Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E04076471EA11ECB3503078C4F9AE02.roa
File: 1E04076471EA11ECB3503078C4F9AE02.roa (raw, json)
Hash identifier: 2K6wRejsqlf8u+RpinrxA0RErVNoqiSqhKelcA8jskw=
Subject key identifier: 34:61:6B:71:77:57:57:36:44:0B:DA:85:6B:53:9E:29:7A:38:8C:D3
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 92C5
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E04076471EA11ECB3503078C4F9AE02.roa
Signing time: Tue 18 Jun 2024 12:41:34 +0000
ROA not before: Tue 18 Jun 2024 12:41:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 132785
IP address blocks: 45.114.148.0/22 maxlen: 24
103.27.164.0/22 maxlen: 24
2001:df2:1140::/48 maxlen: 48
2401:2860::/32 maxlen: 32
2401:2860::/36 maxlen: 36
2401:2860::/40 maxlen: 40
2401:2860::/41 maxlen: 48
2401:2860:80::/44 maxlen: 44
2401:2860:90::/44 maxlen: 44
2401:2860:a0::/44 maxlen: 44
2401:2860:b0::/44 maxlen: 44
2401:2860:c0::/44 maxlen: 44
2401:2860:d0::/44 maxlen: 44
2401:2860:e0::/44 maxlen: 44
2401:2860:f0::/44 maxlen: 44
2401:2860:100::/40 maxlen: 40
2401:2860:200::/40 maxlen: 40
2401:2860:300::/40 maxlen: 40
2401:2860:400::/40 maxlen: 40
2401:2860:500::/40 maxlen: 40
2401:2860:600::/40 maxlen: 40
2401:2860:700::/40 maxlen: 40
2401:2860:800::/40 maxlen: 40
2401:2860:900::/40 maxlen: 40
2401:2860:a00::/40 maxlen: 40
2401:2860:b00::/40 maxlen: 40
2401:2860:c00::/40 maxlen: 40
2401:2860:d00::/40 maxlen: 40
2401:2860:e00::/40 maxlen: 40
2401:2860:f00::/40 maxlen: 40
2401:2860:1000::/36 maxlen: 36
2401:2860:2000::/36 maxlen: 36
2401:2860:3000::/36 maxlen: 36
2401:2860:4000::/36 maxlen: 36
2401:2860:5000::/36 maxlen: 36
2401:2860:6000::/36 maxlen: 36
2401:2860:7000::/36 maxlen: 36
2401:2860:8000::/36 maxlen: 36
2401:2860:9000::/36 maxlen: 36
2401:2860:a000::/36 maxlen: 36
2401:2860:b000::/36 maxlen: 36
2401:2860:c000::/36 maxlen: 36
2401:2860:d000::/36 maxlen: 36
2401:2860:e000::/36 maxlen: 36
2401:2860:f000::/36 maxlen: 36
2401:2860:f000::/48 maxlen: 48
2401:2860:f001::/48 maxlen: 48
2401:2860:f002::/48 maxlen: 48
2401:2860:f003::/48 maxlen: 48
2401:2860:f004::/48 maxlen: 48
2401:2860:f005::/48 maxlen: 48
2401:2860:f006::/48 maxlen: 48
2401:2860:f007::/48 maxlen: 48
2401:2860:f008::/48 maxlen: 48
2401:2860:f009::/48 maxlen: 48
2401:2860:f00a::/48 maxlen: 48
2401:2860:f00b::/48 maxlen: 48
2401:2860:f00c::/48 maxlen: 48
2401:2860:f00d::/48 maxlen: 48
2401:2860:f00e::/48 maxlen: 48
2401:2860:f00f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 02 Dec 2024 10:54:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37573 (0x92c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jun 18 12:41:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6671807d-890b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ef:4a:31:a3:02:db:40:dd:7b:d2:9d:79:e3:
63:be:68:d1:e4:7c:40:a5:8e:bb:82:d0:a0:e2:a3:
4a:44:d7:9e:38:a8:2b:59:f4:82:51:3f:99:fa:b4:
2b:ac:bb:0a:f6:3d:dc:63:84:27:31:5f:a0:a7:81:
5d:d8:a5:b4:a6:c7:be:62:d9:89:a0:a9:fc:7d:bb:
63:6c:6e:4e:2e:02:8a:03:da:81:10:44:ea:49:6d:
3f:df:2c:9c:33:75:6a:0e:25:e0:1b:bd:65:49:04:
25:59:d1:83:7a:ab:55:95:5d:fa:2b:69:47:9d:b6:
7e:30:4e:52:13:d8:33:70:c1:84:e1:df:fe:39:54:
ea:0f:80:03:e5:42:86:2a:4c:bc:e2:89:67:6e:f6:
0d:00:7c:97:97:4c:32:16:b6:f1:b4:11:54:ca:65:
4e:9c:c6:45:64:b7:7e:46:2d:7b:ef:b7:74:5d:8a:
9b:a5:9e:6d:01:c7:37:25:28:f0:e0:34:ae:00:e4:
3e:39:53:ae:02:be:a2:f0:8a:d4:23:2e:c6:41:b4:
d7:da:c6:34:02:47:08:ce:47:23:33:e6:b0:0e:51:
07:44:f1:3e:6d:d7:e5:67:86:58:00:12:bf:88:53:
21:59:28:7b:a5:37:7f:6d:e3:e4:e5:d3:28:9d:5f:
c5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:61:6B:71:77:57:57:36:44:0B:DA:85:6B:53:9E:29:7A:38:8C:D3
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E04076471EA11ECB3503078C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.114.148.0/22
103.27.164.0/22
IPv6:
2001:df2:1140::/48
2401:2860::/32
Signature Algorithm: sha256WithRSAEncryption
19:ff:27:e8:d9:f7:90:db:b7:f3:4c:71:e0:1e:38:fe:42:e8:
35:f0:e9:16:ba:1b:2b:b7:f1:7b:ed:7a:54:24:30:f1:5d:2a:
2b:9c:bf:47:65:a9:21:b9:28:32:e8:d2:c4:b9:ec:58:43:1c:
4e:da:86:4d:77:9d:e5:fb:28:d5:40:66:b8:88:b5:13:9a:bc:
0d:30:da:d7:f7:a5:49:e7:19:ef:ea:e4:a5:0b:6b:38:d1:93:
a6:80:88:9a:31:ac:09:d9:db:42:0f:9f:a0:46:a5:25:c8:92:
d0:7b:34:17:7f:dd:75:b9:1c:65:90:9b:19:b0:c3:1d:0e:fe:
5c:aa:38:3b:55:46:c1:9e:db:21:01:b5:33:67:f6:15:4f:16:
09:05:c0:f5:c4:d6:64:70:de:f1:b0:b8:6c:8f:6a:b0:d7:9e:
3d:f5:38:84:9f:43:bb:ae:1c:94:89:ec:15:49:2c:80:2f:eb:
01:e7:d2:b8:59:4c:df:46:42:3c:63:ee:1d:83:dc:19:64:52:
c5:ab:3d:c7:a0:b4:0e:e6:26:3f:9c:bf:f2:63:2f:da:30:1d:
75:f1:b3:7c:56:d9:1c:b7:f4:6e:06:a7:30:99:c8:c2:e1:aa:
7b:27:55:7b:66:83:28:c6:71:07:8a:7b:57:52:5a:af:f9:8f:
76:67:4d:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 13:04:44 2024 by rpki-client on console-fra.rpki-client.org