Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6104/E7E9336428B911EA9B7EAB31C4F9AE02/64C2A71ABDA111EDBD64FF45C4F9AE02.roa
File: 64C2A71ABDA111EDBD64FF45C4F9AE02.roa (raw, json)
Hash identifier: RWBo5b8XQlRVCoXjCZVdpUp7PeBvJmT3YOjXlyKIO8Q=
Subject key identifier: C2:34:6F:E6:D0:D7:50:2D:53:44:7C:2A:B5:84:01:74:81:4C:8A:F5
Certificate issuer: /CN=A91A6104/serialNumber=9B25BD2CE3559032B5EB4457E05C810AE8B8AAAC
Certificate serial: 0B34
Authority key identifier: 9B:25:BD:2C:E3:55:90:32:B5:EB:44:57:E0:5C:81:0A:E8:B8:AA:AC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myW9LONVkDK160RX4FyBCui4qqw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A6104/E7E9336428B911EA9B7EAB31C4F9AE02/64C2A71ABDA111EDBD64FF45C4F9AE02.roa
Signing time: Sat 02 Nov 2024 19:27:35 +0000
ROA not before: Sat 02 Nov 2024 19:27:35 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 150774
IP address blocks: 103.142.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A6104/E7E9336428B911EA9B7EAB31C4F9AE02/myW9LONVkDK160RX4FyBCui4qqw.crl
rsync://rpki.apnic.net/member_repository/A91A6104/E7E9336428B911EA9B7EAB31C4F9AE02/myW9LONVkDK160RX4FyBCui4qqw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myW9LONVkDK160RX4FyBCui4qqw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 18:57:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2868 (0xb34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A6104
Validity
Not Before: Nov 2 19:27:35 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=67267d27-fb4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:22:77:c2:b6:ce:7d:e3:99:2c:b0:9b:91:7b:
33:73:1b:ad:0c:f3:9a:ca:95:8c:7d:20:94:19:5f:
2d:c1:dc:30:e7:47:ad:dc:07:ad:d4:b0:3e:cf:4a:
ac:88:59:90:b3:d3:4e:9c:37:14:d5:e8:e8:22:c4:
f4:57:42:a1:9a:6b:c7:4b:e5:51:f0:71:80:98:24:
00:77:db:46:b1:d1:67:20:d8:44:bf:38:66:66:5c:
83:7a:7d:e0:77:cb:9e:76:f7:ee:88:8f:26:a3:4f:
4d:66:f8:31:bd:6b:a2:19:92:cb:e3:fc:f9:49:69:
82:50:df:4f:d5:c4:f9:69:15:c2:d4:77:fb:d4:2b:
0c:4d:60:f1:18:04:81:23:eb:07:9f:43:fc:86:75:
a3:b6:09:ca:25:0a:21:72:b8:61:30:15:c6:61:be:
b9:b5:a6:83:9a:c6:46:00:c9:1e:31:c6:55:ce:52:
8b:4c:60:0d:8b:17:cc:23:fd:fa:f2:be:2c:64:e8:
b2:4a:03:39:a1:95:ee:49:67:7e:4e:51:c3:e7:4c:
5b:1f:7d:fa:76:01:09:9f:35:bd:58:1c:41:b7:40:
e3:bc:9b:cc:f4:c5:be:82:a7:e3:6d:0f:ed:77:4b:
b7:29:f2:36:81:6a:43:53:4c:52:f6:7d:84:df:a8:
5c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:34:6F:E6:D0:D7:50:2D:53:44:7C:2A:B5:84:01:74:81:4C:8A:F5
X509v3 Authority Key Identifier:
keyid:9B:25:BD:2C:E3:55:90:32:B5:EB:44:57:E0:5C:81:0A:E8:B8:AA:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A6104/E7E9336428B911EA9B7EAB31C4F9AE02/myW9LONVkDK160RX4FyBCui4qqw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myW9LONVkDK160RX4FyBCui4qqw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6104/E7E9336428B911EA9B7EAB31C4F9AE02/64C2A71ABDA111EDBD64FF45C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.142.184.0/24
Signature Algorithm: sha256WithRSAEncryption
53:86:24:79:b0:36:56:ef:8d:e3:4b:e6:b8:b9:9a:d9:18:f4:
2b:9e:8d:ae:8c:6b:25:c2:64:4a:73:19:6d:ca:0f:6d:05:ec:
1c:db:60:f1:70:6f:66:6d:1d:63:42:2f:77:6d:bf:cb:7e:c1:
f8:c3:89:a7:ea:c4:fb:6d:2f:8b:d2:2d:68:e0:6b:ed:34:04:
69:b9:3d:61:f0:eb:4e:e1:df:8c:9c:91:d3:e5:5b:35:f3:2b:
a4:18:30:7f:38:c2:98:74:38:1c:0d:6e:59:f0:2c:ca:61:96:
08:b2:88:e4:62:33:7f:e8:be:3d:0b:8e:62:19:be:84:4c:cf:
8f:67:54:43:b9:7d:e8:b6:04:ac:ac:45:5a:fd:0f:c0:4b:68:
8c:c5:9d:68:c1:81:4b:21:be:00:cf:52:3f:b6:b5:85:96:13:
4f:77:ec:a7:50:4d:b9:1e:fa:3e:b0:c1:ed:0e:45:4d:37:bc:
ea:8a:91:b9:2f:ea:d6:ab:0b:cf:e5:de:25:34:0f:db:75:d2:
eb:93:14:91:4d:7e:14:ae:78:4e:42:10:bc:33:41:44:8a:b4:
2c:d9:cd:0a:5c:15:f7:29:b9:4d:81:d7:f3:80:17:44:2e:c9:
f0:fd:c7:a8:1c:aa:77:f2:bf:20:e0:16:94:fa:10:d5:cc:02:
eb:16:24:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 13:57:36 2025 by rpki-client