Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/925F2824F4FE11EF9D805215C4F9AE02.roa
File: 925F2824F4FE11EF9D805215C4F9AE02.roa (raw, json)
Hash identifier: Kn1R+bWDRRB0XDqPFu6S1HLPTcghxiNAzp+9dNgV+TU=
Subject key identifier: 01:E8:AD:A8:E1:2E:60:23:4C:FB:56:E4:10:58:71:C4:CE:05:D3:B2
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: A821
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/925F2824F4FE11EF9D805215C4F9AE02.roa
Signing time: Thu 27 Feb 2025 11:37:16 +0000
ROA not before: Thu 27 Feb 2025 11:37:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 133982
IP address blocks: 45.118.156.0/24 maxlen: 24
45.118.157.0/24 maxlen: 24
45.118.158.0/24 maxlen: 24
45.118.159.0/24 maxlen: 24
103.46.200.0/24 maxlen: 24
103.46.201.0/24 maxlen: 24
103.46.202.0/24 maxlen: 24
103.46.203.0/24 maxlen: 24
103.48.196.0/22 maxlen: 24
103.56.228.0/24 maxlen: 24
103.56.229.0/24 maxlen: 24
103.56.230.0/24 maxlen: 24
103.56.231.0/24 maxlen: 24
103.57.84.0/22 maxlen: 24
103.85.143.0/24 maxlen: 24
103.87.56.0/24 maxlen: 24
103.87.57.0/24 maxlen: 24
103.87.58.0/24 maxlen: 24
103.87.59.0/24 maxlen: 24
103.92.40.0/22 maxlen: 24
103.95.80.0/24 maxlen: 24
103.95.81.0/24 maxlen: 24
103.95.82.0/24 maxlen: 24
103.95.83.0/24 maxlen: 24
103.108.4.0/24 maxlen: 24
103.108.5.0/24 maxlen: 24
103.108.6.0/24 maxlen: 24
103.108.7.0/24 maxlen: 24
103.110.48.0/24 maxlen: 24
103.110.49.0/24 maxlen: 24
103.120.50.0/24 maxlen: 24
103.120.51.0/24 maxlen: 24
103.139.56.0/24 maxlen: 24
103.157.227.0/24 maxlen: 24
103.160.26.0/23 maxlen: 24
103.161.56.0/23 maxlen: 24
103.164.188.0/24 maxlen: 24
103.170.80.0/23 maxlen: 24
103.172.72.0/23 maxlen: 24
103.177.120.0/23 maxlen: 24
103.211.12.0/24 maxlen: 24
103.211.13.0/24 maxlen: 24
103.211.14.0/24 maxlen: 24
103.211.15.0/24 maxlen: 24
103.211.16.0/24 maxlen: 24
103.211.17.0/24 maxlen: 24
103.211.18.0/24 maxlen: 24
103.211.19.0/24 maxlen: 24
103.211.52.0/24 maxlen: 24
103.211.53.0/24 maxlen: 24
103.211.54.0/24 maxlen: 24
103.211.55.0/24 maxlen: 24
103.212.144.0/24 maxlen: 24
103.212.145.0/24 maxlen: 24
103.212.146.0/24 maxlen: 24
103.212.147.0/24 maxlen: 24
103.212.156.0/24 maxlen: 24
103.212.157.0/24 maxlen: 24
103.212.158.0/24 maxlen: 24
103.212.159.0/24 maxlen: 24
103.214.60.0/24 maxlen: 24
103.214.61.0/24 maxlen: 24
103.214.62.0/24 maxlen: 24
103.214.63.0/24 maxlen: 24
110.235.216.0/22 maxlen: 24
110.235.224.0/24 maxlen: 24
110.235.225.0/24 maxlen: 24
110.235.226.0/24 maxlen: 24
110.235.227.0/24 maxlen: 24
110.235.228.0/24 maxlen: 24
110.235.229.0/24 maxlen: 24
110.235.230.0/24 maxlen: 24
110.235.231.0/24 maxlen: 24
110.235.232.0/24 maxlen: 24
110.235.233.0/24 maxlen: 24
110.235.234.0/24 maxlen: 24
110.235.235.0/24 maxlen: 24
110.235.236.0/24 maxlen: 24
110.235.237.0/24 maxlen: 24
110.235.238.0/24 maxlen: 24
110.235.239.0/24 maxlen: 24
139.5.240.0/24 maxlen: 24
139.5.241.0/24 maxlen: 24
139.5.242.0/24 maxlen: 24
139.5.243.0/24 maxlen: 24
139.5.248.0/24 maxlen: 24
139.5.249.0/24 maxlen: 24
139.5.250.0/24 maxlen: 24
139.5.251.0/24 maxlen: 24
139.5.252.0/22 maxlen: 24
144.48.72.0/22 maxlen: 24
146.196.32.0/22 maxlen: 24
146.196.36.0/24 maxlen: 24
146.196.37.0/24 maxlen: 24
146.196.38.0/24 maxlen: 24
146.196.39.0/24 maxlen: 24
160.202.36.0/22 maxlen: 24
192.140.152.0/22 maxlen: 24
202.173.124.0/22 maxlen: 24
2401:9640::/32 maxlen: 32
2401:9640:800::/37 maxlen: 37
2401:9640:1000::/37 maxlen: 37
2401:9640:1800::/37 maxlen: 37
2401:9640:2000::/37 maxlen: 37
2401:9640:2800::/37 maxlen: 37
2401:9640:3000::/37 maxlen: 37
2401:9640:3800::/37 maxlen: 37
2401:9640:4000::/37 maxlen: 37
2401:9640:4800::/37 maxlen: 37
2401:9640:5000::/37 maxlen: 37
2401:9640:5800::/37 maxlen: 37
2401:9640:6000::/37 maxlen: 37
2401:9640:6800::/37 maxlen: 37
2401:9640:7000::/37 maxlen: 37
2401:9640:7800::/37 maxlen: 37
2401:9640:8000::/37 maxlen: 37
2401:9640:8800::/37 maxlen: 37
2401:9640:9000::/37 maxlen: 37
2401:9640:9800::/37 maxlen: 37
2401:9640:a000::/37 maxlen: 37
2401:9640:a800::/37 maxlen: 37
2401:9640:b000::/37 maxlen: 37
2401:9640:b800::/37 maxlen: 37
2401:9640:c000::/37 maxlen: 37
2401:9640:c800::/37 maxlen: 37
2401:9640:d000::/37 maxlen: 37
2401:9640:d800::/37 maxlen: 37
2401:9640:e000::/37 maxlen: 37
2401:9640:e800::/37 maxlen: 37
2401:9640:f000::/37 maxlen: 37
2401:9640:f800::/37 maxlen: 37
2407:aec0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 04 Apr 2025 15:28:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43041 (0xa821)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Feb 27 11:37:16 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67c04e6c-5cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:bc:04:56:d2:36:d6:a1:c8:68:a4:f5:32:68:
01:cf:95:0d:ea:34:7f:be:a9:83:d9:32:19:37:9c:
71:be:b8:e5:6b:2d:0f:40:66:63:8a:f8:8f:e1:8d:
a1:25:2c:97:27:0c:a1:e5:6c:cd:55:1e:e5:71:cb:
70:7d:35:51:6c:0f:ab:f7:56:19:ca:34:37:e1:94:
b7:74:49:9f:8c:d4:0f:21:4d:3b:43:5a:45:4e:c0:
df:a0:7b:6d:18:bb:10:81:a5:9c:01:2d:d2:fd:61:
97:2d:69:fa:fe:a2:8c:70:20:3b:f1:fa:b1:27:e8:
73:cd:ed:80:e2:c7:5d:ac:9b:bd:b3:c9:8c:66:e6:
ed:61:7e:0f:53:cc:06:3d:56:2c:f7:c5:dd:92:97:
47:c5:03:a5:e3:35:56:24:92:00:a1:1d:b0:44:b4:
27:2b:b8:df:a0:f5:87:9d:da:1d:e6:4d:83:d2:09:
f9:63:6e:d9:17:d8:f9:b5:f4:69:fa:db:45:22:5c:
4a:f3:af:43:04:cb:a4:26:20:60:d4:84:38:9f:c1:
f6:c6:2c:d5:80:60:7a:bf:a4:6e:b2:ec:40:7f:3b:
78:c4:4c:81:56:09:c5:d7:81:c1:d8:b3:e1:f4:23:
d0:43:d1:60:49:40:d2:af:05:2f:c2:f6:fb:63:a1:
a8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:E8:AD:A8:E1:2E:60:23:4C:FB:56:E4:10:58:71:C4:CE:05:D3:B2
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/925F2824F4FE11EF9D805215C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.118.156.0/22
103.46.200.0/22
103.48.196.0/22
103.56.228.0/22
103.57.84.0/22
103.85.143.0/24
103.87.56.0/22
103.92.40.0/22
103.95.80.0/22
103.108.4.0/22
103.110.48.0/23
103.120.50.0/23
103.139.56.0/24
103.157.227.0/24
103.160.26.0/23
103.161.56.0/23
103.164.188.0/24
103.170.80.0/23
103.172.72.0/23
103.177.120.0/23
103.211.12.0-103.211.19.255
103.211.52.0/22
103.212.144.0/22
103.212.156.0/22
103.214.60.0/22
110.235.216.0/22
110.235.224.0/20
139.5.240.0/22
139.5.248.0/21
144.48.72.0/22
146.196.32.0/21
160.202.36.0/22
192.140.152.0/22
202.173.124.0/22
IPv6:
2401:9640::/32
2407:aec0::/32
Signature Algorithm: sha256WithRSAEncryption
14:06:e2:5b:27:b4:49:be:b7:9d:e5:6c:fa:a4:a3:79:f5:df:
71:7d:5b:fb:46:12:c7:3f:05:38:52:aa:15:57:51:ee:06:45:
07:00:bf:8e:7b:0a:53:81:c6:51:4a:16:d2:ca:95:f7:50:6a:
81:43:f5:ed:1e:65:4b:5d:3d:bb:0e:2f:bd:5d:1d:d2:56:b8:
e2:38:93:b1:2a:1d:cc:4f:0a:3d:7f:5a:5f:4d:d6:4d:bf:c6:
2a:a0:f3:0b:7a:d5:7f:f3:22:e7:8a:e5:1a:90:c8:8f:a0:17:
c2:90:1a:c9:72:31:e2:01:81:24:77:f1:1c:da:3d:d6:6d:28:
8f:d4:c9:9c:a2:1f:f3:4e:8b:80:5d:cf:d6:03:cb:fc:c3:3d:
3c:b1:ce:fd:16:34:c8:55:15:4b:a8:54:1c:b2:e2:e4:a6:0b:
da:e5:d6:9e:f6:09:ce:5a:61:c9:f4:d2:61:83:b9:39:b9:6e:
5b:01:a4:e0:ea:ac:b6:22:12:32:f9:13:ef:5c:22:82:bb:58:
55:69:4f:33:10:5e:d3:d7:c0:68:60:1d:47:27:ba:64:a9:11:
9e:86:b2:81:9f:1b:97:8b:3b:3f:26:ac:39:e6:df:00:bc:f3:
51:60:d3:df:41:a3:40:36:e4:72:cb:05:7f:75:0d:07:ff:e4:
59:e9:c6:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:21:14 2025 by rpki-client