Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCF10/EC67333E609011EDA6791A0DC4F9AE02/CC74271E8A8711ED98572D26C4F9AE02.roa
File: CC74271E8A8711ED98572D26C4F9AE02.roa (raw, json)
Hash identifier: rGioCcK4Zr+knzNA5J2qJp6M9oaPBmCCilGkVDkio+Y=
Subject key identifier: B6:4F:5F:91:00:F8:B2:87:46:3F:9E:14:20:34:37:8D:38:B7:01:7D
Certificate issuer: /CN=A91CCF10/serialNumber=B8EA71D04EC836E8180873C9E9D40CD2E3553701
Certificate serial: 019A
Authority key identifier: B8:EA:71:D0:4E:C8:36:E8:18:08:73:C9:E9:D4:0C:D2:E3:55:37:01
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOpx0E7INugYCHPJ6dQM0uNVNwE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CCF10/EC67333E609011EDA6791A0DC4F9AE02/CC74271E8A8711ED98572D26C4F9AE02.roa
Signing time: Thu 05 Dec 2024 02:16:45 +0000
ROA not before: Thu 05 Dec 2024 02:16:45 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 150413
IP address blocks: 2001:df1:82c0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CCF10/EC67333E609011EDA6791A0DC4F9AE02/uOpx0E7INugYCHPJ6dQM0uNVNwE.crl
rsync://rpki.apnic.net/member_repository/A91CCF10/EC67333E609011EDA6791A0DC4F9AE02/uOpx0E7INugYCHPJ6dQM0uNVNwE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOpx0E7INugYCHPJ6dQM0uNVNwE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 01:58:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410 (0x19a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CCF10
Validity
Not Before: Dec 5 02:16:45 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67510d0d-0952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c9:e6:54:48:ce:d0:c9:ef:4d:54:ad:ab:1a:
ac:d3:09:e4:d2:5b:eb:3f:0b:ec:e3:f7:96:d0:13:
b0:a1:21:61:9a:9b:01:ef:ac:c8:b4:b0:8e:98:a8:
2e:de:1a:64:c4:6a:8a:c7:39:60:e9:2f:be:25:d7:
6a:11:6d:ba:bb:56:4e:79:a9:1a:4c:80:c8:7c:53:
09:b9:af:b9:e2:38:25:f7:89:92:9d:bc:40:ef:10:
a6:a2:b9:27:e5:b1:61:94:8a:a1:4f:5a:5e:3d:42:
58:68:b0:03:23:a3:30:6e:a6:b7:0d:a2:4c:2b:02:
f3:7b:7c:f4:87:89:40:7c:0a:24:a0:48:d1:de:91:
e5:13:ff:c3:47:38:14:49:83:06:1f:a7:fe:4a:d4:
aa:f7:bc:b6:5d:d1:9f:68:84:95:8e:82:1a:1b:25:
bf:fe:04:84:4d:ad:5b:33:32:fc:97:f9:1d:73:81:
cc:1c:1c:88:d8:97:7f:16:b5:e6:12:f5:7f:fe:de:
89:f8:73:12:2f:92:55:d9:66:87:d2:2d:49:a5:41:
86:87:ab:99:be:c6:0e:00:d6:fe:a9:6d:d8:2c:26:
57:89:ed:7b:a2:96:3f:de:c6:67:33:20:b6:82:98:
66:03:4f:d2:e3:30:f8:19:42:c9:56:fc:82:e9:eb:
07:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:4F:5F:91:00:F8:B2:87:46:3F:9E:14:20:34:37:8D:38:B7:01:7D
X509v3 Authority Key Identifier:
keyid:B8:EA:71:D0:4E:C8:36:E8:18:08:73:C9:E9:D4:0C:D2:E3:55:37:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CCF10/EC67333E609011EDA6791A0DC4F9AE02/uOpx0E7INugYCHPJ6dQM0uNVNwE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOpx0E7INugYCHPJ6dQM0uNVNwE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCF10/EC67333E609011EDA6791A0DC4F9AE02/CC74271E8A8711ED98572D26C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df1:82c0::/48
Signature Algorithm: sha256WithRSAEncryption
9c:f1:fa:cf:93:2b:44:9a:1e:37:0a:96:b7:d1:6c:be:4b:75:
8b:8c:d8:bd:4b:b6:e3:ce:be:4b:17:06:7a:ed:bf:fb:b0:61:
81:90:b6:8e:a8:09:07:e4:2a:b8:32:2a:9f:45:f2:aa:18:0a:
e7:13:7d:91:16:44:b8:99:f6:05:22:7d:c9:94:6f:b4:a4:27:
e1:e0:6a:8e:6e:11:95:d5:cb:e3:f0:81:0a:af:a8:73:12:d4:
cf:7c:9f:32:6e:96:3c:66:29:0f:02:6f:35:4f:93:4c:b4:9c:
8c:4a:bf:52:57:2f:8e:19:a4:14:dc:13:6c:e0:29:a6:48:a9:
c4:f3:53:26:f6:6c:ed:29:35:5e:93:1f:1d:d8:09:58:92:cd:
4c:b2:99:ef:71:20:42:e4:5c:3a:5c:55:4a:83:67:c8:d5:00:
1b:90:3c:73:38:3f:b4:87:b4:ca:d1:44:54:bd:44:9d:95:e3:
48:5d:b1:3f:fb:87:39:1c:31:4f:a7:30:49:67:87:b9:a3:39:
6f:6b:e3:6a:7a:42:0f:2f:b2:57:9e:f2:b0:16:9d:b9:39:21:
cd:82:6e:20:4b:94:ca:d4:da:44:8c:ec:f0:30:ce:c1:d0:1a:
33:f7:05:bd:67:5a:eb:1a:8a:63:68:69:eb:5a:6d:bb:9e:2d:
38:c0:55:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 20:06:10 2025 by rpki-client