Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/7F81B29AD24311EFA5E5B012C4F9AE02.roa
File: 7F81B29AD24311EFA5E5B012C4F9AE02.roa (raw, json)
Hash identifier: bBRIJf+7fUSvuqh5dd6ayigZtBMms6tUQ/qVmqSY6fs=
Subject key identifier: 48:A6:B1:D6:07:1F:FE:9B:A3:4E:66:8A:35:2B:F3:68:D4:58:79:58
Certificate issuer: /CN=A912176D/serialNumber=96F42E19F69D596A0318921590A17DD53233E595
Certificate serial: 07A3
Authority key identifier: 96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/7F81B29AD24311EFA5E5B012C4F9AE02.roa
Signing time: Tue 14 Jan 2025 06:48:02 +0000
ROA not before: Tue 14 Jan 2025 06:48:02 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 55720
IP address blocks: 14.192.67.0/24 maxlen: 24
14.192.68.0/24 maxlen: 24
14.192.69.0/24 maxlen: 24
43.225.36.0/24 maxlen: 24
43.225.37.0/24 maxlen: 24
43.225.38.0/24 maxlen: 24
43.225.39.0/24 maxlen: 24
43.231.5.0/24 maxlen: 24
43.231.6.0/24 maxlen: 24
43.231.7.0/24 maxlen: 24
45.116.160.0/24 maxlen: 24
45.116.161.0/24 maxlen: 24
45.116.162.0/24 maxlen: 24
45.116.163.0/24 maxlen: 24
45.120.52.0/24 maxlen: 24
45.120.53.0/24 maxlen: 24
45.120.54.0/24 maxlen: 24
45.120.55.0/24 maxlen: 24
61.4.96.0/24 maxlen: 24
61.4.97.0/24 maxlen: 24
61.4.98.0/24 maxlen: 24
61.4.99.0/24 maxlen: 24
61.4.100.0/22 maxlen: 24
61.4.104.0/22 maxlen: 24
61.4.109.0/24 maxlen: 24
61.4.110.0/24 maxlen: 24
61.4.111.0/24 maxlen: 24
103.4.28.0/24 maxlen: 24
103.4.29.0/24 maxlen: 24
103.4.30.0/24 maxlen: 24
103.4.31.0/24 maxlen: 24
103.15.104.0/24 maxlen: 24
103.15.105.0/24 maxlen: 24
103.15.106.0/24 maxlen: 24
103.15.107.0/24 maxlen: 24
103.21.88.0/24 maxlen: 24
103.21.89.0/24 maxlen: 24
103.21.90.0/24 maxlen: 24
103.21.91.0/24 maxlen: 24
103.23.46.0/24 maxlen: 24
103.23.47.0/24 maxlen: 24
103.71.176.0/24 maxlen: 24
103.71.177.0/24 maxlen: 24
103.71.178.0/24 maxlen: 24
103.71.179.0/24 maxlen: 24
103.243.212.0/24 maxlen: 24
103.243.213.0/24 maxlen: 24
103.243.214.0/24 maxlen: 24
103.243.215.0/24 maxlen: 24
103.246.112.0/24 maxlen: 24
103.246.113.0/24 maxlen: 24
103.246.114.0/24 maxlen: 24
103.246.115.0/24 maxlen: 24
118.107.212.0/24 maxlen: 24
118.107.213.0/24 maxlen: 24
118.107.214.0/24 maxlen: 24
118.107.215.0/24 maxlen: 24
118.107.216.0/24 maxlen: 24
118.107.217.0/24 maxlen: 24
118.107.218.0/24 maxlen: 24
118.107.219.0/24 maxlen: 24
118.107.220.0/24 maxlen: 24
118.107.221.0/24 maxlen: 24
118.107.222.0/24 maxlen: 24
118.107.223.0/24 maxlen: 24
150.107.76.0/24 maxlen: 24
150.107.77.0/24 maxlen: 24
150.107.78.0/24 maxlen: 24
150.107.79.0/24 maxlen: 24
202.9.36.0/24 maxlen: 24
202.9.37.0/24 maxlen: 24
202.9.38.0/24 maxlen: 24
202.9.39.0/24 maxlen: 24
202.73.12.0/24 maxlen: 24
202.73.13.0/24 maxlen: 24
202.73.14.0/24 maxlen: 24
202.73.15.0/24 maxlen: 24
202.87.220.0/24 maxlen: 24
202.87.221.0/24 maxlen: 24
202.87.222.0/24 maxlen: 24
202.87.223.0/24 maxlen: 24
223.25.240.0/24 maxlen: 24
223.25.241.0/24 maxlen: 24
223.25.242.0/24 maxlen: 24
223.25.243.0/24 maxlen: 24
223.25.244.0/24 maxlen: 24
223.25.245.0/24 maxlen: 24
223.25.246.0/24 maxlen: 24
223.25.247.0/24 maxlen: 24
2402:9500::/32 maxlen: 32
2402:9500::/48 maxlen: 48
2402:9500:a00::/48 maxlen: 48
2402:9500:b00::/48 maxlen: 48
2402:9500:c00::/48 maxlen: 48
2402:9500:d00::/48 maxlen: 48
2402:9500:1000::/48 maxlen: 48
2402:9500:2000::/48 maxlen: 48
2402:9500:3000::/48 maxlen: 48
2402:9500:4000::/48 maxlen: 48
2402:9500:5000::/48 maxlen: 48
2402:9500:6000::/48 maxlen: 48
2402:9500:7000::/48 maxlen: 48
2402:9500:8000::/48 maxlen: 48
2402:9500:9000::/48 maxlen: 48
2402:9500:e000::/48 maxlen: 48
2402:9500:f000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.crl
rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 25 Feb 2025 22:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1955 (0x7a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912176D
Validity
Not Before: Jan 14 06:48:02 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=678608a1-db90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a4:7a:b4:5e:27:eb:f4:88:ba:2a:e2:0a:b9:
7b:94:23:ef:0e:cf:6f:37:09:ef:c7:71:52:3c:99:
91:71:37:36:20:ac:7e:73:7a:c7:e4:fa:20:e4:38:
1a:f6:2e:26:d4:5a:d1:ff:33:1c:94:f7:23:f7:cf:
8a:38:22:ed:b8:e4:9b:c5:bd:4b:8f:a1:06:36:e5:
7d:c4:9f:d9:68:a6:db:f3:ff:8d:f3:7e:fb:1c:f1:
37:b1:72:27:e8:6c:9c:79:9e:96:45:3c:7d:fc:14:
b8:f5:21:7d:e8:86:90:39:25:97:49:70:e6:97:02:
fb:f4:ea:5c:e9:5d:fb:13:ab:c6:b4:d8:03:b5:86:
ed:11:9a:9c:c7:23:ab:17:94:51:e6:20:2d:47:c1:
43:de:de:7a:c6:df:45:e6:80:3f:96:29:89:7f:a3:
53:7b:11:09:59:bb:47:5d:f7:bd:08:92:ef:b1:e3:
db:fc:6d:3b:20:18:80:70:81:dc:05:37:11:a5:9a:
18:2d:94:6c:18:51:27:59:26:55:87:15:3c:69:a3:
ea:b8:fa:91:4e:95:c8:ed:75:b3:c2:26:4a:6a:06:
94:0c:67:b1:ea:0b:9d:74:ec:16:a6:29:cc:da:bf:
63:52:bd:72:f9:e3:22:97:e9:39:7e:94:f7:65:9c:
46:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:A6:B1:D6:07:1F:FE:9B:A3:4E:66:8A:35:2B:F3:68:D4:58:79:58
X509v3 Authority Key Identifier:
keyid:96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/7F81B29AD24311EFA5E5B012C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.67.0-14.192.69.255
43.225.36.0/22
43.231.5.0-43.231.7.255
45.116.160.0/22
45.120.52.0/22
61.4.96.0-61.4.107.255
61.4.109.0-61.4.111.255
103.4.28.0/22
103.15.104.0/22
103.21.88.0/22
103.23.46.0/23
103.71.176.0/22
103.243.212.0/22
103.246.112.0/22
118.107.212.0-118.107.223.255
150.107.76.0/22
202.9.36.0/22
202.73.12.0/22
202.87.220.0/22
223.25.240.0/21
IPv6:
2402:9500::/32
Signature Algorithm: sha256WithRSAEncryption
37:2e:5c:5b:92:e0:14:43:cc:23:96:16:14:da:65:36:40:ef:
07:06:00:44:f8:d0:4e:7e:98:f7:8b:07:0d:72:c2:f5:bf:b6:
6c:45:72:13:a4:a2:81:91:cc:47:a9:94:35:78:c7:bc:e5:ce:
9b:85:3d:3b:8e:a1:37:d3:d3:16:24:65:68:e0:51:7a:d9:d8:
86:54:60:1d:67:9d:18:83:a5:c6:74:8e:ab:92:53:69:c8:d4:
be:c5:1f:aa:03:bf:92:63:d2:a4:95:49:fe:ea:78:52:18:5d:
07:22:09:db:b9:bf:16:1b:00:ec:77:0e:d4:32:1f:79:36:07:
82:b1:dc:81:e3:02:4c:2e:93:d7:53:53:8f:c5:f6:57:c4:44:
1d:41:66:02:bd:59:53:34:8b:35:11:b9:1c:4a:be:fd:dd:b9:
10:99:91:7e:4b:55:b1:99:a7:04:41:cf:a8:9c:5b:f5:3f:3c:
39:50:6c:88:12:06:26:25:53:cf:45:1e:11:d6:3f:55:5d:ad:
2d:51:d7:60:65:fb:83:ec:a7:0b:b2:a2:80:1a:d8:3f:b4:8c:
9f:ca:b2:6d:a2:a3:6d:be:17:64:e3:2c:6f:db:cb:e0:82:99:
3b:f7:26:21:fe:2a:27:b1:26:7c:75:b6:f2:1d:89:91:22:35:
7f:93:88:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:21 2025 by rpki-client