Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0935/31B3D160D04811EC9E818135C4F9AE02/387AE648938B11EEA552D487C4F9AE02.roa
File: 387AE648938B11EEA552D487C4F9AE02.roa (raw, json)
Hash identifier: n2JnUjdK1G3DKEtjobXUa5tJlDzoU7ugVziN4/cf1hI=
Subject key identifier: B3:15:9C:D9:5A:6E:0B:9F:04:ED:F3:AA:37:10:02:8E:F3:AB:CA:A0
Certificate issuer: /CN=A91D0935/serialNumber=7A60C04B87D6C6CB251F15297EE25AD2DA505E0E
Certificate serial: 0301
Authority key identifier: 7A:60:C0:4B:87:D6:C6:CB:25:1F:15:29:7E:E2:5A:D2:DA:50:5E:0E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emDAS4fWxsslHxUpfuJa0tpQXg4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D0935/31B3D160D04811EC9E818135C4F9AE02/387AE648938B11EEA552D487C4F9AE02.roa
Signing time: Sat 29 Mar 2025 01:56:40 +0000
ROA not before: Sat 29 Mar 2025 01:56:40 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 984
IP address blocks: 103.186.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D0935/31B3D160D04811EC9E818135C4F9AE02/emDAS4fWxsslHxUpfuJa0tpQXg4.crl
rsync://rpki.apnic.net/member_repository/A91D0935/31B3D160D04811EC9E818135C4F9AE02/emDAS4fWxsslHxUpfuJa0tpQXg4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emDAS4fWxsslHxUpfuJa0tpQXg4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 00:52:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 769 (0x301)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D0935, serialNumber=7A60C04B87D6C6CB251F15297EE25AD2DA505E0E
Validity
Not Before: Mar 29 01:56:40 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67e75357-f5b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:42:bb:60:93:b3:77:df:21:29:da:c5:e1:33:
2a:5e:ae:ee:f1:fc:f6:b1:ae:f9:9b:b9:9e:9f:fd:
68:f7:a2:d9:60:12:06:5f:16:64:6b:16:43:47:6a:
06:94:06:86:50:c7:a9:25:60:7b:11:a7:e1:c1:01:
21:e7:43:af:fc:85:c0:5e:69:80:be:a4:4f:bc:8c:
91:49:d9:5a:74:d8:6c:2f:77:51:53:c4:a8:c7:9d:
f5:40:7f:0c:b6:f4:f1:e6:bb:24:20:56:e0:f9:ff:
86:a5:0f:aa:f2:e4:af:a6:be:71:ff:4e:2c:ab:0f:
0a:e1:60:e0:3b:47:84:5c:b0:43:32:2a:4b:36:df:
0a:e9:35:2f:c4:a8:ee:ec:a2:61:33:8f:f2:26:42:
b0:ea:28:59:22:2f:e3:08:54:c7:01:b0:93:3e:a7:
8e:6c:39:e2:65:65:ee:6b:d3:88:ce:e6:45:02:2e:
ab:73:1b:eb:b7:b7:8d:5d:40:53:29:59:c4:75:b7:
80:74:0e:dd:67:75:86:6b:eb:d3:43:14:93:ac:72:
d5:f7:6d:13:6e:11:51:d1:b4:b6:b6:e2:0d:74:fe:
a8:16:ad:8c:b9:d8:0a:b1:5d:44:47:8d:ad:92:1b:
85:e3:57:29:f0:c3:73:b2:7e:b2:c1:14:8f:7b:eb:
8b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:15:9C:D9:5A:6E:0B:9F:04:ED:F3:AA:37:10:02:8E:F3:AB:CA:A0
X509v3 Authority Key Identifier:
keyid:7A:60:C0:4B:87:D6:C6:CB:25:1F:15:29:7E:E2:5A:D2:DA:50:5E:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D0935/31B3D160D04811EC9E818135C4F9AE02/emDAS4fWxsslHxUpfuJa0tpQXg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emDAS4fWxsslHxUpfuJa0tpQXg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0935/31B3D160D04811EC9E818135C4F9AE02/387AE648938B11EEA552D487C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.112.0/24
Signature Algorithm: sha256WithRSAEncryption
60:55:f6:b4:18:b0:21:d8:cf:ae:df:ae:45:b0:ec:9f:93:38:
14:9d:53:68:d3:e6:fd:80:bb:2e:21:0c:15:ef:8b:2b:66:c0:
a9:9d:0d:95:e7:eb:b8:0f:6a:c4:17:e2:66:19:3b:4c:d2:ea:
74:0b:fa:bd:38:07:fb:01:c1:d8:90:00:bf:0f:03:a0:07:02:
3c:39:d9:40:4e:70:77:a7:f5:6b:81:94:1b:ee:34:4a:d4:fc:
cd:dc:df:a3:5f:9b:18:7d:e1:5d:dd:94:07:7a:0f:6c:34:94:
a9:48:4d:85:67:db:a3:a6:d8:65:fa:8b:ed:29:81:57:b5:7d:
bf:cb:cd:f1:77:59:af:87:e2:7e:98:0f:b2:16:bb:cc:6c:88:
1a:ff:0e:ae:63:6e:a2:21:52:6a:86:f0:47:91:33:f6:3f:7f:
3a:72:4e:37:e1:39:88:62:43:32:ef:39:76:6c:99:ca:b4:4a:
4a:04:d0:03:d2:63:da:4d:de:6c:a4:cf:34:4c:d4:b7:5a:f9:
18:80:92:8e:12:6a:33:7f:27:cc:aa:51:0e:25:5d:c2:d9:2e:
3a:41:f4:1b:42:1b:21:9b:f3:ed:01:a6:f1:8b:dc:d7:2b:c3:
ab:82:2c:2b:5f:be:08:da:ea:a4:fa:4a:63:23:03:1b:fa:c5:
aa:71:51:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 05:52:55 2025 by rpki-client