Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/E13F8A68B3B011EF831E2748C4F9AE02.roa
File: E13F8A68B3B011EF831E2748C4F9AE02.roa (raw, json)
Hash identifier: MQzeFjEdBFycQhi11Jp6s1Mnogtfz7WV2I//Hm39pik=
Subject key identifier: 52:57:10:30:95:DF:B2:81:80:01:CB:D5:EB:82:97:1E:F4:91:42:4A
Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04
Certificate serial: 059D
Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/E13F8A68B3B011EF831E2748C4F9AE02.roa
Signing time: Fri 06 Dec 2024 09:02:55 +0000
ROA not before: Fri 06 Dec 2024 09:02:55 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 152734
IP address blocks: 110.164.184.0/23 maxlen: 23
110.164.186.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl
rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 19 Apr 2025 23:19:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1437 (0x59d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E7561, serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04
Validity
Not Before: Dec 6 09:02:55 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=6752bdbe-2788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e1:86:aa:c8:f4:a7:51:de:fb:b3:a2:c8:77:
9b:c4:3c:e1:8f:c4:a9:7a:7c:26:57:5c:51:e4:40:
c6:47:69:6d:8c:a0:2a:43:98:02:a7:70:3e:cb:dd:
97:e8:c3:f2:4e:62:09:87:92:37:15:68:63:da:d1:
03:f7:46:3d:99:a8:8a:85:51:bf:9a:9a:f8:7f:f7:
de:e3:e4:d7:ed:f5:15:65:85:67:fe:18:21:8e:b6:
5f:4c:1a:2f:60:90:8a:cf:94:c7:cc:45:c8:1f:e2:
7f:6f:10:af:b4:c7:d2:44:fe:f0:e7:25:69:52:b7:
a4:c3:35:3c:4f:5d:5b:8a:62:a0:84:e0:7e:66:cf:
de:cb:ef:1f:ea:dd:e2:d1:a8:77:e2:f7:de:b1:e1:
3c:5f:93:29:9a:fc:d2:06:15:45:bb:3a:70:f5:27:
46:1f:7d:df:fe:29:77:57:4c:36:3f:d8:f8:b7:0c:
38:91:ae:72:75:09:54:76:4b:6b:13:91:41:ad:1a:
ef:19:b6:1b:7b:67:dd:2c:27:43:90:96:41:b8:35:
ea:ab:92:31:91:20:e7:41:eb:58:07:f1:c3:0c:1e:
eb:31:7e:c1:5c:97:16:01:da:d6:86:0c:02:b5:8e:
70:05:e0:f2:c9:84:ac:04:fb:bf:35:a4:3a:62:e4:
c9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:57:10:30:95:DF:B2:81:80:01:CB:D5:EB:82:97:1E:F4:91:42:4A
X509v3 Authority Key Identifier:
keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/E13F8A68B3B011EF831E2748C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
110.164.184.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:f4:6a:3f:d4:b7:da:69:77:b0:6d:71:68:7b:80:cf:84:70:
7f:24:b5:b5:b3:db:50:36:c6:86:77:8b:83:5f:0d:59:f4:cb:
f2:4a:9b:88:b8:17:94:40:9b:7c:58:92:ae:8e:66:0c:a9:a1:
6f:ab:bf:a3:78:74:80:22:35:1e:71:c0:bf:71:53:96:c5:e3:
ff:da:30:86:a4:54:98:50:2b:f2:6c:6f:fa:80:0d:2b:93:a5:
dc:9b:79:25:e7:a3:e6:f1:f0:47:a1:80:3d:bb:fb:28:db:17:
39:ee:66:b0:7f:4c:14:a5:26:fc:d7:62:05:7c:d3:42:d5:5e:
58:c4:a9:f6:8c:9d:83:34:82:7f:49:9f:74:ce:1a:50:84:39:
45:72:1f:ef:d5:36:7a:4d:2b:0e:14:c6:05:c7:32:f3:c7:d9:
6d:7b:5f:69:3b:f9:4f:4e:29:ed:9b:8a:ac:5e:22:4a:f8:08:
39:5f:58:df:44:4b:62:01:ea:cd:af:eb:b9:d0:f7:cc:a4:80:
b6:7a:26:d5:0a:31:77:27:a5:a9:59:da:0e:8f:85:13:5a:67:
1b:46:a2:e0:10:b5:e8:02:d9:fd:19:df:fe:07:cd:e0:7a:ae:
37:59:f0:d0:59:71:95:8d:b0:9d:e6:47:0d:99:28:3a:3b:f6:
e7:1f:63:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 08:16:53 2025 by rpki-client