Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6CB6/2A4F575EFE1411E981C26559C4F9AE02/E683FA78277E11EE9D54C13AC4F9AE02.roa
File: E683FA78277E11EE9D54C13AC4F9AE02.roa (raw, json)
Hash identifier: w0i/ARt9lCVRkjFZbSD4igkj3UoeypjyUlDGFiTsJMI=
Subject key identifier: AA:DF:6B:BB:91:60:57:B8:CD:0F:32:E1:09:FE:DF:F6:7C:46:F2:5E
Certificate issuer: /CN=A91C6CB6/serialNumber=523370A81A6E514618AE7CA9795FDD110B350E37
Certificate serial: 0C66
Authority key identifier: 52:33:70:A8:1A:6E:51:46:18:AE:7C:A9:79:5F:DD:11:0B:35:0E:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjNwqBpuUUYYrnypeV_dEQs1Djc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C6CB6/2A4F575EFE1411E981C26559C4F9AE02/E683FA78277E11EE9D54C13AC4F9AE02.roa
Signing time: Thu 20 Mar 2025 18:27:47 +0000
ROA not before: Thu 20 Mar 2025 18:27:47 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 38026
IP address blocks: 103.110.57.0/24 maxlen: 24
103.110.58.0/24 maxlen: 24
103.110.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C6CB6/2A4F575EFE1411E981C26559C4F9AE02/UjNwqBpuUUYYrnypeV_dEQs1Djc.crl
rsync://rpki.apnic.net/member_repository/A91C6CB6/2A4F575EFE1411E981C26559C4F9AE02/UjNwqBpuUUYYrnypeV_dEQs1Djc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjNwqBpuUUYYrnypeV_dEQs1Djc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 18:10:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3174 (0xc66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C6CB6, serialNumber=523370A81A6E514618AE7CA9795FDD110B350E37
Validity
Not Before: Mar 20 18:27:47 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67dc5e23-f383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4b:d8:e5:b6:9d:c5:a0:60:1b:83:d3:19:22:
e4:25:47:81:7c:f0:c1:37:d7:a2:8d:ad:a4:37:b1:
6c:51:31:40:71:46:ef:27:bb:a0:fa:4b:c5:38:f8:
a9:27:40:13:cb:07:2e:c2:54:d7:f5:f4:de:ba:3a:
b0:f2:83:d4:09:7f:ab:92:d4:42:05:4a:5f:8d:6a:
38:0a:76:d0:7f:6d:0b:13:dd:54:38:0b:01:b9:e3:
fb:ee:fc:e8:3e:35:41:f0:c8:cd:58:f4:97:3f:43:
4c:35:e2:a9:29:0b:85:c5:b4:82:ce:06:e1:46:16:
65:20:24:de:aa:77:9c:ca:c3:f6:b7:32:0e:40:0a:
63:a6:60:dd:ff:28:35:48:95:c2:01:ee:ed:71:8e:
78:39:4a:d2:b6:2c:09:6a:1d:be:f7:ea:07:03:2d:
08:98:45:d8:8a:08:64:93:cf:d7:04:97:fd:20:53:
6d:32:90:19:7b:22:6f:22:ea:5b:6c:33:22:ac:11:
f4:67:4e:4e:b7:e6:65:dd:32:0a:c3:6d:4c:73:54:
8f:5c:d5:de:3b:4b:f5:15:72:4e:d8:11:d4:f2:c2:
37:91:66:d6:e8:8c:68:53:d5:df:8d:89:87:2b:be:
c9:6d:48:99:b5:52:4e:91:df:9d:c4:0f:11:4a:b8:
3e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:DF:6B:BB:91:60:57:B8:CD:0F:32:E1:09:FE:DF:F6:7C:46:F2:5E
X509v3 Authority Key Identifier:
keyid:52:33:70:A8:1A:6E:51:46:18:AE:7C:A9:79:5F:DD:11:0B:35:0E:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C6CB6/2A4F575EFE1411E981C26559C4F9AE02/UjNwqBpuUUYYrnypeV_dEQs1Djc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjNwqBpuUUYYrnypeV_dEQs1Djc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6CB6/2A4F575EFE1411E981C26559C4F9AE02/E683FA78277E11EE9D54C13AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.110.57.0-103.110.59.255
Signature Algorithm: sha256WithRSAEncryption
a1:5f:cd:ae:c9:2b:4c:d6:22:7f:41:a1:b2:99:b5:0b:27:d7:
2b:1c:28:04:05:d1:1e:4b:bf:0a:c7:5a:f4:a6:1a:53:ee:f4:
c3:5f:3e:c4:b8:4b:70:8f:1f:02:2c:57:70:0c:63:3e:f4:09:
05:62:0e:bb:66:a1:dd:94:ee:5f:cb:47:c8:92:28:43:db:b3:
2c:97:e8:6d:a7:36:da:a2:05:77:0d:96:9e:f4:e3:ff:d2:15:
db:56:f1:57:b3:37:60:d9:1d:ef:8e:2d:42:b8:24:44:d2:19:
b7:79:e7:30:c2:78:2e:af:a3:09:d1:35:0d:61:78:52:46:4b:
c8:9b:6d:be:bc:d3:72:f2:9a:5c:7f:ce:80:45:cf:2e:2b:5c:
89:c5:34:66:a7:ab:b9:b0:e2:f8:e6:8c:89:a2:ee:8b:6a:3a:
55:c6:d9:43:72:99:27:8e:3d:a6:65:4f:df:97:59:8b:56:f7:
0d:73:a8:c9:b6:35:f6:a0:91:ef:ef:dd:ba:f6:fa:5e:fa:60:
7f:26:c7:37:ef:d9:08:86:32:22:a8:3c:68:8f:4b:29:df:f1:
5a:2f:5d:59:96:4e:48:ce:e4:18:94:ef:b8:76:27:ae:7e:98:
aa:4a:f9:67:fd:18:91:a8:d5:82:b4:2b:9b:20:b8:bf:36:b6:
d2:fd:fc:29
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgICDGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzZDQjYxMTAvBgNVBAUTKDUyMzM3MEE4MUE2RTUxNDYxOEFFN0NBOTc5NUZERDEx
MEIzNTBFMzcwHhcNMjUwMzIwMTgyNzQ3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD
VQQDEw02N2RjNWUyMy1mMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwUvY5badxaBgG4PTGSLkJUeBfPDBN9eija2kN7FsUTFAcUbvJ7ug+kvFOPip
J0ATywcuwlTX9fTeujqw8oPUCX+rktRCBUpfjWo4CnbQf20LE91UOAsBueP77vzo
PjVB8MjNWPSXP0NMNeKpKQuFxbSCzgbhRhZlICTeqnecysP2tzIOQApjpmDd/yg1
SJXCAe7tcY54OUrStiwJah2+9+oHAy0ImEXYighkk8/XBJf9IFNtMpAZeyJvIupb
bDMirBH0Z05Ot+Zl3TIKw21Mc1SPXNXeO0v1FXJO2BHU8sI3kWbW6IxoU9XfjYmH
K77JbUiZtVJOkd+dxA8RSrg+4wIDAQABo4ICnTCCApkwHQYDVR0OBBYEFKrfa7uR
YFe4zQ8y4Qn+3/Z8RvJeMB8GA1UdIwQYMBaAFFIzcKgablFGGK58qXlf3RELNQ43
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkNCNi8yQTRGNTc1RUZF
MTQxMUU5ODFDMjY1NTlDNEY5QUUwMi9Vak53cUJwdVVVWVlybnlwZVZfZEVRczFE
amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1VqTndxQnB1VVVZWXJueXBlVl9kRVFzMURqYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QzZDQjYvMkE0RjU3NUVGRTE0MTFFOTgxQzI2NTU5QzRGOUFFMDIvRTY4M0ZBNzgy
NzdFMTFFRTlENTRDMTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E
GDAWMBQEAgABMA4wDAMEAGduOQMEAmduODANBgkqhkiG9w0BAQsFAAOCAQEAoV/N
rskrTNYif0Ghspm1CyfXKxwoBAXRHku/Csda9KYaU+70w18+xLhLcI8fAixXcAxj
PvQJBWIOu2ah3ZTuX8tHyJIoQ9uzLJfobac22qIFdw2WnvTj/9IV21bxV7M3YNkd
744tQrgkRNIZt3nnMMJ4Lq+jCdE1DWF4UkZLyJttvrzTcvKaXH/OgEXPLitcicU0
ZqerubDi+OaMiaLui2o6VcbZQ3KZJ449pmVP35dZi1b3DXOoybY19qCR7+/duvb6
XvpgfybHN+/ZCIYyIqg8aI9LKd/xWi9dWZZOSM7kGJTvuHYnrn6Yqkr5Z/0YkajV
grQrmyC4vza20v38KQ==
-----END CERTIFICATE-----
Generated at Sun Apr 13 22:38:18 2025 by rpki-client