Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/02DB5704B0F211E58974874FC4F9AE02.roa
File: 02DB5704B0F211E58974874FC4F9AE02.roa (raw, json)
Hash identifier: BFYejeG5zuQmOddj66ls1RY8KbJS0CKWjVPal4XkDVI=
Subject key identifier: 04:B3:BF:D9:A4:62:21:28:69:07:50:92:CE:E4:E8:D4:B6:C2:7D:2D
Certificate issuer: /CN=A9186C66/serialNumber=3B0BC55650AA46B178B3E17423000BD981CA6736
Certificate serial: 2503
Authority key identifier: 3B:0B:C5:56:50:AA:46:B1:78:B3:E1:74:23:00:0B:D9:81:CA:67:36
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OwvFVlCqRrF4s-F0IwAL2YHKZzY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/02DB5704B0F211E58974874FC4F9AE02.roa
Signing time: Thu 30 Nov 2023 16:22:32 +0000
ROA not before: Thu 30 Nov 2023 16:22:32 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 55828
IP address blocks: 45.115.112.0/22 maxlen: 22
45.115.112.0/24 maxlen: 24
45.115.113.0/24 maxlen: 24
45.115.114.0/24 maxlen: 24
45.115.115.0/24 maxlen: 24
103.10.52.0/22 maxlen: 22
103.10.52.0/24 maxlen: 24
103.10.53.0/24 maxlen: 24
103.10.54.0/24 maxlen: 24
103.10.55.0/24 maxlen: 24
121.200.60.0/22 maxlen: 22
121.200.60.0/24 maxlen: 24
121.200.61.0/24 maxlen: 24
121.200.62.0/24 maxlen: 24
121.200.63.0/24 maxlen: 24
2401:3300::/32 maxlen: 32
2401:3300::/33 maxlen: 33
2401:3300::/34 maxlen: 34
2401:3300::/35 maxlen: 35
2401:3300::/36 maxlen: 36
2401:3300::/37 maxlen: 37
2401:3300::/38 maxlen: 38
2401:3300::/39 maxlen: 39
2401:3300::/40 maxlen: 40
2401:3300::/41 maxlen: 41
2401:3300::/42 maxlen: 42
2401:3300::/43 maxlen: 43
2401:3300::/44 maxlen: 44
2401:3300::/45 maxlen: 45
2401:3300::/46 maxlen: 46
2401:3300::/47 maxlen: 47
2401:3300::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.crl
rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OwvFVlCqRrF4s-F0IwAL2YHKZzY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 15:22:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9475 (0x2503)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9186C66/serialNumber=3B0BC55650AA46B178B3E17423000BD981CA6736
Validity
Not Before: Nov 30 16:22:32 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=6568b6c8-cc90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cd:58:b5:db:20:42:85:3a:04:2a:2f:33:ec:
9f:ca:a5:29:e1:bb:d3:48:4e:c4:2c:a9:11:b4:1d:
7d:df:93:9a:36:6e:bb:65:46:11:e8:02:1f:5d:69:
b9:92:7f:5d:83:bc:d5:ce:fa:a5:7a:5b:9a:93:79:
bf:8d:6b:3f:17:7a:be:1b:bd:67:18:5a:81:8e:60:
87:79:bb:2c:0d:16:1e:30:b5:f1:9a:f3:0a:38:ed:
55:25:38:f9:e9:e6:61:a5:18:e4:56:be:b3:a8:6f:
4c:a8:5f:61:f5:c7:4f:6c:d3:1c:d0:4f:d6:07:16:
c5:5d:b2:ae:16:91:b3:ad:f8:8e:10:d4:3d:10:e3:
6f:83:23:75:82:9e:44:11:54:43:74:0d:6a:65:a4:
57:fc:48:18:96:60:4c:4b:61:01:89:9f:5c:48:b4:
a1:5a:3f:35:13:a0:1c:2f:50:95:17:7f:6f:c9:2e:
85:fe:e2:9e:65:fd:3b:43:5b:ef:bb:39:8e:7b:f0:
a2:ab:7e:97:e1:93:88:a2:01:e1:4c:8f:28:94:8a:
4b:96:6d:c3:33:d0:f0:66:a0:a5:34:12:d8:76:fd:
eb:7d:5f:24:f4:9b:ce:e9:82:77:6d:80:16:c3:20:
7f:af:0b:a6:25:44:76:04:ec:cd:22:e1:75:dc:7e:
c7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B3:BF:D9:A4:62:21:28:69:07:50:92:CE:E4:E8:D4:B6:C2:7D:2D
X509v3 Authority Key Identifier:
keyid:3B:0B:C5:56:50:AA:46:B1:78:B3:E1:74:23:00:0B:D9:81:CA:67:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/OwvFVlCqRrF4s-F0IwAL2YHKZzY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OwvFVlCqRrF4s-F0IwAL2YHKZzY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186C66/8FB958FAF86B11E483167360C4F9AE02/02DB5704B0F211E58974874FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.115.112.0/22
103.10.52.0/22
121.200.60.0/22
IPv6:
2401:3300::/32
Signature Algorithm: sha256WithRSAEncryption
3d:60:28:f3:d0:3c:e7:ae:10:76:21:91:18:d6:84:7e:74:c3:
c9:81:14:24:18:c5:32:13:a1:de:55:04:55:fe:d7:8b:ca:e6:
d4:0c:a3:69:49:f6:98:31:c8:e2:84:88:b8:6a:1a:69:ac:08:
b9:af:dd:c1:f8:97:30:80:86:82:73:c0:49:8a:4f:74:1c:df:
74:e6:49:ad:ff:db:4c:c4:f7:1a:cd:cd:cd:f7:24:0b:e3:6c:
e6:20:0b:cf:5d:4b:50:b8:59:c8:4d:c2:e8:9a:35:37:8a:d1:
91:ba:92:1b:d6:eb:b0:b0:c9:bd:0e:34:fb:7b:00:47:2a:2c:
5a:c4:df:e6:89:f8:a7:fd:95:5e:2e:57:78:64:f2:c2:0c:16:
51:9c:70:51:88:69:69:3b:64:72:32:28:63:2d:7e:8f:8c:d4:
ad:94:40:91:2a:1d:4d:7c:9f:2e:e7:0e:af:f8:c2:8c:eb:46:
81:d5:66:1c:20:dd:a8:b9:5e:39:b9:6c:75:68:11:b1:49:20:
43:e5:6d:dc:d3:37:ce:91:aa:95:3d:f3:81:40:79:b9:43:bd:
c1:ee:56:69:21:d0:26:8d:28:e5:6b:20:69:1f:3c:f1:ff:b2:
04:ef:f9:c9:0d:75:f3:c9:52:82:c0:52:9f:27:3d:c5:fc:bd:
cc:6d:ab:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:49:23 2024 by rpki-client on console-ams.rpki-client.org