Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/25AEF904D01011EC9C4BAE3BC4F9AE02.roa
File: 25AEF904D01011EC9C4BAE3BC4F9AE02.roa (raw, json)
Hash identifier: +X7HPtc+W2eg8dbdYPLLRbAMxG4Tc4CL9uOAZZZsm20=
Subject key identifier: 85:E7:A8:8E:B1:87:83:6C:60:70:DD:CD:59:38:4F:E1:20:3E:2D:8B
Certificate issuer: /CN=A91AA48F/serialNumber=BE0E7A890F7281C654632E8BE80EBBF9FFB56503
Certificate serial: 33F0
Authority key identifier: BE:0E:7A:89:0F:72:81:C6:54:63:2E:8B:E8:0E:BB:F9:FF:B5:65:03
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/25AEF904D01011EC9C4BAE3BC4F9AE02.roa
Signing time: Sat 01 Jun 2024 08:20:39 +0000
ROA not before: Sat 01 Jun 2024 08:20:39 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 45143
IP address blocks: 14.100.128.0/17 maxlen: 17
14.100.133.0/24 maxlen: 24
14.100.137.0/24 maxlen: 24
111.65.31.0/24 maxlen: 24
111.65.32.0/24 maxlen: 24
111.65.33.0/24 maxlen: 24
111.65.34.0/24 maxlen: 24
111.65.35.0/24 maxlen: 24
111.65.36.0/24 maxlen: 24
111.65.37.0/24 maxlen: 24
111.65.38.0/24 maxlen: 24
111.65.39.0/24 maxlen: 24
111.65.40.0/24 maxlen: 24
111.65.41.0/24 maxlen: 24
111.65.42.0/24 maxlen: 24
111.65.43.0/24 maxlen: 24
111.65.44.0/24 maxlen: 24
111.65.45.0/24 maxlen: 24
111.65.46.0/24 maxlen: 24
111.65.47.0/24 maxlen: 24
111.65.48.0/24 maxlen: 24
111.65.49.0/24 maxlen: 24
111.65.50.0/24 maxlen: 24
111.65.51.0/24 maxlen: 24
111.65.52.0/24 maxlen: 24
111.65.53.0/24 maxlen: 24
111.65.54.0/24 maxlen: 24
111.65.55.0/24 maxlen: 24
111.65.56.0/24 maxlen: 24
111.65.57.0/24 maxlen: 24
111.65.58.0/24 maxlen: 24
111.65.59.0/24 maxlen: 24
111.65.60.0/24 maxlen: 24
111.65.61.0/24 maxlen: 24
111.65.62.0/24 maxlen: 24
111.65.63.0/24 maxlen: 24
111.65.64.0/24 maxlen: 24
111.65.65.0/24 maxlen: 24
111.65.66.0/24 maxlen: 24
111.65.67.0/24 maxlen: 24
111.65.68.0/24 maxlen: 24
111.65.69.0/24 maxlen: 24
111.65.70.0/24 maxlen: 24
111.65.71.0/24 maxlen: 24
111.65.72.0/24 maxlen: 24
111.65.73.0/24 maxlen: 24
111.65.74.0/24 maxlen: 24
111.65.75.0/24 maxlen: 24
111.65.76.0/24 maxlen: 24
111.65.77.0/24 maxlen: 24
111.65.78.0/24 maxlen: 24
111.65.79.0/24 maxlen: 24
119.234.0.0/16 maxlen: 16
119.234.3.0/24 maxlen: 24
119.234.4.0/22 maxlen: 22
119.234.4.0/24 maxlen: 24
119.234.5.0/24 maxlen: 24
119.234.6.0/24 maxlen: 24
119.234.7.0/24 maxlen: 24
119.234.8.0/21 maxlen: 21
119.234.8.0/24 maxlen: 24
119.234.9.0/24 maxlen: 24
119.234.10.0/24 maxlen: 24
119.234.11.0/24 maxlen: 24
119.234.16.0/20 maxlen: 20
119.234.32.0/19 maxlen: 19
119.234.64.0/18 maxlen: 18
119.234.64.0/19 maxlen: 19
119.234.64.0/20 maxlen: 20
119.234.64.0/21 maxlen: 21
119.234.128.0/17 maxlen: 17
180.255.128.0/17 maxlen: 17
180.255.129.0/24 maxlen: 24
180.255.254.0/24 maxlen: 24
180.255.255.0/24 maxlen: 24
202.78.56.0/24 maxlen: 24
202.78.57.0/24 maxlen: 24
202.78.58.0/24 maxlen: 24
2400:1c00:1::/48 maxlen: 48
2400:1c00:2::/48 maxlen: 48
2400:1c00:3::/48 maxlen: 48
2400:1c00:4::/48 maxlen: 48
2400:1c00:b::/48 maxlen: 48
2400:1c00:c::/48 maxlen: 48
2400:1c00:1a::/48 maxlen: 48
2400:1c00:1b::/48 maxlen: 48
2400:1c00:1c::/48 maxlen: 48
2400:1c00:1e::/48 maxlen: 48
2400:1c00:1f::/48 maxlen: 48
2400:1c00:20::/44 maxlen: 44
2400:1c00:30::/44 maxlen: 44
2400:1c00:40::/44 maxlen: 44
2400:1c00:50::/44 maxlen: 44
2400:1c00:64::/48 maxlen: 48
2400:1c00:66::/48 maxlen: 48
2400:1c00:70::/44 maxlen: 44
2400:1c00:80::/43 maxlen: 43
2400:1c00:a0::/43 maxlen: 43
2400:1c00:f0::/44 maxlen: 44
2400:1c00:100::/44 maxlen: 44
2400:1c00:110::/44 maxlen: 44
2400:1c00:120::/44 maxlen: 44
2400:1c00:130::/44 maxlen: 44
2400:1c00:140::/44 maxlen: 44
2400:1c00:150::/44 maxlen: 44
2400:1c00:160::/44 maxlen: 44
2400:1c00:190::/44 maxlen: 44
2400:1c00:1a0::/44 maxlen: 44
2400:1c00:1b0::/44 maxlen: 44
2400:1c00:1d0::/44 maxlen: 44
2400:1c00:1e0::/44 maxlen: 44
2400:1c00:220::/44 maxlen: 44
2400:1c00:230::/44 maxlen: 44
2400:1c00:310::/45 maxlen: 45
2400:1c00:318::/45 maxlen: 45
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.crl
rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 08 Jun 2024 07:43:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13296 (0x33f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AA48F/serialNumber=BE0E7A890F7281C654632E8BE80EBBF9FFB56503
Validity
Not Before: Jun 1 08:20:39 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=665ad9d6-837e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:55:88:4a:ef:45:76:1c:48:0c:5e:d3:db:d1:
df:64:5d:77:49:30:36:6c:68:53:a4:9a:23:ff:06:
07:d1:9d:35:49:09:18:71:5c:1a:ae:6e:30:00:71:
e9:e2:61:2a:0c:00:40:8f:09:5c:8a:7a:f2:3d:04:
f4:8c:b4:be:6b:5e:7a:c2:a8:a0:bc:00:fc:30:0c:
10:cb:46:3c:c1:8b:18:90:bd:9d:f5:cd:9a:b8:c2:
78:04:ca:9e:76:45:c3:55:b0:a8:17:38:93:8f:57:
04:d0:79:2b:82:e7:93:ae:34:16:25:b8:87:77:c7:
c9:20:1d:65:98:85:32:84:44:e5:93:ed:8c:85:f3:
8a:e1:a4:e6:bc:2a:b4:6f:58:a3:41:02:7a:c5:c5:
23:89:bb:39:a0:bb:63:34:9d:76:19:ba:16:99:c4:
51:4b:5e:2c:ff:5f:9a:e2:7d:45:9f:89:33:a9:22:
c8:59:cc:bc:e0:14:c5:0e:07:15:17:e6:53:d8:2b:
a4:6f:d3:12:12:ce:2f:22:67:38:17:2c:9f:49:a7:
9a:20:92:a7:9d:80:4d:b5:16:a3:2a:1d:3c:7b:72:
f9:a6:b2:cd:22:34:cb:e9:48:86:50:9d:cd:2e:a5:
f3:f7:94:b0:69:82:3c:3b:97:3a:9a:fe:cc:b6:61:
ae:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E7:A8:8E:B1:87:83:6C:60:70:DD:CD:59:38:4F:E1:20:3E:2D:8B
X509v3 Authority Key Identifier:
keyid:BE:0E:7A:89:0F:72:81:C6:54:63:2E:8B:E8:0E:BB:F9:FF:B5:65:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/25AEF904D01011EC9C4BAE3BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.100.128.0/17
111.65.31.0-111.65.79.255
119.234.0.0/16
180.255.128.0/17
202.78.56.0-202.78.58.255
IPv6:
2400:1c00:1::-2400:1c00:4:ffff:ffff:ffff:ffff:ffff
2400:1c00:b::-2400:1c00:c:ffff:ffff:ffff:ffff:ffff
2400:1c00:1a::-2400:1c00:1c:ffff:ffff:ffff:ffff:ffff
2400:1c00:1e::-2400:1c00:5f:ffff:ffff:ffff:ffff:ffff
2400:1c00:64::/48
2400:1c00:66::/48
2400:1c00:70::-2400:1c00:bf:ffff:ffff:ffff:ffff:ffff
2400:1c00:f0::-2400:1c00:16f:ffff:ffff:ffff:ffff:ffff
2400:1c00:190::-2400:1c00:1bf:ffff:ffff:ffff:ffff:ffff
2400:1c00:1d0::-2400:1c00:1ef:ffff:ffff:ffff:ffff:ffff
2400:1c00:220::/43
2400:1c00:310::/44
Signature Algorithm: sha256WithRSAEncryption
16:2d:ef:2a:97:e3:10:b3:85:1a:10:9b:6b:25:8f:78:99:02:
6f:6b:de:87:08:84:e6:51:86:56:0d:9e:42:53:dd:cc:93:7d:
ce:33:14:9c:7e:ef:58:83:e9:d1:3e:da:24:fa:84:6e:36:7e:
03:f5:ff:c9:b4:47:d9:b1:3f:59:dc:70:54:50:e8:68:15:ab:
a5:9e:a0:9e:3f:c6:59:18:43:31:a7:5c:b4:3c:23:40:f0:2d:
53:bb:31:7a:a3:88:f1:ac:2e:82:26:80:de:b3:78:d5:97:f5:
85:cc:a7:bb:ee:0f:d6:76:6f:96:d4:d3:44:3c:ab:c4:b3:be:
00:20:9a:e5:3e:2b:0b:a3:6f:ba:a0:a6:e7:5e:c2:49:f9:5d:
ef:27:bd:31:dd:7d:53:97:0b:89:d5:ed:71:ae:24:03:94:4a:
77:88:74:9c:47:bc:c6:d6:19:ea:b8:dd:87:a7:8b:26:30:d0:
24:ac:ce:dd:0b:47:8e:9a:f5:cf:47:18:95:78:b8:c1:01:06:
1b:53:09:a4:b1:30:e6:ed:d6:75:9c:f3:51:79:46:65:b0:14:
b8:c9:24:22:99:2f:9c:90:d9:2e:e5:53:94:eb:ba:80:57:1b:
05:43:dd:d5:09:30:b7:74:f8:64:57:f6:d8:6e:5e:01:7d:14:
b1:a0:a0:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 09:10:36 2024 by rpki-client on console-fra.rpki-client.org