Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1E23F7046EFB11EDB184D40DC4F9AE02.roa
File: 1E23F7046EFB11EDB184D40DC4F9AE02.roa (raw, json)
Hash identifier: 9oSpV1/hjEjxUqBfsqfEktwuq1d4GXXurH3fbVRv0Ho=
Subject key identifier: 81:73:D2:04:0E:0E:C2:E3:93:3F:EF:87:00:E4:10:74:FF:95:CF:E0
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 45D0
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1E23F7046EFB11EDB184D40DC4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:34:04 +0000
ROA not before: Thu 05 Sep 2024 03:34:03 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 149132
IP address blocks: 103.186.64.0/23 maxlen: 23
2400:6ea0::/48 maxlen: 48
2401:8260::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 09:20:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17872 (0x45d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:34:03 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d926ab-36b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4b:59:05:9e:54:6b:bc:7b:d3:f7:ed:92:42:
8f:80:6d:f5:48:53:86:c2:a2:ac:1f:6f:12:0c:cb:
f1:5d:89:95:d1:7e:52:8b:38:94:a2:a2:a0:18:5e:
f4:5f:66:23:5e:01:4b:74:98:83:85:02:7f:2b:8a:
0a:52:65:e1:4f:8a:67:40:9f:61:87:41:44:33:42:
af:19:96:55:c0:37:16:e0:e7:09:4d:70:c2:a9:ba:
18:17:17:ef:56:0c:88:c1:47:ff:00:5e:19:4c:a6:
e4:f9:25:61:c3:39:2b:94:d5:17:72:b5:ae:01:6c:
8e:a4:a1:54:67:b2:8a:64:e9:76:2b:4d:d9:50:8a:
f2:dc:bc:3a:0e:43:a8:71:eb:ea:f6:50:aa:47:08:
9e:c9:80:58:72:d6:12:89:e8:ef:ab:16:e5:d9:6f:
9f:b6:76:c9:5d:d6:13:d3:e1:b7:11:33:f6:9b:da:
77:d7:8d:7f:5a:a6:d1:58:e4:9f:8e:e6:48:33:e1:
5b:fc:8f:f6:cd:6d:8c:b3:fa:06:b3:1f:16:1e:fa:
42:82:4e:fc:35:28:a2:b2:2e:af:7c:7b:e1:3d:f1:
d9:3b:77:7a:e9:a8:c3:06:5e:c2:83:af:0e:c3:f5:
c1:d1:27:bc:f2:71:f0:31:21:4b:ac:e6:eb:91:87:
fa:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:73:D2:04:0E:0E:C2:E3:93:3F:EF:87:00:E4:10:74:FF:95:CF:E0
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1E23F7046EFB11EDB184D40DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.64.0/23
IPv6:
2400:6ea0::/48
2401:8260::/48
Signature Algorithm: sha256WithRSAEncryption
ab:bd:b2:d0:89:4e:c3:e8:74:76:fe:20:fa:53:42:06:43:ca:
7b:8a:b8:41:23:a1:8a:f0:22:86:23:ce:c6:24:25:55:1d:33:
88:44:17:46:60:85:07:04:6e:ba:75:ef:3f:6a:7f:94:4e:51:
9e:4a:12:90:3a:b3:57:c8:8a:e6:f7:ba:be:55:6a:09:6a:2e:
35:06:20:e4:c9:00:00:35:19:ef:88:90:6c:b3:97:04:34:7e:
69:2b:e4:53:f4:8d:98:a8:06:01:ab:f6:62:b8:29:a4:ad:62:
9c:2e:63:4d:64:7a:64:76:2a:84:ca:fa:e8:b2:c1:ab:6b:03:
fc:d6:83:d9:26:c2:6c:e3:22:83:8c:de:29:ef:16:2b:87:eb:
25:ef:fb:10:fa:af:68:38:fe:16:be:1e:3e:e5:8e:e3:17:22:
66:19:41:14:6e:b0:b5:59:57:f7:0f:3b:a7:c5:cb:be:cb:22:
a0:99:c0:42:12:5d:3e:6c:d5:df:3b:40:7b:aa:0f:2f:a5:c5:
8b:2d:1d:67:ad:9e:c4:ee:a9:c8:95:dd:65:8e:dd:c5:98:16:
44:4d:83:61:9a:e1:c2:35:6f:94:ba:36:5b:8b:87:62:46:77:
c9:78:8a:9a:71:07:ef:0e:46:2d:84:57:e8:1a:c3:a0:d5:32:
ac:00:5b:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 14:09:52 2025 by rpki-client