Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/19CCFBDE6F0911ED8A7BD268C4F9AE02.roa
File: 19CCFBDE6F0911ED8A7BD268C4F9AE02.roa (raw, json)
Hash identifier: JTK51f8dfP+bxciKZy6FgqfkHpvTyTd0gqBndr+pK/M=
Subject key identifier: D1:98:7C:D4:FD:82:A2:44:F2:B7:68:15:DA:6F:F0:2E:5C:F5:06:FA
Certificate issuer: /CN=A917FFB0/serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2
Certificate serial: 34A6
Authority key identifier: 13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/19CCFBDE6F0911ED8A7BD268C4F9AE02.roa
Signing time: Tue 03 Dec 2024 06:41:39 +0000
ROA not before: Tue 03 Dec 2024 06:41:39 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 38264
IP address blocks: 58.27.128.0/17 maxlen: 17
58.27.128.0/24 maxlen: 24
58.27.129.0/24 maxlen: 24
58.27.130.0/24 maxlen: 24
58.27.131.0/24 maxlen: 24
58.27.132.0/22 maxlen: 22
58.27.132.0/24 maxlen: 24
58.27.133.0/24 maxlen: 24
58.27.134.0/24 maxlen: 24
58.27.135.0/24 maxlen: 24
58.27.136.0/22 maxlen: 22
58.27.140.0/24 maxlen: 24
58.27.141.0/24 maxlen: 24
58.27.142.0/24 maxlen: 24
58.27.144.0/22 maxlen: 23
58.27.144.0/23 maxlen: 24
58.27.148.0/22 maxlen: 22
58.27.148.0/24 maxlen: 24
58.27.149.0/24 maxlen: 24
58.27.150.0/23 maxlen: 23
58.27.152.0/21 maxlen: 22
58.27.152.0/22 maxlen: 23
58.27.156.0/24 maxlen: 24
58.27.157.0/24 maxlen: 24
58.27.158.0/24 maxlen: 24
58.27.159.0/24 maxlen: 24
58.27.160.0/21 maxlen: 22
58.27.160.0/24 maxlen: 24
58.27.164.0/24 maxlen: 24
58.27.168.0/21 maxlen: 22
58.27.168.0/23 maxlen: 23
58.27.170.0/24 maxlen: 24
58.27.171.0/24 maxlen: 24
58.27.172.0/24 maxlen: 24
58.27.176.0/20 maxlen: 20
58.27.184.0/22 maxlen: 22
58.27.188.0/24 maxlen: 24
58.27.189.0/24 maxlen: 24
58.27.190.0/24 maxlen: 24
58.27.192.0/19 maxlen: 19
58.27.192.0/21 maxlen: 21
58.27.192.0/24 maxlen: 24
58.27.193.0/24 maxlen: 24
58.27.194.0/23 maxlen: 23
58.27.195.0/24 maxlen: 24
58.27.196.0/23 maxlen: 24
58.27.198.0/24 maxlen: 24
58.27.199.0/24 maxlen: 24
58.27.200.0/22 maxlen: 22
58.27.200.0/24 maxlen: 24
58.27.201.0/24 maxlen: 24
58.27.202.0/24 maxlen: 24
58.27.203.0/24 maxlen: 24
58.27.204.0/22 maxlen: 22
58.27.204.0/24 maxlen: 24
58.27.205.0/24 maxlen: 24
58.27.206.0/24 maxlen: 24
58.27.207.0/24 maxlen: 24
58.27.208.0/20 maxlen: 20
58.27.208.0/22 maxlen: 22
58.27.208.0/24 maxlen: 24
58.27.209.0/24 maxlen: 24
58.27.210.0/24 maxlen: 24
58.27.211.0/24 maxlen: 24
58.27.212.0/22 maxlen: 22
58.27.212.0/24 maxlen: 24
58.27.215.0/24 maxlen: 24
58.27.216.0/24 maxlen: 24
58.27.217.0/24 maxlen: 24
58.27.218.0/24 maxlen: 24
58.27.219.0/24 maxlen: 24
58.27.220.0/24 maxlen: 24
58.27.221.0/24 maxlen: 24
58.27.222.0/24 maxlen: 24
58.27.223.0/24 maxlen: 24
58.27.224.0/19 maxlen: 19
58.27.224.0/20 maxlen: 20
58.27.224.0/24 maxlen: 24
58.27.225.0/24 maxlen: 24
58.27.226.0/24 maxlen: 24
58.27.227.0/24 maxlen: 24
58.27.228.0/24 maxlen: 24
58.27.229.0/24 maxlen: 24
58.27.230.0/24 maxlen: 24
58.27.231.0/24 maxlen: 24
58.27.232.0/21 maxlen: 21
58.27.232.0/22 maxlen: 22
58.27.232.0/24 maxlen: 24
58.27.233.0/24 maxlen: 24
58.27.234.0/24 maxlen: 24
58.27.235.0/24 maxlen: 24
58.27.236.0/23 maxlen: 24
58.27.238.0/24 maxlen: 24
58.27.239.0/24 maxlen: 24
58.27.240.0/21 maxlen: 21
58.27.240.0/24 maxlen: 24
58.27.241.0/24 maxlen: 24
58.27.242.0/24 maxlen: 24
58.27.243.0/24 maxlen: 24
58.27.244.0/24 maxlen: 24
58.27.245.0/24 maxlen: 24
58.27.246.0/24 maxlen: 24
58.27.247.0/24 maxlen: 24
58.27.248.0/22 maxlen: 22
58.27.248.0/24 maxlen: 24
58.27.249.0/24 maxlen: 24
58.27.250.0/24 maxlen: 24
58.27.251.0/24 maxlen: 24
58.27.252.0/22 maxlen: 23
58.27.255.0/24 maxlen: 24
110.36.0.0/14 maxlen: 15
110.36.0.0/18 maxlen: 24
110.36.64.0/18 maxlen: 24
110.36.128.0/18 maxlen: 24
110.36.192.0/18 maxlen: 24
110.37.0.0/18 maxlen: 24
110.37.64.0/18 maxlen: 24
110.37.128.0/18 maxlen: 24
110.37.192.0/18 maxlen: 24
110.38.0.0/16 maxlen: 19
110.38.0.0/17 maxlen: 24
110.38.128.0/18 maxlen: 24
110.38.192.0/19 maxlen: 24
110.38.224.0/20 maxlen: 24
110.39.0.0/16 maxlen: 24
2402:fd00::/32 maxlen: 32
2402:fd00:100::/44 maxlen: 44
2402:fd00:110::/48 maxlen: 48
2402:fd00:111::/48 maxlen: 48
2402:fd00:11f::/48 maxlen: 48
2402:fd00:130::/44 maxlen: 44
2402:fd00:1e0::/44 maxlen: 44
2402:fd00:1f0::/48 maxlen: 48
2402:fd00:300::/40 maxlen: 40
2402:fd00:4000::/40 maxlen: 40
2402:fd00:6000::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl
rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 14:45:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13478 (0x34a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917FFB0
Validity
Not Before: Dec 3 06:41:39 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=674ea822-28a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7d:0e:66:1c:3a:c2:eb:13:47:15:da:a9:ac:
0e:d2:03:96:f9:24:52:d7:3c:6d:7b:c2:e8:fd:29:
84:8f:71:75:45:41:9b:41:d5:ed:23:c8:d3:f0:46:
bf:6a:69:df:66:4e:0d:f1:96:8c:bf:70:87:b9:bf:
a4:a7:76:00:cb:20:bc:00:c2:1a:20:a7:c0:07:1b:
ca:c7:2a:5c:a6:2d:7d:41:1a:a3:57:81:c8:48:2f:
c6:01:f8:27:d6:b1:e1:c7:70:7e:54:ab:91:72:35:
0d:d2:ab:e6:f4:ce:9d:6a:16:f9:92:70:28:83:45:
17:b5:fe:da:0a:b7:2c:96:ee:e9:4d:d9:42:74:a3:
3c:ad:35:1e:01:e6:ab:94:c8:e9:2a:ab:6f:6c:bb:
67:b3:cc:54:7e:4c:64:65:df:47:6e:9c:1f:24:45:
61:f8:94:c2:a4:8a:b9:b0:31:82:b5:d7:28:9e:ef:
ba:7b:52:a2:80:ed:36:c4:39:94:b2:15:08:68:91:
56:35:d9:b7:b3:2c:e6:f9:b9:3f:db:ec:3c:c4:04:
54:14:30:c7:80:9f:57:25:7c:0a:4d:ae:36:ba:9c:
73:e5:13:d6:0f:9d:7e:70:4b:5b:62:b5:41:3c:02:
9d:8a:7c:2a:42:12:6a:40:02:b2:b4:cb:93:4a:a3:
5f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:98:7C:D4:FD:82:A2:44:F2:B7:68:15:DA:6F:F0:2E:5C:F5:06:FA
X509v3 Authority Key Identifier:
keyid:13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/19CCFBDE6F0911ED8A7BD268C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
58.27.128.0/17
110.36.0.0/14
IPv6:
2402:fd00::/32
Signature Algorithm: sha256WithRSAEncryption
a8:02:24:11:f3:e1:ad:30:3d:18:0b:63:e2:c9:4e:78:d2:55:
5b:96:fd:7e:07:23:fb:d0:11:6e:49:7c:1a:3c:d1:90:7d:8c:
fa:35:f4:fb:96:68:bf:66:81:81:3f:8c:3a:88:96:8c:80:74:
2c:eb:dc:4b:a8:24:2b:4b:67:68:0b:e7:5e:36:ef:fe:2d:99:
52:89:07:10:78:24:1c:86:5d:5d:f9:1f:bb:65:0d:4a:6f:7f:
f5:54:c3:fd:3d:d6:79:e6:a0:b9:3e:9c:a9:13:dd:74:70:30:
00:f9:09:92:d5:43:8b:f2:13:3d:61:0f:7e:6d:74:43:0a:92:
36:7b:26:f8:a8:3f:14:6a:94:54:4e:90:97:21:1b:50:02:f4:
e4:f2:53:29:03:e6:35:46:69:07:d8:75:2c:41:65:03:4a:19:
54:97:b0:1d:37:4e:8e:02:b8:df:9f:10:e6:af:5e:23:c9:1b:
9d:f5:3d:e0:cb:21:35:f1:2b:35:b8:d9:79:6b:f4:73:63:12:
b4:49:ae:18:5a:29:52:7d:5e:72:87:17:44:b1:a6:fa:23:9a:
a6:68:43:10:52:2f:d0:4b:d2:ae:78:9e:f5:26:6e:70:4e:10:
ab:ed:fd:de:65:80:b3:69:26:48:90:de:2c:8c:d8:f7:54:23:
3a:4a:84:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:18:14 2025 by rpki-client