Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/832503DCAD0311ED8DFD5339C4F9AE02.roa
File: 832503DCAD0311ED8DFD5339C4F9AE02.roa (raw, json)
Hash identifier: WkJCgrbBmelQA5c6twQaEqrtwUH2ZoyRfcoaWRVuiIU=
Subject key identifier: 0A:BF:A1:AE:C4:B9:32:CE:AF:C0:F6:6F:1D:AF:1A:E7:F2:56:DF:98
Certificate issuer: /CN=A91A1860/serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C
Certificate serial: 0193
Authority key identifier: 35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/832503DCAD0311ED8DFD5339C4F9AE02.roa
Signing time: Thu 03 Apr 2025 02:59:20 +0000
ROA not before: Thu 03 Apr 2025 02:59:20 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 140072
IP address blocks: 103.86.70.0/23 maxlen: 23
103.86.70.0/24 maxlen: 24
103.86.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl
rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 02:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403 (0x193)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A1860
Validity
Not Before: Apr 3 02:59:20 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67edf988-371e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8c:b5:20:81:94:7e:41:52:47:65:06:34:26:
69:b1:44:a8:86:58:df:b0:91:9f:d0:f6:ad:f8:a8:
f8:94:88:b6:4d:7b:81:ee:9b:ec:d1:bf:ec:44:c2:
60:6f:95:c8:2e:2d:f2:b6:da:97:ea:1e:da:c4:20:
59:7b:b0:6e:8c:66:73:ca:d7:8b:3f:b2:2b:8e:69:
ba:38:2a:c6:af:95:82:cd:87:7d:a8:14:76:68:cf:
0a:50:31:6e:2b:21:c5:ed:f2:c1:62:df:2c:6d:99:
a2:8a:ac:0f:33:4d:fc:65:e2:58:dd:3f:d7:91:62:
c1:c0:ec:fc:b9:b0:91:c4:a3:d7:75:79:77:03:63:
1e:51:37:8c:bd:11:3b:24:35:0e:d3:66:4a:5f:99:
cd:ad:38:90:8c:4a:ef:6d:ab:0e:db:68:9d:00:48:
70:a6:94:8e:a5:38:92:28:2c:01:29:8d:f8:6f:f7:
6d:01:78:16:43:e5:93:54:38:62:67:4f:c1:a3:e0:
7e:f9:58:d9:72:6e:23:22:62:0f:62:8b:51:76:4f:
9f:af:3e:bd:b6:1a:e1:22:ce:21:03:84:5a:32:15:
23:b4:74:66:8e:94:23:39:72:5e:12:a3:33:f6:2b:
b7:f1:0a:db:69:d6:05:b2:4a:db:f9:00:12:5c:89:
ca:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:BF:A1:AE:C4:B9:32:CE:AF:C0:F6:6F:1D:AF:1A:E7:F2:56:DF:98
X509v3 Authority Key Identifier:
keyid:35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/832503DCAD0311ED8DFD5339C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.86.70.0/23
Signature Algorithm: sha256WithRSAEncryption
92:13:e8:71:cb:8b:db:08:8d:26:f6:73:5b:99:6f:48:86:8e:
04:d7:fb:3c:41:9c:62:31:e9:83:99:20:b1:1c:b3:13:5a:41:
76:c9:e4:1b:06:3f:69:dd:4f:5a:54:a1:51:ad:09:1b:49:80:
c1:0e:68:31:9f:56:e0:87:3a:e6:c1:e6:74:eb:59:ba:b5:27:
ab:28:17:07:fb:3f:8c:62:1a:3a:1f:2e:b6:a8:29:40:ae:cb:
e2:aa:ab:36:97:35:73:e9:8d:ab:bf:d2:4a:10:60:44:33:80:
eb:d9:94:d7:8f:10:d8:b3:ef:03:de:e5:61:1b:41:54:92:ea:
e5:72:11:23:b6:3e:5b:75:9e:91:e1:14:8c:3f:5c:30:de:50:
e4:b1:c0:2e:44:96:51:b2:e6:30:67:58:07:a6:41:04:24:30:
32:20:af:71:c1:60:8e:21:42:81:ac:a6:5a:79:be:f9:7d:04:
6e:3b:44:d4:a3:03:12:63:bd:fa:71:83:13:28:0e:f5:14:f7:
50:6f:e4:ed:2d:48:c3:2d:5a:50:4f:72:07:b8:fe:6f:00:d1:
ad:0e:0b:ec:f9:a2:fc:6f:d4:43:a1:b5:33:3d:1d:d4:2f:b9:
0b:5d:69:4c:88:5e:b1:18:af:bd:2d:6a:4e:8e:a6:75:46:d9:
cb:0d:fa:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 16:09:04 2025 by rpki-client