Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/982AFFA4E2B611EE97AF7309C4F9AE02.roa
File: 982AFFA4E2B611EE97AF7309C4F9AE02.roa (raw, json)
Hash identifier: vBi4AGzYkidRMSHUwFbybOi16QJPXOsl8kgQKo3/2Lc=
Subject key identifier: 15:F2:C4:05:16:51:63:E2:DB:97:C5:3C:CB:1E:DF:DE:0A:40:18:80
Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Certificate serial: 34ED
Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/982AFFA4E2B611EE97AF7309C4F9AE02.roa
Signing time: Tue 30 Apr 2024 09:41:37 +0000
ROA not before: Tue 30 Apr 2024 09:41:37 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 23750
IP address blocks: 103.207.84.0/24 maxlen: 24
103.207.86.0/24 maxlen: 24
103.207.87.0/24 maxlen: 24
116.90.106.0/24 maxlen: 24
116.90.107.0/24 maxlen: 24
116.90.108.0/24 maxlen: 24
116.90.109.0/24 maxlen: 24
116.90.110.0/24 maxlen: 24
116.90.111.0/24 maxlen: 24
116.90.115.0/24 maxlen: 24
116.90.119.0/24 maxlen: 24
116.90.120.0/24 maxlen: 24
116.90.123.0/24 maxlen: 24
116.90.124.0/24 maxlen: 24
116.90.125.0/24 maxlen: 24
116.90.126.0/24 maxlen: 24
116.90.127.0/24 maxlen: 24
121.46.64.0/24 maxlen: 24
121.46.66.0/24 maxlen: 24
121.46.67.0/24 maxlen: 24
202.69.32.0/24 maxlen: 24
202.69.33.0/24 maxlen: 24
202.69.34.0/24 maxlen: 24
202.69.35.0/24 maxlen: 24
202.69.36.0/24 maxlen: 24
202.69.37.0/24 maxlen: 24
202.69.38.0/24 maxlen: 24
202.69.39.0/24 maxlen: 24
202.69.40.0/24 maxlen: 24
202.69.41.0/24 maxlen: 24
202.69.42.0/24 maxlen: 24
202.69.43.0/24 maxlen: 24
202.69.44.0/24 maxlen: 24
202.69.45.0/24 maxlen: 24
202.69.46.0/24 maxlen: 24
202.69.47.0/24 maxlen: 24
202.69.48.0/24 maxlen: 24
202.69.49.0/24 maxlen: 24
202.69.50.0/24 maxlen: 24
202.69.51.0/24 maxlen: 24
202.69.52.0/24 maxlen: 24
202.69.53.0/24 maxlen: 24
202.69.54.0/24 maxlen: 24
202.69.55.0/24 maxlen: 24
202.69.56.0/24 maxlen: 24
202.69.57.0/24 maxlen: 24
202.69.58.0/24 maxlen: 24
202.69.59.0/24 maxlen: 24
202.69.60.0/24 maxlen: 24
202.69.61.0/24 maxlen: 24
202.69.62.0/24 maxlen: 24
202.69.63.0/24 maxlen: 24
202.142.144.0/24 maxlen: 24
202.142.145.0/24 maxlen: 24
202.142.146.0/24 maxlen: 24
202.142.147.0/24 maxlen: 24
202.142.148.0/24 maxlen: 24
202.142.149.0/24 maxlen: 24
202.142.150.0/24 maxlen: 24
202.142.152.0/24 maxlen: 24
202.142.153.0/24 maxlen: 24
202.142.154.0/24 maxlen: 24
202.142.156.0/24 maxlen: 24
202.142.157.0/24 maxlen: 24
202.142.158.0/24 maxlen: 24
202.142.159.0/24 maxlen: 24
2406:ac00:1::/48 maxlen: 48
2406:ac00:2::/48 maxlen: 48
2406:ac00:203::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl
rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 07 Jun 2024 14:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13549 (0x34ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Validity
Not Before: Apr 30 09:41:37 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=6630bcd1-030e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:10:f4:1c:40:0d:10:7e:19:98:bb:95:2c:c5:
67:71:9d:f5:8b:e6:6c:05:71:a2:8e:5c:44:9d:c7:
6b:53:e2:92:1b:7c:39:53:99:90:a0:ed:30:02:56:
19:7c:7b:99:56:46:60:8f:b1:7f:79:83:ba:6e:e2:
33:60:51:11:0d:1d:f3:9d:a6:ad:82:65:40:bb:2e:
5b:21:13:e9:84:7c:81:83:12:b3:5b:12:df:23:8f:
2a:21:cf:69:01:b6:d9:66:20:ef:56:41:09:5e:c8:
b2:35:40:ae:6e:08:32:07:f9:a2:54:7f:02:2f:f4:
b5:6d:29:58:f0:11:8c:dd:98:82:7f:d6:db:2c:49:
13:71:6e:46:7d:ae:18:9e:ab:f9:32:29:bc:52:2f:
a4:e7:b1:11:67:e5:53:ab:22:7a:a5:c6:09:00:dd:
f0:ea:8c:d9:0a:f9:ff:d4:9a:a4:3b:31:5e:3f:ec:
93:70:27:af:fb:9d:3a:43:13:31:1b:ab:d0:fa:d9:
8f:53:50:7a:7d:4d:48:8e:cd:36:4c:dd:6d:83:6d:
fb:17:be:61:6e:18:18:a6:f7:84:ba:54:ed:77:d8:
9d:24:1a:fd:de:4c:5f:b2:29:16:47:85:de:4d:77:
0c:9a:09:53:8e:ef:72:f5:7d:e9:da:a4:87:7a:d0:
c4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:F2:C4:05:16:51:63:E2:DB:97:C5:3C:CB:1E:DF:DE:0A:40:18:80
X509v3 Authority Key Identifier:
keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/982AFFA4E2B611EE97AF7309C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.207.84.0/24
103.207.86.0/23
116.90.106.0-116.90.111.255
116.90.115.0/24
116.90.119.0-116.90.120.255
116.90.123.0-116.90.127.255
121.46.64.0/24
121.46.66.0/23
202.69.32.0/19
202.142.144.0-202.142.150.255
202.142.152.0-202.142.154.255
202.142.156.0/22
IPv6:
2406:ac00:1::-2406:ac00:2:ffff:ffff:ffff:ffff:ffff
2406:ac00:203::/48
Signature Algorithm: sha256WithRSAEncryption
81:a3:4c:0f:df:1e:4e:92:d9:13:e9:c8:58:7c:6b:15:62:d7:
55:fd:49:5f:d7:6f:db:65:85:3a:ba:13:d0:42:69:08:38:ca:
bf:05:4b:d6:9b:9d:ad:44:0f:75:39:f4:be:b0:8b:d0:de:ea:
c3:7e:c1:23:79:24:33:b0:22:09:f6:e3:ce:5f:91:08:4d:13:
7b:43:3c:57:2e:e9:8f:28:7f:7d:60:97:ec:5a:be:4a:21:3c:
99:22:2a:4f:08:3f:60:42:da:eb:37:5b:bd:f0:ca:ad:ef:18:
f9:7b:f8:50:1b:5a:99:79:d8:37:ae:63:4b:78:ef:1e:c9:3b:
cd:19:de:4f:62:c0:ac:f4:69:77:bf:92:f1:4a:2b:b6:16:e6:
db:33:24:d4:a6:a5:36:f4:b4:1b:98:6c:e1:44:05:ab:d3:1a:
ed:e6:33:4b:ce:cc:0c:3c:14:d8:d0:c1:c5:2e:41:c1:6f:7d:
47:d1:eb:f4:de:88:27:d0:70:66:e6:d0:72:c2:07:fd:ce:85:
ef:e2:29:6c:6f:b2:e2:3e:ca:4d:28:6b:d1:96:36:d8:2d:fc:
2d:2c:34:53:0e:e7:5f:f9:0d:5d:23:35:dc:35:a6:65:90:ce:
c0:b0:9d:20:f8:85:ca:e3:25:57:8f:d3:8f:70:b2:77:6f:f2:
b4:80:db:03
-----BEGIN CERTIFICATE-----
MIIGAzCCBOugAwIBAgICNO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx
NkQxNTdCMzQwHhcNMjQwNDMwMDk0MTM3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjMwYmNkMS0wMzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6RD0HEANEH4ZmLuVLMVncZ31i+ZsBXGijlxEncdrU+KSG3w5U5mQoO0wAlYZ
fHuZVkZgj7F/eYO6buIzYFERDR3znaatgmVAuy5bIRPphHyBgxKzWxLfI48qIc9p
AbbZZiDvVkEJXsiyNUCubggyB/miVH8CL/S1bSlY8BGM3ZiCf9bbLEkTcW5Gfa4Y
nqv5Mim8Ui+k57ERZ+VTqyJ6pcYJAN3w6ozZCvn/1JqkOzFeP+yTcCev+506QxMx
G6vQ+tmPU1B6fU1Ijs02TN1tg237F75hbhgYpveEulTtd9idJBr93kxfsikWR4Xe
TXcMmglTju9y9X3p2qSHetDExQIDAQABo4IDJzCCAyMwHQYDVR0OBBYEFBXyxAUW
UWPi25fFPMse394KQBiAMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE
ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl
elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvOTgyQUZGQTRF
MkI2MTFFRTk3QUY3MzA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgbAGCCsGAQUFBwEHAQH/
BIGgMIGdMHYEAgABMHADBABnz1QDBAFnz1YwDAMEAXRaagMEBHRaYAMEAHRaczAM
AwQAdFp3AwQAdFp4MAwDBAB0WnsDBAd0WgADBAB5LkADBAF5LkIDBAXKRSAwDAME
BMqOkAMEAMqOljAMAwQDyo6YAwQAyo6aAwQCyo6cMCMEAgACMB0wEgMHACQGrAAA
AQMHACQGrAAAAgMHACQGrAACAzANBgkqhkiG9w0BAQsFAAOCAQEAgaNMD98eTpLZ
E+nIWHxrFWLXVf1JX9dv22WFOroT0EJpCDjKvwVL1pudrUQPdTn0vrCL0N7qw37B
I3kkM7AiCfbjzl+RCE0Te0M8Vy7pjyh/fWCX7Fq+SiE8mSIqTwg/YELa6zdbvfDK
re8Y+Xv4UBtamXnYN65jS3jvHsk7zRneT2LArPRpd7+S8Uorthbm2zMk1KalNvS0
G5hs4UQFq9Ma7eYzS87MDDwU2NDBxS5BwW99R9Hr9N6IJ9BwZubQcsIH/c6F7+Ip
bG+y4j7KTShr0ZY22C38LSw0Uw7nX/kNXSM13DWmZZDOwLCdIPiFyuMlV4/Tj3Cy
d2/ytIDbAw==
-----END CERTIFICATE-----
Generated at Fri May 31 16:41:42 2024 by rpki-client on console-ams.rpki-client.org