Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/D0B10316030C11EF89EB2145C4F9AE02.roa
File: D0B10316030C11EF89EB2145C4F9AE02.roa (raw, json)
Hash identifier: PhzXlVkBrcWFjlbU535lKzJC+7r4kf8GECsoiMyE1lo=
Subject key identifier: B5:5E:F6:51:1C:45:05:08:36:79:3E:08:15:F9:DA:E4:20:18:D1:3F
Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6
Certificate serial: 0C18
Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/D0B10316030C11EF89EB2145C4F9AE02.roa
Signing time: Wed 06 Nov 2024 19:08:52 +0000
ROA not before: Wed 06 Nov 2024 19:08:52 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 4788
IP address blocks: 1.9.0.0/16 maxlen: 24
1.32.0.0/17 maxlen: 19
27.146.0.0/16 maxlen: 21
27.146.0.0/17 maxlen: 24
27.146.128.0/18 maxlen: 24
27.146.192.0/19 maxlen: 24
27.146.224.0/20 maxlen: 24
27.146.240.0/21 maxlen: 24
27.146.248.0/22 maxlen: 22
27.146.248.0/23 maxlen: 23
27.146.248.0/24 maxlen: 24
42.153.5.0/24 maxlen: 24
42.153.200.0/22 maxlen: 22
42.153.204.0/22 maxlen: 22
42.188.0.0/14 maxlen: 19
45.116.240.0/22 maxlen: 22
45.116.244.0/22 maxlen: 24
58.26.0.0/16 maxlen: 16
58.26.0.0/16 maxlen: 24
58.26.0.0/17 maxlen: 18
58.27.0.0/17 maxlen: 24
58.139.0.0/16 maxlen: 17
58.139.0.0/17 maxlen: 24
58.139.128.0/18 maxlen: 21
58.139.128.0/19 maxlen: 24
58.139.160.0/20 maxlen: 24
58.139.176.0/21 maxlen: 24
58.139.184.0/22 maxlen: 22
58.139.184.0/23 maxlen: 24
60.48.0.0/14 maxlen: 18
60.48.0.0/15 maxlen: 22
60.50.0.0/16 maxlen: 22
60.51.0.0/18 maxlen: 22
60.51.64.0/19 maxlen: 20
60.51.64.0/20 maxlen: 22
60.51.80.0/21 maxlen: 22
60.52.0.0/15 maxlen: 20
60.52.0.0/16 maxlen: 23
60.53.0.0/17 maxlen: 23
60.53.128.0/18 maxlen: 23
60.53.192.0/19 maxlen: 23
60.53.224.0/20 maxlen: 23
60.53.240.0/21 maxlen: 21
60.53.240.0/22 maxlen: 22
60.53.240.0/23 maxlen: 23
60.54.0.0/16 maxlen: 22
103.1.104.0/22 maxlen: 22
103.4.140.0/22 maxlen: 22
103.4.140.0/23 maxlen: 24
103.4.142.0/23 maxlen: 24
110.159.0.0/16 maxlen: 22
114.133.0.0/16 maxlen: 21
114.133.0.0/17 maxlen: 24
114.133.128.0/18 maxlen: 24
114.133.192.0/19 maxlen: 24
114.133.224.0/20 maxlen: 24
114.133.240.0/21 maxlen: 24
115.132.0.0/14 maxlen: 22
115.135.42.0/23 maxlen: 23
118.100.0.0/16 maxlen: 22
118.101.0.0/16 maxlen: 22
120.140.0.0/15 maxlen: 15
120.140.0.0/19 maxlen: 19
120.140.32.0/19 maxlen: 19
120.140.66.0/24 maxlen: 24
120.140.67.0/24 maxlen: 24
124.13.0.0/16 maxlen: 22
124.82.0.0/16 maxlen: 21
175.136.0.0/13 maxlen: 21
175.142.248.0/22 maxlen: 22
175.144.0.0/15 maxlen: 22
175.145.77.0/24 maxlen: 24
180.72.0.0/14 maxlen: 22
202.171.192.0/20 maxlen: 24
202.178.0.0/19 maxlen: 19
202.178.32.0/19 maxlen: 24
202.178.64.0/20 maxlen: 24
202.188.0.0/16 maxlen: 24
202.188.0.0/17 maxlen: 24
202.188.0.0/18 maxlen: 24
202.188.64.0/18 maxlen: 24
202.188.68.0/22 maxlen: 24
202.188.72.0/24 maxlen: 24
202.188.76.0/22 maxlen: 24
202.188.80.0/23 maxlen: 24
202.188.84.0/23 maxlen: 24
202.188.86.0/23 maxlen: 24
202.188.88.0/23 maxlen: 24
202.188.128.0/17 maxlen: 24
202.188.128.0/18 maxlen: 24
202.188.192.0/18 maxlen: 24
202.188.192.0/19 maxlen: 24
202.188.224.0/19 maxlen: 24
203.106.0.0/16 maxlen: 24
203.106.0.0/17 maxlen: 24
203.106.0.0/18 maxlen: 24
203.106.32.0/19 maxlen: 24
203.106.64.0/18 maxlen: 24
203.106.64.0/22 maxlen: 22
203.106.68.0/22 maxlen: 24
203.106.72.0/22 maxlen: 24
203.106.85.0/24 maxlen: 24
203.106.96.0/23 maxlen: 24
203.106.98.0/24 maxlen: 24
203.106.99.0/24 maxlen: 24
203.106.100.0/23 maxlen: 24
203.106.112.0/23 maxlen: 24
203.106.114.0/23 maxlen: 24
203.106.116.0/23 maxlen: 24
203.106.128.0/17 maxlen: 17
203.106.128.0/17 maxlen: 24
203.106.128.0/18 maxlen: 24
203.106.192.0/18 maxlen: 24
203.106.192.0/19 maxlen: 24
210.186.0.0/16 maxlen: 24
210.186.16.0/24 maxlen: 24
210.186.17.0/24 maxlen: 24
210.186.18.0/24 maxlen: 24
210.186.20.0/24 maxlen: 24
210.186.21.0/24 maxlen: 24
210.186.27.0/24 maxlen: 24
210.186.30.0/24 maxlen: 24
210.186.33.0/24 maxlen: 24
210.186.100.0/22 maxlen: 24
210.186.104.0/22 maxlen: 24
210.186.108.0/22 maxlen: 24
210.186.112.0/22 maxlen: 24
210.186.116.0/22 maxlen: 24
210.186.120.0/22 maxlen: 24
210.186.124.0/22 maxlen: 24
210.186.192.0/21 maxlen: 24
210.186.200.0/21 maxlen: 24
210.186.208.0/21 maxlen: 24
210.186.216.0/22 maxlen: 24
210.186.220.0/22 maxlen: 24
210.186.224.0/21 maxlen: 24
210.186.232.0/21 maxlen: 24
210.186.240.0/21 maxlen: 24
210.186.248.0/22 maxlen: 24
210.187.0.0/16 maxlen: 24
210.187.42.0/24 maxlen: 24
210.187.54.0/24 maxlen: 24
210.187.64.0/18 maxlen: 24
210.187.208.0/21 maxlen: 21
210.187.216.0/21 maxlen: 21
210.187.224.0/21 maxlen: 21
210.187.232.0/21 maxlen: 21
210.187.240.0/21 maxlen: 21
210.187.248.0/21 maxlen: 21
210.195.0.0/16 maxlen: 21
218.111.0.0/16 maxlen: 18
218.208.0.0/16 maxlen: 24
219.92.0.0/16 maxlen: 24
219.93.0.0/16 maxlen: 24
219.94.0.0/17 maxlen: 18
219.94.0.0/18 maxlen: 24
219.95.0.0/16 maxlen: 21
2001:e68::/32 maxlen: 64
2001:e68::/35 maxlen: 35
2001:e68:2::/56 maxlen: 56
2001:e68:2000::/48 maxlen: 48
2001:e68:2001::/64 maxlen: 64
2001:e68:2001:1::/64 maxlen: 64
2001:e68:2001:2::/63 maxlen: 63
2001:e68:2001:4::/62 maxlen: 62
2001:e68:2001:8::/61 maxlen: 61
2001:e68:2001:10::/60 maxlen: 60
2001:e68:2001:20::/59 maxlen: 59
2001:e68:2001:40::/58 maxlen: 58
2001:e68:2001:80::/57 maxlen: 57
2001:e68:2001:100::/56 maxlen: 56
2001:e68:2001:200::/55 maxlen: 55
2001:e68:2001:400::/54 maxlen: 54
2001:e68:2001:800::/53 maxlen: 53
2001:e68:2001:1000::/52 maxlen: 52
2001:e68:2001:2000::/51 maxlen: 51
2001:e68:2001:4000::/50 maxlen: 50
2001:e68:2001:8000::/49 maxlen: 49
2001:e68:2002::/47 maxlen: 47
2001:e68:2004::/46 maxlen: 46
2001:e68:2008::/45 maxlen: 45
2001:e68:2010::/44 maxlen: 44
2001:e68:2020::/43 maxlen: 43
2001:e68:2040::/42 maxlen: 42
2001:e68:2080::/41 maxlen: 41
2001:e68:2100::/40 maxlen: 40
2001:e68:2200::/39 maxlen: 39
2001:e68:2400::/38 maxlen: 38
2001:e68:2800::/37 maxlen: 37
2001:e68:3000::/36 maxlen: 36
2001:e68:4000::/34 maxlen: 34
2001:e68:8000::/33 maxlen: 33
2001:4470::/32 maxlen: 32
2401:3c00:202::/47 maxlen: 47
2401:3c00:204::/47 maxlen: 47
2401:3c00:206::/47 maxlen: 47
2401:3c00:208::/47 maxlen: 47
2401:3c00:20a::/47 maxlen: 47
2401:3c00:20c::/47 maxlen: 47
2401:3c00:20e::/47 maxlen: 47
2401:3c00:210::/47 maxlen: 47
2401:3c00:212::/47 maxlen: 47
2401:3c00:214::/47 maxlen: 47
2401:3c00:216::/47 maxlen: 47
2401:3c00:218::/47 maxlen: 47
2401:3c00:21e::/47 maxlen: 47
2401:3c00:220::/47 maxlen: 47
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl
rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 27 Nov 2024 18:42:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3096 (0xc18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6
Validity
Not Before: Nov 6 19:08:52 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=672bbec4-7e8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e4:ad:21:f3:e6:57:6a:d9:02:ed:93:3c:78:
d5:62:a2:bc:03:3d:07:49:3b:b2:44:21:d3:e2:eb:
7e:41:c0:3e:8c:d3:e7:4c:a5:c9:21:0e:14:51:18:
ca:28:48:1a:c0:a5:e0:26:ba:58:ff:fb:b3:00:1e:
c3:a6:7e:19:37:4e:3a:df:5f:7e:f7:a3:9b:f0:17:
a6:11:a8:2b:66:c2:a7:80:d4:ac:05:68:43:4c:fd:
2e:4f:3a:e1:ac:67:44:af:4d:6e:e2:fb:c5:b9:16:
bd:c5:23:6c:1c:33:5c:f4:25:91:27:8f:b5:1a:55:
79:76:9c:21:b6:4a:1d:16:ca:35:ed:cb:e4:6c:e1:
ea:b4:89:d9:bc:44:84:26:c1:27:95:87:23:bd:eb:
5a:7a:69:0a:92:ad:e3:40:2b:f3:33:cb:86:ed:9b:
98:a2:46:fe:98:a4:b6:38:ea:f4:a7:e2:ed:b1:50:
35:a6:b3:66:58:dd:fb:80:51:f0:0f:e1:27:18:5f:
6d:72:48:29:d0:96:a6:88:7d:0a:ea:c0:2f:96:15:
62:52:59:ce:26:b0:4c:4a:0a:ae:a4:34:bf:41:23:
5d:c1:a7:75:68:f4:6f:73:a5:72:3f:a6:5f:64:7c:
67:c4:48:94:01:f5:34:84:e9:cb:4a:e2:63:a2:58:
3a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:5E:F6:51:1C:45:05:08:36:79:3E:08:15:F9:DA:E4:20:18:D1:3F
X509v3 Authority Key Identifier:
keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/D0B10316030C11EF89EB2145C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.9.0.0/16
1.32.0.0/17
27.146.0.0/16
42.153.5.0/24
42.153.200.0/21
42.188.0.0/14
45.116.240.0/21
58.26.0.0-58.27.127.255
58.139.0.0/16
60.48.0.0-60.54.255.255
103.1.104.0/22
103.4.140.0/22
110.159.0.0/16
114.133.0.0/16
115.132.0.0/14
118.100.0.0/15
120.140.0.0/15
124.13.0.0/16
124.82.0.0/16
175.136.0.0-175.145.255.255
180.72.0.0/14
202.171.192.0/20
202.178.0.0-202.178.79.255
202.188.0.0/16
203.106.0.0/16
210.186.0.0/15
210.195.0.0/16
218.111.0.0/16
218.208.0.0/16
219.92.0.0-219.94.127.255
219.95.0.0/16
IPv6:
2001:e68::/32
2001:4470::/32
2401:3c00:202::-2401:3c00:219:ffff:ffff:ffff:ffff:ffff
2401:3c00:21e::-2401:3c00:221:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
5d:45:cd:13:46:87:02:36:45:a2:72:4a:02:aa:e7:01:a1:28:
7f:b2:0f:a2:80:54:62:2f:11:fa:4e:8d:b4:15:cb:25:61:67:
5c:8a:83:79:9f:85:57:6a:82:38:dc:9d:ed:72:1f:49:2d:36:
f9:fe:bc:53:16:ef:20:c3:79:01:ac:98:72:e5:82:0b:9a:a2:
8f:e5:a3:d3:0c:f5:93:fa:29:0d:ce:a5:7a:71:bf:e9:c4:8e:
77:b8:04:7d:e7:07:3d:d5:bd:0c:34:42:36:9b:09:09:88:a3:
65:30:eb:2c:1b:ae:1e:0a:4a:fa:a8:30:2c:81:48:3a:93:4f:
2c:d2:b5:9f:97:75:d8:12:64:63:b2:79:9b:6e:a8:be:a9:92:
70:94:f1:33:1f:c8:10:4a:d9:ac:7e:da:19:fa:11:66:be:6b:
4d:10:e2:d1:11:58:eb:f6:b7:3a:6d:0c:0c:db:3d:f8:ae:36:
d8:e1:19:76:4a:63:2f:a5:cf:ea:6d:ce:75:72:6b:57:3a:25:
05:ae:51:55:a4:b0:c7:60:4c:ad:82:10:f8:f4:1b:8f:81:35:
09:5f:26:d8:0c:35:7b:70:c3:da:e4:8e:92:70:03:6a:7c:9e:
63:02:93:ce:68:bd:f3:d5:c8:12:b0:2e:11:13:30:52:b5:35:
d9:0b:24:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 20:07:21 2024 by rpki-client on console-fra.rpki-client.org