Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918AA4D/6C055824058711E3BFE57CA15911EA32/517E7D1AB0EC11E5A6934B42C4F9AE02.roa
File: 517E7D1AB0EC11E5A6934B42C4F9AE02.roa (raw, json)
Hash identifier: 6U8tdME71ZC1Ejm3sCtPW3kXe5EOVtj1Rs4wYCac8WE=
Subject key identifier: BD:D5:2D:31:8C:3A:AD:84:C2:44:0E:C1:91:0F:E2:E0:94:4A:97:D1
Certificate issuer: /CN=A918AA4D/serialNumber=D5C8F1DC94D3C3481D6C69536956A4A528D5EDC3
Certificate serial: 2EE2
Authority key identifier: D5:C8:F1:DC:94:D3:C3:48:1D:6C:69:53:69:56:A4:A5:28:D5:ED:C3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cjx3JTTw0gdbGlTaVakpSjV7cM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918AA4D/6C055824058711E3BFE57CA15911EA32/517E7D1AB0EC11E5A6934B42C4F9AE02.roa
Signing time: Mon 26 Jun 2023 16:12:26 +0000
ROA not before: Mon 26 Jun 2023 16:12:26 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 10024
IP address blocks: 27.125.196.0/22 maxlen: 22
27.125.196.0/23 maxlen: 23
27.125.196.0/24 maxlen: 24
27.125.197.0/24 maxlen: 24
27.125.198.0/23 maxlen: 23
27.125.198.0/24 maxlen: 24
27.125.199.0/24 maxlen: 24
43.245.16.0/22 maxlen: 22
43.245.16.0/23 maxlen: 23
43.245.16.0/24 maxlen: 24
43.245.17.0/24 maxlen: 24
43.245.18.0/23 maxlen: 23
43.245.18.0/24 maxlen: 24
43.245.19.0/24 maxlen: 24
103.3.200.0/22 maxlen: 22
103.3.200.0/23 maxlen: 23
103.3.200.0/24 maxlen: 24
103.3.201.0/24 maxlen: 24
103.3.202.0/23 maxlen: 23
103.3.202.0/24 maxlen: 24
103.3.203.0/24 maxlen: 24
119.75.192.0/20 maxlen: 20
119.75.192.0/23 maxlen: 23
119.75.192.0/24 maxlen: 24
119.75.193.0/24 maxlen: 24
119.75.194.0/23 maxlen: 23
119.75.194.0/24 maxlen: 24
119.75.195.0/24 maxlen: 24
119.75.196.0/23 maxlen: 23
119.75.196.0/24 maxlen: 24
119.75.197.0/24 maxlen: 24
119.75.198.0/23 maxlen: 23
119.75.198.0/24 maxlen: 24
119.75.199.0/24 maxlen: 24
119.75.200.0/23 maxlen: 23
119.75.200.0/24 maxlen: 24
119.75.201.0/24 maxlen: 24
119.75.202.0/23 maxlen: 23
119.75.202.0/24 maxlen: 24
119.75.203.0/24 maxlen: 24
119.75.204.0/23 maxlen: 23
119.75.204.0/24 maxlen: 24
119.75.205.0/24 maxlen: 24
119.75.206.0/23 maxlen: 23
119.75.206.0/24 maxlen: 24
119.75.207.0/24 maxlen: 24
203.92.64.0/18 maxlen: 18
203.92.64.0/23 maxlen: 23
203.92.64.0/24 maxlen: 24
203.92.65.0/24 maxlen: 24
203.92.66.0/23 maxlen: 23
203.92.66.0/24 maxlen: 24
203.92.67.0/24 maxlen: 24
203.92.68.0/23 maxlen: 23
203.92.68.0/24 maxlen: 24
203.92.69.0/24 maxlen: 24
203.92.70.0/23 maxlen: 23
203.92.70.0/24 maxlen: 24
203.92.71.0/24 maxlen: 24
203.92.72.0/23 maxlen: 23
203.92.72.0/24 maxlen: 24
203.92.73.0/24 maxlen: 24
203.92.74.0/23 maxlen: 23
203.92.74.0/24 maxlen: 24
203.92.75.0/24 maxlen: 24
203.92.76.0/23 maxlen: 23
203.92.76.0/24 maxlen: 24
203.92.77.0/24 maxlen: 24
203.92.78.0/23 maxlen: 23
203.92.78.0/24 maxlen: 24
203.92.79.0/24 maxlen: 24
203.92.80.0/23 maxlen: 23
203.92.80.0/24 maxlen: 24
203.92.81.0/24 maxlen: 24
203.92.82.0/23 maxlen: 23
203.92.82.0/24 maxlen: 24
203.92.83.0/24 maxlen: 24
203.92.84.0/23 maxlen: 23
203.92.84.0/24 maxlen: 24
203.92.85.0/24 maxlen: 24
203.92.86.0/23 maxlen: 23
203.92.86.0/24 maxlen: 24
203.92.87.0/24 maxlen: 24
203.92.88.0/23 maxlen: 23
203.92.88.0/24 maxlen: 24
203.92.89.0/24 maxlen: 24
203.92.90.0/23 maxlen: 23
203.92.90.0/24 maxlen: 24
203.92.91.0/24 maxlen: 24
203.92.92.0/23 maxlen: 23
203.92.92.0/24 maxlen: 24
203.92.93.0/24 maxlen: 24
203.92.94.0/23 maxlen: 23
203.92.94.0/24 maxlen: 24
203.92.95.0/24 maxlen: 24
203.92.96.0/23 maxlen: 23
203.92.96.0/24 maxlen: 24
203.92.97.0/24 maxlen: 24
203.92.98.0/23 maxlen: 23
203.92.98.0/24 maxlen: 24
203.92.99.0/24 maxlen: 24
203.92.100.0/23 maxlen: 23
203.92.100.0/24 maxlen: 24
203.92.101.0/24 maxlen: 24
203.92.102.0/23 maxlen: 23
203.92.102.0/24 maxlen: 24
203.92.103.0/24 maxlen: 24
203.92.104.0/23 maxlen: 23
203.92.104.0/24 maxlen: 24
203.92.105.0/24 maxlen: 24
203.92.106.0/23 maxlen: 23
203.92.106.0/24 maxlen: 24
203.92.107.0/24 maxlen: 24
203.92.108.0/23 maxlen: 23
203.92.108.0/24 maxlen: 24
203.92.109.0/24 maxlen: 24
203.92.110.0/23 maxlen: 23
203.92.110.0/24 maxlen: 24
203.92.111.0/24 maxlen: 24
203.92.112.0/23 maxlen: 23
203.92.112.0/24 maxlen: 24
203.92.113.0/24 maxlen: 24
203.92.114.0/23 maxlen: 23
203.92.114.0/24 maxlen: 24
203.92.115.0/24 maxlen: 24
203.92.116.0/23 maxlen: 23
203.92.116.0/24 maxlen: 24
203.92.117.0/24 maxlen: 24
203.92.118.0/23 maxlen: 23
203.92.118.0/24 maxlen: 24
203.92.119.0/24 maxlen: 24
203.92.120.0/23 maxlen: 23
203.92.120.0/24 maxlen: 24
203.92.121.0/24 maxlen: 24
203.92.122.0/23 maxlen: 23
203.92.122.0/24 maxlen: 24
203.92.123.0/24 maxlen: 24
203.92.124.0/23 maxlen: 23
203.92.124.0/24 maxlen: 24
203.92.125.0/24 maxlen: 24
203.92.126.0/23 maxlen: 23
203.92.126.0/24 maxlen: 24
203.92.127.0/24 maxlen: 24
2406:a400::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918AA4D/6C055824058711E3BFE57CA15911EA32/1cjx3JTTw0gdbGlTaVakpSjV7cM.crl
rsync://rpki.apnic.net/member_repository/A918AA4D/6C055824058711E3BFE57CA15911EA32/1cjx3JTTw0gdbGlTaVakpSjV7cM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cjx3JTTw0gdbGlTaVakpSjV7cM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 13 Jun 2024 15:50:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12002 (0x2ee2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918AA4D/serialNumber=D5C8F1DC94D3C3481D6C69536956A4A528D5EDC3
Validity
Not Before: Jun 26 16:12:26 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=6499b8ea-bf5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:22:9f:a7:56:54:7e:00:bc:71:e9:a5:93:c7:
4e:d8:df:d6:f6:5a:27:b9:5b:8d:72:11:f0:ad:fd:
17:81:f0:75:ff:46:69:0b:21:36:2a:a0:71:e8:7c:
03:10:51:2d:d2:1c:a1:81:aa:2d:5d:77:1c:7d:52:
ce:7a:a5:aa:ff:67:50:ca:07:26:cb:c3:ff:e5:83:
bf:db:6b:ce:7c:be:9e:a6:42:16:c3:77:c4:5e:d6:
4c:f0:e3:c1:76:ad:56:14:63:1c:dc:95:f8:2e:96:
47:ed:d0:2d:58:64:e7:ae:d2:60:61:f5:ad:90:7e:
52:09:80:89:9f:db:09:ce:b6:0b:9d:cf:af:1d:32:
33:c0:6a:6b:56:c3:0d:ff:bb:2a:a9:db:e1:23:68:
2b:ae:98:90:a4:f2:c8:d8:23:90:9d:fa:04:e8:01:
11:ad:36:ae:7a:bd:29:5c:26:36:b7:d4:76:1f:e2:
59:dd:ad:a4:9b:58:4c:24:95:bf:8a:f0:38:e2:f0:
65:7c:d0:be:e7:89:c3:2e:7d:30:6c:3b:aa:2e:79:
57:83:d8:1c:dd:6d:53:80:1d:ab:7e:bb:f8:81:fb:
4b:68:25:99:d1:4f:e2:ae:d1:94:4f:ef:56:20:a0:
2a:ba:93:a1:65:d3:b9:ce:15:25:7e:fd:7f:05:84:
49:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D5:2D:31:8C:3A:AD:84:C2:44:0E:C1:91:0F:E2:E0:94:4A:97:D1
X509v3 Authority Key Identifier:
keyid:D5:C8:F1:DC:94:D3:C3:48:1D:6C:69:53:69:56:A4:A5:28:D5:ED:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918AA4D/6C055824058711E3BFE57CA15911EA32/1cjx3JTTw0gdbGlTaVakpSjV7cM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cjx3JTTw0gdbGlTaVakpSjV7cM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AA4D/6C055824058711E3BFE57CA15911EA32/517E7D1AB0EC11E5A6934B42C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.125.196.0/22
43.245.16.0/22
103.3.200.0/22
119.75.192.0/20
203.92.64.0/18
IPv6:
2406:a400::/32
Signature Algorithm: sha256WithRSAEncryption
a2:f2:a7:43:56:b5:69:17:32:dd:d3:1d:6b:61:09:41:6c:68:
ee:35:85:52:fb:f1:4c:40:13:7a:d2:d7:90:c5:36:a6:d5:49:
be:0d:fe:25:fd:a3:a3:93:28:78:04:a2:be:af:f1:aa:b0:25:
63:69:17:a3:05:d1:e9:20:61:1c:94:db:44:72:36:de:7d:96:
d4:bf:48:ab:4d:db:37:a6:b4:52:6c:54:5d:73:ba:b4:17:df:
4b:00:ff:b1:8a:6c:87:7e:93:b8:ad:bc:3e:0b:07:5c:69:11:
70:05:41:aa:bb:88:b5:3c:a1:0a:27:76:fb:e2:72:70:f0:a1:
94:c7:d4:c9:06:8a:23:e2:6d:79:dd:13:0d:74:c7:77:f7:19:
fd:eb:6b:94:c7:42:2e:d6:f9:95:8d:d0:98:01:38:37:f5:94:
f6:d4:70:d2:9d:41:08:18:38:57:27:f9:1e:d4:76:51:2d:65:
1f:af:bc:c8:d3:94:30:62:4e:62:b4:77:82:59:64:c0:6d:03:
dd:b8:96:88:88:82:29:3b:c8:72:41:6c:54:87:f1:10:90:81:
b3:46:9a:a5:db:38:b1:22:b2:de:d0:9b:ac:73:95:34:ff:b2:
48:88:8d:14:8a:f1:b1:36:57:11:df:1a:c7:e6:45:d0:9d:c4:
b7:8f:2f:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 21:10:49 2024 by rpki-client on console-ams.rpki-client.org