Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/7584425EA2FF11EEAACCC277C4F9AE02.roa
File: 7584425EA2FF11EEAACCC277C4F9AE02.roa (raw, json)
Hash identifier: WFX3rJgdiL4agtAVlnDUWV3z1ZsATefSMxzR4hDZhfY=
Subject key identifier: B3:31:A6:8F:94:56:E9:FA:B1:09:E2:B8:53:CC:B0:40:CE:05:81:60
Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934
Certificate serial: AF
Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/7584425EA2FF11EEAACCC277C4F9AE02.roa
Signing time: Tue 07 May 2024 08:59:07 +0000
ROA not before: Tue 07 May 2024 08:59:07 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 132280
IP address blocks: 83.118.0.0/17 maxlen: 17
83.118.0.0/21 maxlen: 23
83.118.8.0/21 maxlen: 23
83.118.16.0/21 maxlen: 23
83.118.24.0/21 maxlen: 23
83.118.26.0/23 maxlen: 24
83.118.32.0/21 maxlen: 23
83.118.32.0/24 maxlen: 24
83.118.35.0/24 maxlen: 24
83.118.36.0/24 maxlen: 24
83.118.40.0/21 maxlen: 23
83.118.45.0/24 maxlen: 24
83.118.48.0/21 maxlen: 23
83.118.52.0/24 maxlen: 24
83.118.55.0/24 maxlen: 24
83.118.56.0/21 maxlen: 23
83.118.56.0/23 maxlen: 24
83.118.61.0/24 maxlen: 24
83.118.64.0/21 maxlen: 23
83.118.65.0/24 maxlen: 24
83.118.72.0/21 maxlen: 23
83.118.75.0/24 maxlen: 24
83.118.80.0/21 maxlen: 23
83.118.88.0/21 maxlen: 23
83.118.92.0/24 maxlen: 24
83.118.96.0/21 maxlen: 23
83.118.98.0/24 maxlen: 24
83.118.104.0/21 maxlen: 23
83.118.105.0/24 maxlen: 24
83.118.109.0/24 maxlen: 24
83.118.111.0/24 maxlen: 24
83.118.112.0/21 maxlen: 23
83.118.112.0/24 maxlen: 24
83.118.114.0/24 maxlen: 24
83.118.118.0/24 maxlen: 24
83.118.120.0/21 maxlen: 23
83.118.120.0/23 maxlen: 24
83.118.124.0/24 maxlen: 24
83.118.126.0/24 maxlen: 24
87.124.0.0/17 maxlen: 23
87.124.1.0/24 maxlen: 24
87.124.2.0/23 maxlen: 24
87.124.4.0/22 maxlen: 24
87.124.8.0/21 maxlen: 24
87.124.16.0/20 maxlen: 24
87.124.32.0/19 maxlen: 24
87.124.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl
rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 08 Jun 2024 05:24:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175 (0xaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934
Validity
Not Before: May 7 08:59:07 2024 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=6639ed5b-d4ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c6:65:7c:38:db:87:f1:f2:4c:d9:aa:fc:95:
0d:3e:2b:8d:8e:df:a6:5d:ce:b5:6f:c7:34:90:5a:
fb:4a:47:4b:29:1e:c6:f2:0c:99:95:8b:c2:f0:24:
ab:46:35:74:33:89:05:01:c1:dd:87:18:8b:41:78:
8c:42:ec:2e:de:0a:90:32:6b:a3:94:5b:ca:6d:06:
40:fb:a7:d9:87:ad:d5:74:37:d0:6d:f3:4b:e5:c7:
44:a0:f0:4f:fc:48:95:33:36:89:1f:76:cb:34:7f:
a0:5b:f9:a5:0a:b4:4b:73:0f:02:f6:10:7d:4d:62:
35:0a:24:72:d4:37:33:d9:34:03:61:96:26:59:8d:
d9:66:82:49:40:2b:c0:99:23:5f:2a:80:9f:30:4e:
17:cb:25:99:6e:de:76:73:5f:6d:4b:3b:15:3e:81:
d9:60:3b:9d:9c:28:67:3c:28:92:a7:f0:ad:72:24:
17:75:41:ba:19:a6:c7:b3:47:99:fe:f7:d1:eb:ee:
f1:1f:23:9b:0e:53:62:a7:6a:ba:09:39:e7:e5:64:
8c:52:73:ba:94:52:1e:89:d1:2c:7f:97:35:08:c6:
b3:f8:2d:db:b8:ae:a7:80:4f:00:d3:9d:e1:23:bf:
9a:a3:6d:c1:83:7f:be:05:58:47:3b:04:73:d0:db:
95:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:31:A6:8F:94:56:E9:FA:B1:09:E2:B8:53:CC:B0:40:CE:05:81:60
X509v3 Authority Key Identifier:
keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/7584425EA2FF11EEAACCC277C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
83.118.0.0/17
87.124.0.0/17
Signature Algorithm: sha256WithRSAEncryption
41:06:9d:71:bf:1e:cf:4c:28:69:8b:13:16:7f:72:ed:36:f6:
8a:a2:9a:19:14:f4:34:e6:13:02:79:2a:5f:bc:b0:b7:5f:52:
0f:71:04:93:e1:d0:7b:5f:cc:2d:4d:3f:6f:4a:9e:27:7f:68:
3e:26:95:4e:e1:58:f4:d0:fa:dc:e9:f6:ab:c2:97:32:42:90:
22:7f:b8:7c:b3:7f:13:98:85:1d:8a:c1:d3:93:c2:3a:87:2a:
51:6b:b1:66:17:ec:82:41:4c:7f:5c:37:55:0e:3d:e7:78:66:
64:40:96:4f:60:27:c8:de:36:fa:7e:df:2e:33:77:3b:0d:b1:
2b:dc:f9:8e:52:25:4d:db:9f:6a:9c:ae:9d:5b:07:53:5e:1a:
21:2a:c6:8c:47:42:9b:cc:6b:65:bb:e0:61:76:e8:3c:55:ad:
e4:9c:d8:a7:00:c3:94:c3:c3:62:b4:92:ad:84:da:9d:2d:31:
0f:1e:72:fa:15:b5:cc:41:75:85:27:f1:f3:bf:5b:21:0f:92:
90:a2:e7:e2:ab:2e:f9:33:57:22:6b:c3:fd:36:13:3d:71:55:
2f:ff:70:ab:b0:14:a5:b8:78:27:34:d2:22:9b:be:59:d2:d9:
1d:16:89:cd:b9:b9:11:e7:fd:6e:d1:c0:e2:39:bb:3b:84:9e:
e5:d8:a8:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 09:10:35 2024 by rpki-client on console-fra.rpki-client.org