Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/A1E87910832A11ECA409521EC4F9AE02.roa
File: A1E87910832A11ECA409521EC4F9AE02.roa (raw, json)
Hash identifier: pWwzKrBi4ex9pqtRPtIPRabSwqTwDTnYV8iW2v8i1Fg=
Subject key identifier: F6:14:E9:63:B1:CA:B5:46:D8:3C:99:4E:B1:9A:55:3B:2A:FC:FD:A3
Certificate issuer: /CN=A9193C85/serialNumber=185FF6647E1E9677501377B5515479B9E9461067
Certificate serial: 1154
Authority key identifier: 18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/A1E87910832A11ECA409521EC4F9AE02.roa
Signing time: Thu 30 Jan 2025 17:34:43 +0000
ROA not before: Thu 30 Jan 2025 17:34:43 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 45766
IP address blocks: 103.127.4.0/22 maxlen: 22
103.127.4.0/23 maxlen: 23
103.127.4.0/24 maxlen: 24
103.127.5.0/24 maxlen: 24
103.127.6.0/23 maxlen: 23
103.127.6.0/24 maxlen: 24
103.127.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl
rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 17:10:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4436 (0x1154)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9193C85, serialNumber=185FF6647E1E9677501377B5515479B9E9461067
Validity
Not Before: Jan 30 17:34:43 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=679bb833-b3e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:95:1f:1c:50:49:29:f0:97:54:e9:66:df:97:
60:c5:2b:f9:83:b6:55:7f:b1:b0:b2:e8:66:c0:7e:
08:a5:cf:68:4f:27:3c:f4:da:d8:2c:0a:71:4e:5d:
3f:b7:4d:ee:99:75:66:84:24:58:8e:bb:a5:08:48:
b6:17:4e:0e:89:0a:18:45:e0:eb:d9:2d:97:01:f9:
2c:af:c6:55:ba:a0:7b:24:68:74:dc:88:6d:90:58:
7b:31:93:15:93:a4:59:81:3c:d9:59:70:15:56:4a:
7e:b5:d2:e0:d2:85:a6:a1:f6:11:c8:57:e6:9b:75:
06:5b:c7:a2:b1:a2:ca:14:b6:4b:2d:4e:db:1c:a7:
78:66:5b:8e:49:f8:ff:2e:8b:ce:5b:1f:45:6d:6c:
38:7f:49:c4:fb:68:8b:f3:a1:64:72:5f:df:d2:0a:
ca:27:12:3d:63:09:35:69:01:58:2a:65:69:09:29:
e8:ec:5d:fa:d9:58:9c:11:d8:48:4c:e6:fe:97:e8:
11:f2:a9:9f:3f:07:da:f3:7c:10:91:7c:f6:90:d2:
e0:54:2b:65:d8:5a:1d:e9:8a:d1:df:53:16:02:de:
6f:d8:2b:c3:fe:b6:71:11:b9:f4:fc:e1:2a:36:21:
d4:87:96:6b:0d:ca:d4:7b:ae:e3:41:db:6e:33:43:
6c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:14:E9:63:B1:CA:B5:46:D8:3C:99:4E:B1:9A:55:3B:2A:FC:FD:A3
X509v3 Authority Key Identifier:
keyid:18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/A1E87910832A11ECA409521EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.4.0/22
Signature Algorithm: sha256WithRSAEncryption
80:56:44:d7:21:0c:2f:84:2b:8c:e4:f5:89:13:9b:ca:23:7d:
d7:b3:ad:71:96:15:44:74:af:16:bb:6f:cb:d6:32:e1:15:06:
06:e1:aa:55:60:bf:51:4a:4a:4e:65:98:59:03:eb:da:6e:b0:
76:e9:74:f3:9c:34:98:80:fc:d1:ed:13:1c:98:22:5e:68:73:
1c:88:0b:3e:3c:44:0f:53:74:b0:78:14:f2:7f:87:8b:2a:64:
56:a0:71:7a:44:cd:a4:c0:f5:ec:78:6b:12:63:0b:56:2b:2c:
ad:e8:83:7b:5f:7f:4e:cf:a2:06:87:fb:70:c8:42:83:e1:70:
4b:27:b7:18:21:38:cf:d2:ce:18:69:35:b8:04:8b:97:e4:37:
af:ea:01:3e:4c:dd:6e:e2:f2:d3:3a:9a:d6:21:ed:60:65:1d:
93:d2:a8:fd:b7:52:11:0b:16:d0:16:88:89:1c:7a:6a:e3:f3:
0d:a4:fa:29:ee:b2:e3:a3:fc:4d:4d:0a:a0:e4:5d:0a:3a:e9:
b6:bb:05:d4:d8:dd:4b:50:9d:60:fd:a0:ee:c0:37:21:29:42:
d8:0b:c6:ea:46:01:f5:2e:97:f3:93:d0:8f:c2:68:2b:4b:95:
f4:bb:20:4a:56:96:84:a2:1a:31:2c:44:70:b2:13:0a:a2:b1:
5a:77:d5:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 00:38:39 2025 by rpki-client