Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/B7BC1B76506A11EDBB3A804AC4F9AE02.roa
File: B7BC1B76506A11EDBB3A804AC4F9AE02.roa (raw, json)
Hash identifier: gLMJhNvQtjkqWgYHOYJrflnpuLe5m/iNQsn8pAjqC+o=
Subject key identifier: 35:55:6E:8F:4A:6C:1B:BF:EA:7C:48:CE:06:44:3D:1D:50:43:0A:EE
Certificate issuer: /CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8
Certificate serial: 06F0
Authority key identifier: 8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/B7BC1B76506A11EDBB3A804AC4F9AE02.roa
Signing time: Wed 29 Jan 2025 08:43:05 +0000
ROA not before: Wed 29 Jan 2025 08:43:05 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 38166
IP address blocks: 166.81.5.0/24 maxlen: 24
166.81.9.0/24 maxlen: 24
166.81.10.0/24 maxlen: 24
166.81.11.0/24 maxlen: 24
166.81.12.0/24 maxlen: 24
166.81.13.0/24 maxlen: 24
166.81.14.0/24 maxlen: 24
166.81.15.0/24 maxlen: 24
166.81.16.0/24 maxlen: 24
166.81.17.0/24 maxlen: 24
166.81.18.0/24 maxlen: 24
166.81.19.0/24 maxlen: 24
166.81.20.0/24 maxlen: 24
166.81.21.0/24 maxlen: 24
166.81.22.0/24 maxlen: 24
166.81.23.0/24 maxlen: 24
166.81.24.0/24 maxlen: 24
166.81.25.0/24 maxlen: 24
166.81.26.0/24 maxlen: 24
166.81.27.0/24 maxlen: 24
166.81.28.0/24 maxlen: 24
166.81.29.0/24 maxlen: 24
166.81.30.0/24 maxlen: 24
166.81.33.0/24 maxlen: 24
166.81.34.0/24 maxlen: 24
166.81.35.0/24 maxlen: 24
166.81.38.0/24 maxlen: 24
166.81.39.0/24 maxlen: 24
166.81.40.0/24 maxlen: 24
166.81.51.0/24 maxlen: 24
166.81.52.0/24 maxlen: 24
166.81.53.0/24 maxlen: 24
166.81.54.0/24 maxlen: 24
166.81.55.0/24 maxlen: 24
166.81.56.0/24 maxlen: 24
166.81.57.0/24 maxlen: 24
166.81.58.0/24 maxlen: 24
166.81.59.0/24 maxlen: 24
166.81.60.0/24 maxlen: 24
166.81.61.0/24 maxlen: 24
166.81.62.0/24 maxlen: 24
166.81.65.0/24 maxlen: 24
166.81.66.0/24 maxlen: 24
166.81.67.0/24 maxlen: 24
166.81.68.0/24 maxlen: 24
166.81.69.0/24 maxlen: 24
166.81.70.0/24 maxlen: 24
166.81.77.0/24 maxlen: 24
166.81.78.0/24 maxlen: 24
166.81.79.0/24 maxlen: 24
166.81.80.0/24 maxlen: 24
166.81.81.0/24 maxlen: 24
166.81.83.0/24 maxlen: 24
166.81.84.0/24 maxlen: 24
166.81.85.0/24 maxlen: 24
166.81.87.0/24 maxlen: 24
166.81.88.0/24 maxlen: 24
166.81.89.0/24 maxlen: 24
166.81.90.0/24 maxlen: 24
166.81.97.0/24 maxlen: 24
166.81.98.0/24 maxlen: 24
166.81.99.0/24 maxlen: 24
166.81.100.0/24 maxlen: 24
166.81.101.0/24 maxlen: 24
166.81.102.0/24 maxlen: 24
166.81.103.0/24 maxlen: 24
166.81.104.0/24 maxlen: 24
166.81.105.0/24 maxlen: 24
166.81.106.0/24 maxlen: 24
166.81.246.0/24 maxlen: 24
166.81.247.0/24 maxlen: 24
166.81.248.0/24 maxlen: 24
166.81.249.0/24 maxlen: 24
166.81.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl
rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 22:45:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1776 (0x6f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DC31B
Validity
Not Before: Jan 29 08:43:05 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=6799ea18-23f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:21:fd:9a:12:0c:2a:59:31:62:13:1d:6c:61:
57:06:c8:3f:01:4c:93:f4:e5:d7:b8:83:ee:27:57:
1c:ee:57:29:b7:0f:71:56:9a:86:bd:ea:19:ef:89:
6f:1e:cc:69:5e:1d:0a:eb:4d:c2:50:28:88:90:c5:
38:2e:29:5f:7a:ef:fd:94:6f:58:19:18:af:44:5e:
81:76:1a:71:73:a5:b3:7f:33:1d:66:8d:23:a8:86:
56:92:4a:b9:c0:83:f1:0d:2c:a3:e6:a6:17:b0:8c:
2a:ca:bb:01:c0:66:a9:b2:ef:0b:3a:b9:3c:1d:8f:
65:2b:91:ec:71:62:87:ed:35:a4:07:65:86:82:64:
90:58:08:b3:ad:7d:6c:6b:bc:2f:f5:bf:f6:55:c7:
ad:95:8b:56:7d:b4:68:da:e6:bd:da:7e:dd:b1:00:
60:61:9e:ba:b7:25:a9:22:af:98:eb:eb:9e:80:c0:
4f:1e:7f:41:60:9b:0d:55:8d:b2:47:5e:82:d6:57:
06:74:45:e0:7d:3f:e9:86:ba:c6:45:a2:8a:ea:b3:
67:3e:c8:14:7e:c8:2a:b0:87:57:6b:56:62:e6:32:
f6:65:6e:c1:32:74:3a:87:6b:0c:33:55:11:de:ef:
e5:e3:5f:3d:62:a3:a6:b7:98:bf:6e:18:16:fa:15:
1c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:55:6E:8F:4A:6C:1B:BF:EA:7C:48:CE:06:44:3D:1D:50:43:0A:EE
X509v3 Authority Key Identifier:
keyid:8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/B7BC1B76506A11EDBB3A804AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
166.81.5.0/24
166.81.9.0-166.81.30.255
166.81.33.0-166.81.35.255
166.81.38.0-166.81.40.255
166.81.51.0-166.81.62.255
166.81.65.0-166.81.70.255
166.81.77.0-166.81.81.255
166.81.83.0-166.81.85.255
166.81.87.0-166.81.90.255
166.81.97.0-166.81.106.255
166.81.246.0-166.81.250.255
Signature Algorithm: sha256WithRSAEncryption
85:d2:d6:12:12:5e:69:ff:78:3f:06:dd:0b:ad:b8:22:9d:77:
22:1d:21:49:27:50:c4:71:09:96:37:08:29:83:91:02:ab:7f:
7d:9d:17:d3:db:7c:59:6c:24:c8:bf:06:22:ee:e0:94:f4:5a:
97:51:d7:a8:63:21:df:f4:c9:87:bc:3d:6f:c5:68:8c:4e:f4:
77:d0:ce:68:bb:23:66:7b:c4:26:45:a0:88:4d:52:c3:6e:1a:
bc:7e:b2:83:78:e4:eb:4a:d2:1b:a4:fc:51:44:40:4d:a2:0a:
aa:e2:3a:3f:11:bb:b9:87:a4:e1:4f:17:31:f2:7b:5c:b5:7b:
ca:22:94:6e:03:c9:31:09:39:9d:65:7d:7e:fd:6f:4d:1a:66:
23:4e:c1:d1:54:da:32:cd:86:97:d8:24:eb:02:d2:f7:e2:0c:
c8:2e:31:ff:08:7a:8e:27:20:a0:b0:fa:bf:f7:92:e5:b8:78:
c0:34:bc:73:78:7a:57:ba:e3:f5:0f:b5:16:a0:ad:6a:d7:28:
a5:31:9b:a4:c1:d0:dc:61:39:34:20:8e:fc:2f:65:37:33:4a:
46:46:29:dc:20:c4:4b:aa:64:41:9d:d4:57:48:28:6f:79:12:
ff:4e:84:d3:75:85:e4:a6:a9:86:1c:29:ee:26:d5:88:5b:a3:
9f:06:13:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:12:54 2025 by rpki-client