Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/07E2991C5C4111EEAC516412C4F9AE02.roa
File: 07E2991C5C4111EEAC516412C4F9AE02.roa (raw, json)
Hash identifier: nI2ZsM59Px4SQblc5h5oEmRuV4T1x/U6pxH/QhUygCU=
Subject key identifier: BC:D9:B1:6B:0C:E4:C1:16:50:16:DE:02:4F:04:E4:AC:A6:F4:6F:C0
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 94F7
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/07E2991C5C4111EEAC516412C4F9AE02.roa
Signing time: Mon 22 Jul 2024 06:48:57 +0000
ROA not before: Mon 22 Jul 2024 06:48:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 45916
IP address blocks: 14.192.28.0/22 maxlen: 24
27.116.48.0/21 maxlen: 24
27.121.100.0/22 maxlen: 24
43.224.0.0/22 maxlen: 24
43.224.8.0/22 maxlen: 24
43.230.212.0/22 maxlen: 24
43.231.56.0/23 maxlen: 24
43.231.58.0/24 maxlen: 24
43.231.59.0/24 maxlen: 24
43.239.200.0/22 maxlen: 22
43.239.200.0/24 maxlen: 24
43.239.201.0/24 maxlen: 24
43.239.202.0/24 maxlen: 24
43.239.203.0/24 maxlen: 24
43.241.140.0/22 maxlen: 24
43.241.144.0/22 maxlen: 24
43.241.192.0/22 maxlen: 24
43.242.116.0/22 maxlen: 24
43.242.120.0/22 maxlen: 24
43.243.36.0/22 maxlen: 24
43.248.32.0/22 maxlen: 24
43.249.216.0/22 maxlen: 24
43.249.228.0/22 maxlen: 24
43.249.232.0/22 maxlen: 24
43.250.156.0/22 maxlen: 24
43.250.164.0/22 maxlen: 24
43.251.72.0/22 maxlen: 24
43.251.220.0/22 maxlen: 24
43.252.196.0/24 maxlen: 24
43.252.197.0/24 maxlen: 24
43.252.198.0/24 maxlen: 24
43.252.199.0/24 maxlen: 24
103.1.100.0/22 maxlen: 24
103.15.60.0/22 maxlen: 24
103.21.160.0/22 maxlen: 24
103.36.80.0/22 maxlen: 24
103.38.204.0/22 maxlen: 24
103.39.128.0/22 maxlen: 24
103.44.18.0/24 maxlen: 24
103.50.148.0/24 maxlen: 24
103.50.150.0/24 maxlen: 24
103.50.151.0/24 maxlen: 24
103.81.92.0/22 maxlen: 24
103.84.104.0/23 maxlen: 24
103.84.198.0/23 maxlen: 24
103.85.8.0/22 maxlen: 24
103.86.16.0/22 maxlen: 24
103.94.192.0/22 maxlen: 22
103.94.192.0/24 maxlen: 24
103.94.193.0/24 maxlen: 24
103.94.194.0/24 maxlen: 24
103.94.195.0/24 maxlen: 24
103.95.164.0/22 maxlen: 24
103.161.98.0/23 maxlen: 24
103.175.182.0/23 maxlen: 24
103.176.10.0/23 maxlen: 24
103.182.162.0/24 maxlen: 24
103.206.136.0/22 maxlen: 24
103.209.64.0/22 maxlen: 24
103.216.80.0/22 maxlen: 24
103.226.184.0/22 maxlen: 24
103.228.144.0/22 maxlen: 24
103.232.128.0/22 maxlen: 22
103.232.128.0/24 maxlen: 24
103.232.129.0/24 maxlen: 24
103.232.130.0/24 maxlen: 24
103.232.131.0/24 maxlen: 24
103.238.104.0/22 maxlen: 24
103.238.108.0/22 maxlen: 24
103.240.76.0/22 maxlen: 24
103.240.160.0/22 maxlen: 24
103.240.168.0/22 maxlen: 24
103.240.204.0/22 maxlen: 24
103.240.208.0/22 maxlen: 24
103.241.44.0/22 maxlen: 24
103.241.224.0/22 maxlen: 24
103.245.196.0/22 maxlen: 24
103.246.84.0/24 maxlen: 24
103.246.85.0/24 maxlen: 24
103.246.86.0/24 maxlen: 24
103.246.87.0/24 maxlen: 24
103.249.232.0/22 maxlen: 24
103.250.136.0/22 maxlen: 24
103.250.144.0/22 maxlen: 24
103.250.148.0/22 maxlen: 24
103.250.152.0/22 maxlen: 24
103.250.156.0/22 maxlen: 24
103.250.160.0/22 maxlen: 24
103.250.164.0/22 maxlen: 24
103.250.188.0/22 maxlen: 24
103.251.16.0/22 maxlen: 24
103.251.56.0/22 maxlen: 24
103.251.212.0/22 maxlen: 24
103.251.216.0/22 maxlen: 24
103.251.224.0/22 maxlen: 24
113.20.16.0/22 maxlen: 24
150.107.188.0/22 maxlen: 24
150.107.232.0/22 maxlen: 24
150.107.240.0/22 maxlen: 24
150.107.252.0/22 maxlen: 24
150.129.52.0/23 maxlen: 24
150.129.54.0/23 maxlen: 24
150.129.104.0/22 maxlen: 24
150.129.112.0/22 maxlen: 24
150.129.148.0/22 maxlen: 24
150.129.164.0/22 maxlen: 24
150.129.168.0/22 maxlen: 24
150.129.200.0/22 maxlen: 24
150.129.204.0/22 maxlen: 24
157.119.204.0/22 maxlen: 24
163.53.176.0/22 maxlen: 24
163.53.208.0/22 maxlen: 24
182.237.8.0/22 maxlen: 24
182.237.12.0/22 maxlen: 24
183.182.88.0/24 maxlen: 24
183.182.89.0/24 maxlen: 24
183.182.90.0/24 maxlen: 24
183.182.91.0/24 maxlen: 24
2402:a00::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 02 Dec 2024 10:54:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38135 (0x94f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jul 22 06:48:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=669e00d9-e37b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:c4:bc:75:7c:e9:46:f0:f4:6e:2b:8e:fa:a1:
1b:0d:d1:df:88:b9:6c:71:d6:27:05:20:d6:91:5d:
4d:e5:c0:18:ff:ed:c4:f5:69:23:0d:5b:11:7b:c6:
fd:d5:ce:9f:46:bb:4e:88:69:92:15:3e:0b:60:38:
54:6d:6e:00:e2:48:7d:cd:b8:0b:8a:84:fa:5f:b7:
28:05:99:93:a7:c5:f1:c6:c9:37:4c:a8:38:97:01:
a4:85:bc:8a:8c:7a:d6:a0:2c:54:32:85:f4:cc:8a:
04:c6:32:cf:f9:f2:63:5e:ac:ad:e5:7c:61:89:08:
18:47:a5:6e:4b:8d:c5:46:e1:9c:8b:56:35:02:fb:
0c:27:11:fb:7e:d4:29:50:40:46:1c:cb:32:e3:7c:
d4:11:39:ef:73:e6:de:ea:13:b6:36:fb:61:34:f3:
1b:23:c3:94:fe:09:df:a2:d9:fe:60:8b:00:3f:ef:
25:8d:25:09:b8:b2:3e:4c:db:ce:84:b2:bb:c3:ab:
9a:40:5a:6f:ad:b8:bb:8a:44:35:5d:62:38:57:23:
ea:b8:f8:15:56:c7:0c:60:4e:a3:35:11:f3:4e:b1:
ab:a2:98:0e:70:34:90:22:1e:5b:b1:36:f0:00:f5:
31:9d:2d:74:ba:17:8a:0c:24:25:3d:cc:92:5c:39:
97:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D9:B1:6B:0C:E4:C1:16:50:16:DE:02:4F:04:E4:AC:A6:F4:6F:C0
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/07E2991C5C4111EEAC516412C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.28.0/22
27.116.48.0/21
27.121.100.0/22
43.224.0.0/22
43.224.8.0/22
43.230.212.0/22
43.231.56.0/22
43.239.200.0/22
43.241.140.0-43.241.147.255
43.241.192.0/22
43.242.116.0-43.242.123.255
43.243.36.0/22
43.248.32.0/22
43.249.216.0/22
43.249.228.0-43.249.235.255
43.250.156.0/22
43.250.164.0/22
43.251.72.0/22
43.251.220.0/22
43.252.196.0/22
103.1.100.0/22
103.15.60.0/22
103.21.160.0/22
103.36.80.0/22
103.38.204.0/22
103.39.128.0/22
103.44.18.0/24
103.50.148.0/24
103.50.150.0/23
103.81.92.0/22
103.84.104.0/23
103.84.198.0/23
103.85.8.0/22
103.86.16.0/22
103.94.192.0/22
103.95.164.0/22
103.161.98.0/23
103.175.182.0/23
103.176.10.0/23
103.182.162.0/24
103.206.136.0/22
103.209.64.0/22
103.216.80.0/22
103.226.184.0/22
103.228.144.0/22
103.232.128.0/22
103.238.104.0/21
103.240.76.0/22
103.240.160.0/22
103.240.168.0/22
103.240.204.0-103.240.211.255
103.241.44.0/22
103.241.224.0/22
103.245.196.0/22
103.246.84.0/22
103.249.232.0/22
103.250.136.0/22
103.250.144.0-103.250.167.255
103.250.188.0/22
103.251.16.0/22
103.251.56.0/22
103.251.212.0-103.251.219.255
103.251.224.0/22
113.20.16.0/22
150.107.188.0/22
150.107.232.0/22
150.107.240.0/22
150.107.252.0/22
150.129.52.0/22
150.129.104.0/22
150.129.112.0/22
150.129.148.0/22
150.129.164.0-150.129.171.255
150.129.200.0/21
157.119.204.0/22
163.53.176.0/22
163.53.208.0/22
182.237.8.0/21
183.182.88.0/22
IPv6:
2402:a00::/32
Signature Algorithm: sha256WithRSAEncryption
0f:26:58:41:85:40:6b:8c:75:2c:84:3e:f3:a3:e1:af:b1:be:
67:f8:3b:32:38:94:d9:4b:5d:b6:1e:c1:20:4a:6e:01:88:5e:
5e:79:9f:1e:a0:c2:34:97:d6:78:c5:90:06:cf:2b:f5:1e:02:
14:b7:c1:07:dc:94:a4:85:96:2e:ef:01:82:35:ef:65:d0:00:
bb:68:2b:6f:c5:12:fb:87:de:01:de:df:86:70:c9:1b:4f:bf:
44:88:15:d8:c2:8d:89:de:02:8d:bb:76:f9:56:26:46:ad:55:
19:b0:74:59:90:9c:3b:cf:5a:ef:40:1d:9b:28:a7:ca:c7:e7:
6f:0b:2b:df:9f:5c:af:ab:67:86:29:0f:ba:11:76:05:7f:57:
dd:85:0f:a5:42:c8:71:49:07:e6:a6:ca:0e:4a:c5:d8:bf:37:
3f:99:64:47:1e:09:f4:da:c8:d4:94:62:be:d7:e7:9a:19:14:
61:03:c3:31:0f:59:ac:61:14:8e:67:d3:7c:52:96:21:01:86:
73:e1:2e:93:e1:a2:6d:8e:82:55:94:46:11:f6:ce:22:2d:56:
7b:f9:be:73:81:9f:93:f3:1b:68:9a:3e:ec:04:04:6b:82:da:
d0:fa:26:18:55:92:2c:a2:a9:d9:f0:b1:18:cc:ef:e1:ee:0f:
8a:64:f2:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 13:17:02 2024 by rpki-client on console-ams.rpki-client.org