Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/9461B15C144611EBA5418244C4F9AE02.roa
File: 9461B15C144611EBA5418244C4F9AE02.roa (raw, json)
Hash identifier: iG175TkA9SkQUz6M6vAKqQX6srvggz/70d9VSpafPvs=
Subject key identifier: E0:D1:B1:24:A6:A5:F4:C2:45:37:E7:E9:8E:A2:8A:E3:36:FD:B3:CF
Certificate issuer: /CN=A91275FD/serialNumber=5EBDD4D5F36C6AA59B012C9E899AAD3C27EAD8ED
Certificate serial: 239D
Authority key identifier: 5E:BD:D4:D5:F3:6C:6A:A5:9B:01:2C:9E:89:9A:AD:3C:27:EA:D8:ED
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/9461B15C144611EBA5418244C4F9AE02.roa
Signing time: Tue 02 May 2023 16:32:55 +0000
ROA not before: Tue 02 May 2023 16:32:54 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 23944
IP address blocks: 130.105.0.0/16 maxlen: 16
130.105.0.0/22 maxlen: 22
130.105.0.0/24 maxlen: 24
130.105.1.0/24 maxlen: 24
130.105.4.0/22 maxlen: 22
130.105.8.0/22 maxlen: 22
130.105.12.0/22 maxlen: 22
130.105.16.0/22 maxlen: 22
130.105.20.0/22 maxlen: 22
130.105.24.0/22 maxlen: 22
130.105.28.0/22 maxlen: 22
130.105.32.0/22 maxlen: 22
130.105.36.0/22 maxlen: 22
130.105.40.0/22 maxlen: 22
130.105.44.0/22 maxlen: 22
130.105.48.0/22 maxlen: 22
130.105.52.0/22 maxlen: 22
130.105.56.0/22 maxlen: 22
130.105.60.0/22 maxlen: 22
130.105.64.0/22 maxlen: 22
130.105.68.0/22 maxlen: 22
130.105.72.0/22 maxlen: 22
130.105.76.0/22 maxlen: 22
130.105.80.0/22 maxlen: 22
130.105.84.0/22 maxlen: 22
130.105.88.0/22 maxlen: 22
130.105.92.0/22 maxlen: 22
130.105.96.0/22 maxlen: 22
130.105.100.0/22 maxlen: 22
130.105.104.0/22 maxlen: 22
130.105.108.0/22 maxlen: 22
130.105.112.0/22 maxlen: 22
130.105.116.0/22 maxlen: 22
130.105.120.0/22 maxlen: 22
130.105.124.0/22 maxlen: 22
130.105.128.0/22 maxlen: 22
130.105.132.0/22 maxlen: 22
130.105.136.0/22 maxlen: 22
130.105.140.0/22 maxlen: 22
130.105.144.0/22 maxlen: 22
130.105.148.0/22 maxlen: 22
130.105.152.0/22 maxlen: 22
130.105.154.0/24 maxlen: 24
130.105.156.0/22 maxlen: 22
130.105.160.0/22 maxlen: 22
130.105.164.0/22 maxlen: 22
130.105.168.0/22 maxlen: 22
130.105.172.0/22 maxlen: 22
130.105.176.0/22 maxlen: 22
130.105.180.0/22 maxlen: 22
130.105.184.0/22 maxlen: 22
130.105.188.0/22 maxlen: 22
130.105.192.0/22 maxlen: 22
130.105.196.0/22 maxlen: 22
130.105.200.0/22 maxlen: 22
130.105.204.0/22 maxlen: 22
130.105.208.0/22 maxlen: 22
130.105.212.0/22 maxlen: 22
130.105.216.0/22 maxlen: 22
130.105.220.0/22 maxlen: 22
130.105.224.0/22 maxlen: 22
130.105.228.0/22 maxlen: 22
130.105.232.0/22 maxlen: 22
130.105.236.0/22 maxlen: 22
130.105.240.0/22 maxlen: 22
130.105.244.0/22 maxlen: 22
130.105.248.0/22 maxlen: 22
130.105.252.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.crl
rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9117 (0x239d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91275FD/serialNumber=5EBDD4D5F36C6AA59B012C9E899AAD3C27EAD8ED
Validity
Not Before: May 2 16:32:54 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=64513b36-c0bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:05:04:37:65:9a:f0:a2:c8:38:2c:eb:f4:75:
ad:8d:17:28:73:fa:48:4e:db:da:36:72:1b:02:cd:
d4:f7:2a:de:1d:7e:6d:7f:66:07:cf:99:ff:ea:dc:
a4:7a:e3:0b:9e:26:6a:84:3b:24:35:8f:dd:c6:12:
66:71:17:c3:17:20:cf:c7:c8:b9:0e:11:11:33:6c:
27:3f:0e:36:0f:ca:0d:b0:9f:b1:d8:a3:98:86:36:
e9:bb:1b:a2:d9:5f:bb:68:c5:07:c1:da:9c:82:a4:
9a:58:27:fe:e1:6b:24:6e:15:80:2a:eb:3f:99:c3:
80:80:38:fd:3f:f9:4d:ca:19:3b:2c:fc:43:43:75:
e8:15:6a:48:00:50:5c:8f:1d:60:29:01:34:e4:b5:
97:49:c4:72:c8:3d:d1:2a:3f:0a:88:6c:b3:6f:4c:
de:75:a8:d0:e8:20:0a:e2:6c:03:e8:6c:8b:48:d1:
70:4b:e4:d6:b2:29:40:5d:e4:9d:8a:93:3e:70:46:
af:c9:16:80:3f:02:a9:1f:2c:0e:7b:de:ed:0b:f9:
cb:bb:61:3b:67:cc:60:04:62:e6:88:b2:10:8b:b5:
3d:27:bf:8b:4f:36:f1:65:76:7b:c2:76:0a:89:e4:
f5:6f:ad:5d:b2:44:97:69:83:24:93:6e:db:53:34:
b6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D1:B1:24:A6:A5:F4:C2:45:37:E7:E9:8E:A2:8A:E3:36:FD:B3:CF
X509v3 Authority Key Identifier:
keyid:5E:BD:D4:D5:F3:6C:6A:A5:9B:01:2C:9E:89:9A:AD:3C:27:EA:D8:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/9461B15C144611EBA5418244C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
130.105.0.0/16
Signature Algorithm: sha256WithRSAEncryption
51:c9:6b:0b:da:53:a4:29:53:09:f7:a4:76:bb:d6:a7:52:28:
f5:c0:b0:7d:b6:f3:b7:61:aa:36:b3:55:8a:89:04:0e:d7:00:
9c:93:26:dc:d6:d2:ed:0d:3c:6b:f4:5b:54:33:43:89:85:07:
c0:07:25:24:7b:44:a5:d1:3f:82:3a:e3:ce:1e:54:9f:07:8a:
f5:8c:fb:3a:ce:0e:41:7f:00:ad:89:8b:b8:ea:c6:d5:e1:13:
01:fc:ba:2d:05:0b:d7:03:c8:15:3a:49:53:aa:de:b9:b8:cb:
67:d4:37:8e:c5:4c:c5:0e:28:62:c2:ca:99:4e:13:e4:58:59:
71:6d:8d:99:e5:19:64:eb:a6:ef:1f:c4:41:65:7c:d7:54:ea:
d8:4a:da:a9:db:61:84:fc:ef:d3:d3:9a:ac:61:77:4a:5d:5e:
e1:b3:2d:bb:71:25:a5:7a:1f:c2:b2:61:69:14:9f:88:36:db:
62:79:3f:bd:9b:a1:41:47:a0:69:78:d3:0a:9b:92:62:7b:ae:
20:9f:35:15:d8:48:fa:6d:2c:23:21:76:21:e4:bc:40:73:58:
bf:6e:ec:0d:3c:83:6a:43:b4:db:38:94:c8:7a:de:18:f4:34:
9f:17:02:fb:f5:66:49:93:b4:d4:19:7c:a3:1d:25:55:82:c4:
a6:3b:02:5b
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgICI50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Mjc1RkQxMTAvBgNVBAUTKDVFQkRENEQ1RjM2QzZBQTU5QjAxMkM5RTg5OUFBRDND
MjdFQUQ4RUQwHhcNMjMwNTAyMTYzMjU0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDUxM2IzNi1jMGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2AUEN2Wa8KLIOCzr9HWtjRcoc/pITtvaNnIbAs3U9yreHX5tf2YHz5n/6tyk
euMLniZqhDskNY/dxhJmcRfDFyDPx8i5DhERM2wnPw42D8oNsJ+x2KOYhjbpuxui
2V+7aMUHwdqcgqSaWCf+4WskbhWAKus/mcOAgDj9P/lNyhk7LPxDQ3XoFWpIAFBc
jx1gKQE05LWXScRyyD3RKj8KiGyzb0zedajQ6CAK4mwD6GyLSNFwS+TWsilAXeSd
ipM+cEavyRaAPwKpHywOe97tC/nLu2E7Z8xgBGLmiLIQi7U9J7+LTzbxZXZ7wnYK
ieT1b61dskSXaYMkk27bUzS2oQIDAQABo4IClDCCApAwHQYDVR0OBBYEFODRsSSm
pfTCRTfn6Y6iiuM2/bPPMB8GA1UdIwQYMBaAFF691NXzbGqlmwEsnomarTwn6tjt
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVGRC9GNDhBRDEyMjI2
RDkxMUU1QjI0REE2MzNDNEY5QUUwMi9YcjNVMWZOc2FxV2JBU3llaVpxdFBDZnEy
TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL1hyM1UxZk5zYXFXYkFTeWVpWnF0UENmcTJPMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Mjc1RkQvRjQ4QUQxMjIyNkQ5MTFFNUIyNERBNjMzQzRGOUFFMDIvOTQ2MUIxNUMx
NDQ2MTFFQkE1NDE4MjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E
DzANMAsEAgABMAUDAwCCaTANBgkqhkiG9w0BAQsFAAOCAQEAUclrC9pTpClTCfek
drvWp1Io9cCwfbbzt2GqNrNViokEDtcAnJMm3NbS7Q08a/RbVDNDiYUHwAclJHtE
pdE/gjrjzh5UnweK9Yz7Os4OQX8ArYmLuOrG1eETAfy6LQUL1wPIFTpJU6reubjL
Z9Q3jsVMxQ4oYsLKmU4T5FhZcW2NmeUZZOum7x/EQWV811Tq2EraqdthhPzv09Oa
rGF3Sl1e4bMtu3ElpXofwrJhaRSfiDbbYnk/vZuhQUegaXjTCpuSYnuuIJ81FdhI
+m0sIyF2IeS8QHNYv27sDTyDakO02ziUyHreGPQ0nxcC+/VmSZO01Bl8ox0lVYLE
pjsCWw==
-----END CERTIFICATE-----
Generated at Thu Apr 18 18:16:01 2024 by rpki-client on console-fra.rpki-client.org