Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/19CCFBDE6F0911ED8A7BD268C4F9AE02.roa
File: 19CCFBDE6F0911ED8A7BD268C4F9AE02.roa (raw, json)
Hash identifier: 6TD9TTdsMANI5nAhx01eA8JgpsZJqBjM2f5G8LjyNbE=
Subject key identifier: 17:0C:C5:E9:84:E6:74:DE:18:22:B3:7F:A6:7A:04:BB:B8:49:55:71
Certificate issuer: /CN=A917FFB0/serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2
Certificate serial: 33DB
Authority key identifier: 13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/19CCFBDE6F0911ED8A7BD268C4F9AE02.roa
Signing time: Thu 30 Nov 2023 06:46:53 +0000
ROA not before: Thu 30 Nov 2023 06:46:53 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 38264
IP address blocks: 58.27.128.0/17 maxlen: 17
58.27.128.0/24 maxlen: 24
58.27.129.0/24 maxlen: 24
58.27.130.0/24 maxlen: 24
58.27.131.0/24 maxlen: 24
58.27.132.0/22 maxlen: 22
58.27.132.0/24 maxlen: 24
58.27.133.0/24 maxlen: 24
58.27.134.0/24 maxlen: 24
58.27.135.0/24 maxlen: 24
58.27.136.0/22 maxlen: 22
58.27.140.0/24 maxlen: 24
58.27.141.0/24 maxlen: 24
58.27.142.0/24 maxlen: 24
58.27.144.0/22 maxlen: 23
58.27.144.0/23 maxlen: 24
58.27.148.0/22 maxlen: 22
58.27.148.0/24 maxlen: 24
58.27.149.0/24 maxlen: 24
58.27.150.0/23 maxlen: 23
58.27.152.0/21 maxlen: 22
58.27.152.0/22 maxlen: 23
58.27.156.0/24 maxlen: 24
58.27.157.0/24 maxlen: 24
58.27.158.0/24 maxlen: 24
58.27.159.0/24 maxlen: 24
58.27.160.0/21 maxlen: 22
58.27.160.0/24 maxlen: 24
58.27.164.0/24 maxlen: 24
58.27.168.0/21 maxlen: 22
58.27.168.0/23 maxlen: 23
58.27.170.0/24 maxlen: 24
58.27.171.0/24 maxlen: 24
58.27.172.0/24 maxlen: 24
58.27.176.0/20 maxlen: 20
58.27.184.0/22 maxlen: 22
58.27.188.0/24 maxlen: 24
58.27.189.0/24 maxlen: 24
58.27.190.0/24 maxlen: 24
58.27.192.0/19 maxlen: 19
58.27.192.0/21 maxlen: 21
58.27.192.0/24 maxlen: 24
58.27.193.0/24 maxlen: 24
58.27.194.0/23 maxlen: 23
58.27.195.0/24 maxlen: 24
58.27.196.0/23 maxlen: 24
58.27.198.0/24 maxlen: 24
58.27.199.0/24 maxlen: 24
58.27.200.0/22 maxlen: 22
58.27.200.0/24 maxlen: 24
58.27.201.0/24 maxlen: 24
58.27.202.0/24 maxlen: 24
58.27.203.0/24 maxlen: 24
58.27.204.0/22 maxlen: 22
58.27.204.0/24 maxlen: 24
58.27.205.0/24 maxlen: 24
58.27.206.0/24 maxlen: 24
58.27.207.0/24 maxlen: 24
58.27.208.0/20 maxlen: 20
58.27.208.0/22 maxlen: 22
58.27.208.0/24 maxlen: 24
58.27.209.0/24 maxlen: 24
58.27.210.0/24 maxlen: 24
58.27.211.0/24 maxlen: 24
58.27.212.0/22 maxlen: 22
58.27.212.0/24 maxlen: 24
58.27.215.0/24 maxlen: 24
58.27.216.0/24 maxlen: 24
58.27.217.0/24 maxlen: 24
58.27.218.0/24 maxlen: 24
58.27.219.0/24 maxlen: 24
58.27.220.0/24 maxlen: 24
58.27.221.0/24 maxlen: 24
58.27.222.0/24 maxlen: 24
58.27.223.0/24 maxlen: 24
58.27.224.0/19 maxlen: 19
58.27.224.0/20 maxlen: 20
58.27.224.0/24 maxlen: 24
58.27.225.0/24 maxlen: 24
58.27.226.0/24 maxlen: 24
58.27.227.0/24 maxlen: 24
58.27.228.0/24 maxlen: 24
58.27.229.0/24 maxlen: 24
58.27.230.0/24 maxlen: 24
58.27.231.0/24 maxlen: 24
58.27.232.0/21 maxlen: 21
58.27.232.0/22 maxlen: 22
58.27.232.0/24 maxlen: 24
58.27.233.0/24 maxlen: 24
58.27.234.0/24 maxlen: 24
58.27.235.0/24 maxlen: 24
58.27.236.0/23 maxlen: 24
58.27.238.0/24 maxlen: 24
58.27.239.0/24 maxlen: 24
58.27.240.0/21 maxlen: 21
58.27.240.0/24 maxlen: 24
58.27.241.0/24 maxlen: 24
58.27.242.0/24 maxlen: 24
58.27.243.0/24 maxlen: 24
58.27.244.0/24 maxlen: 24
58.27.245.0/24 maxlen: 24
58.27.246.0/24 maxlen: 24
58.27.247.0/24 maxlen: 24
58.27.248.0/22 maxlen: 22
58.27.248.0/24 maxlen: 24
58.27.249.0/24 maxlen: 24
58.27.250.0/24 maxlen: 24
58.27.251.0/24 maxlen: 24
58.27.252.0/22 maxlen: 23
58.27.255.0/24 maxlen: 24
110.36.0.0/14 maxlen: 15
110.36.0.0/18 maxlen: 24
110.36.64.0/18 maxlen: 24
110.36.128.0/18 maxlen: 24
110.36.192.0/18 maxlen: 24
110.37.0.0/18 maxlen: 24
110.37.64.0/18 maxlen: 24
110.37.128.0/18 maxlen: 24
110.37.192.0/18 maxlen: 24
110.38.0.0/16 maxlen: 19
110.38.0.0/17 maxlen: 24
110.38.128.0/18 maxlen: 24
110.38.192.0/19 maxlen: 24
110.38.224.0/20 maxlen: 24
110.39.0.0/16 maxlen: 24
2402:fd00::/32 maxlen: 32
2402:fd00:100::/44 maxlen: 44
2402:fd00:110::/48 maxlen: 48
2402:fd00:111::/48 maxlen: 48
2402:fd00:11f::/48 maxlen: 48
2402:fd00:130::/44 maxlen: 44
2402:fd00:1f0::/48 maxlen: 48
2402:fd00:300::/40 maxlen: 40
2402:fd00:4000::/40 maxlen: 40
2402:fd00:6000::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl
rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 07 Jun 2024 14:52:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13275 (0x33db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917FFB0/serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2
Validity
Not Before: Nov 30 06:46:53 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=65682fdd-8771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:45:b1:28:aa:5d:cb:f5:1c:e3:04:2e:b5:6d:
a8:a9:4d:8d:f3:d3:eb:1f:8a:4f:40:5d:94:5f:a4:
34:1a:89:39:e0:ae:25:a2:25:d0:5c:d9:d2:b0:4d:
f6:7d:b7:34:5e:6e:6b:e7:00:60:e2:fd:33:00:1b:
32:69:eb:7c:58:b5:38:38:ff:08:c7:ff:d9:5e:2b:
28:3d:51:a9:f8:8c:00:74:87:bb:49:2e:d5:bd:56:
6b:51:79:b7:25:4c:e9:20:11:e4:91:8e:f2:cb:e3:
c9:83:49:5d:ba:da:14:1f:ca:50:8f:7c:ba:d1:36:
71:e0:fd:7c:31:c0:b4:27:fc:eb:92:37:c6:be:de:
e8:86:d2:bf:d2:ae:28:2c:5f:19:9c:d0:c7:9f:10:
22:a4:db:85:4b:30:71:00:0a:10:10:09:09:32:b8:
ea:c5:18:ca:5a:19:02:fe:49:56:3b:ac:dd:dd:3d:
cc:87:fd:6d:c5:2e:cc:d9:78:20:cd:1c:02:4a:4f:
af:b4:58:da:bd:d1:cd:29:98:b0:c2:1d:c2:e5:6f:
ab:ad:74:72:47:d7:95:e7:ea:cd:2a:3e:1e:5f:8a:
7c:9a:ce:16:55:4c:d9:a9:d3:63:c0:9d:ab:96:6b:
9f:38:6e:01:9a:bb:6d:b1:33:3f:3b:37:47:8f:9b:
36:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:0C:C5:E9:84:E6:74:DE:18:22:B3:7F:A6:7A:04:BB:B8:49:55:71
X509v3 Authority Key Identifier:
keyid:13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/19CCFBDE6F0911ED8A7BD268C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
58.27.128.0/17
110.36.0.0/14
IPv6:
2402:fd00::/32
Signature Algorithm: sha256WithRSAEncryption
88:bc:f6:8f:3a:d0:62:a4:30:8c:f6:e2:90:85:e0:bb:31:c1:
90:22:2c:7d:54:5a:06:d8:87:69:10:25:ae:87:3f:d7:38:ce:
88:5c:2f:60:d8:ec:ef:02:2e:bd:6c:a6:4d:11:8e:a6:65:3e:
c3:13:75:c8:1a:d8:91:07:83:2a:ad:32:06:d0:91:9e:ea:6c:
dd:51:34:8c:48:e4:a8:9d:27:8f:59:51:f5:ec:60:18:42:64:
1b:88:de:53:64:0e:19:1e:d3:0e:55:15:db:b7:f6:33:f8:8d:
28:75:c6:1e:a4:3e:a0:a7:42:8c:80:38:e0:98:26:87:e4:ac:
26:40:9c:68:c1:d3:21:0c:13:7d:32:5b:a7:f1:d7:44:c7:af:
c0:0e:95:fc:57:e5:c2:2c:00:c5:4b:79:86:fa:40:4d:45:32:
1e:63:1d:2c:74:03:ea:73:fa:85:cf:b7:94:f5:2b:e5:b7:2f:
a2:37:d1:ca:7f:3c:72:8a:02:ab:de:da:1c:82:16:08:5f:d0:
81:27:96:71:06:8c:ed:c8:83:20:0c:6a:c9:f2:0a:55:c9:81:
a8:cd:f3:23:85:28:85:d3:7e:fe:ff:97:07:e7:20:14:84:ca:
8f:ef:1e:8e:80:b8:99:ed:8b:53:4f:d3:5d:80:92:79:e9:ea:
01:41:6f:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 17:44:25 2024 by rpki-client on console-fra.rpki-client.org