f6:83:2a:f2:f1:d2:
00:3d:36:1c:23:e3:43:a6:70:20:cb:c4:23:0e:76:cf:77:07:
4d:af:91:3e:f0:1c:4a:63:e9:f6:8c:3d:d6:93:3e:43:e7:f1:
4e:ac:fa:34:d1:21:38:a8:db:67:77:c0:b1:97:74:87:03:20:
da:de:0c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 15:19:57 2025 by rpki-client