Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/9461B15C144611EBA5418244C4F9AE02.roa
File: 9461B15C144611EBA5418244C4F9AE02.roa (raw, json)
Hash identifier: A+fjTwtG6/7wteTJpdAw9ZNsTS7E+yeIkAmgl1S9yHk=
Subject key identifier: 90:AB:E6:19:33:48:87:A3:EB:53:55:41:C1:97:23:83:90:12:C4:96
Certificate issuer: /CN=A91275FD/serialNumber=5EBDD4D5F36C6AA59B012C9E899AAD3C27EAD8ED
Certificate serial: 2462
Authority key identifier: 5E:BD:D4:D5:F3:6C:6A:A5:9B:01:2C:9E:89:9A:AD:3C:27:EA:D8:ED
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/9461B15C144611EBA5418244C4F9AE02.roa
Signing time: Wed 08 May 2024 16:33:10 +0000
ROA not before: Wed 08 May 2024 16:33:10 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 23944
IP address blocks: 130.105.0.0/16 maxlen: 16
130.105.0.0/22 maxlen: 22
130.105.0.0/24 maxlen: 24
130.105.1.0/24 maxlen: 24
130.105.4.0/22 maxlen: 22
130.105.8.0/22 maxlen: 22
130.105.12.0/22 maxlen: 22
130.105.16.0/22 maxlen: 22
130.105.20.0/22 maxlen: 22
130.105.24.0/22 maxlen: 22
130.105.28.0/22 maxlen: 22
130.105.32.0/22 maxlen: 22
130.105.36.0/22 maxlen: 22
130.105.40.0/22 maxlen: 22
130.105.44.0/22 maxlen: 22
130.105.48.0/22 maxlen: 22
130.105.52.0/22 maxlen: 22
130.105.56.0/22 maxlen: 22
130.105.60.0/22 maxlen: 22
130.105.64.0/22 maxlen: 22
130.105.68.0/22 maxlen: 22
130.105.72.0/22 maxlen: 22
130.105.76.0/22 maxlen: 22
130.105.80.0/22 maxlen: 22
130.105.84.0/22 maxlen: 22
130.105.88.0/22 maxlen: 22
130.105.92.0/22 maxlen: 22
130.105.96.0/22 maxlen: 22
130.105.100.0/22 maxlen: 22
130.105.104.0/22 maxlen: 22
130.105.108.0/22 maxlen: 22
130.105.112.0/22 maxlen: 22
130.105.116.0/22 maxlen: 22
130.105.120.0/22 maxlen: 22
130.105.124.0/22 maxlen: 22
130.105.128.0/22 maxlen: 22
130.105.132.0/22 maxlen: 22
130.105.136.0/22 maxlen: 22
130.105.140.0/22 maxlen: 22
130.105.144.0/22 maxlen: 22
130.105.148.0/22 maxlen: 22
130.105.152.0/22 maxlen: 22
130.105.154.0/24 maxlen: 24
130.105.156.0/22 maxlen: 22
130.105.160.0/22 maxlen: 22
130.105.164.0/22 maxlen: 22
130.105.168.0/22 maxlen: 22
130.105.172.0/22 maxlen: 22
130.105.176.0/22 maxlen: 22
130.105.180.0/22 maxlen: 22
130.105.184.0/22 maxlen: 22
130.105.188.0/22 maxlen: 22
130.105.192.0/22 maxlen: 22
130.105.196.0/22 maxlen: 22
130.105.200.0/22 maxlen: 22
130.105.204.0/22 maxlen: 22
130.105.208.0/22 maxlen: 22
130.105.212.0/22 maxlen: 22
130.105.216.0/22 maxlen: 22
130.105.220.0/22 maxlen: 22
130.105.224.0/22 maxlen: 22
130.105.228.0/22 maxlen: 22
130.105.232.0/22 maxlen: 22
130.105.236.0/22 maxlen: 22
130.105.240.0/22 maxlen: 22
130.105.244.0/22 maxlen: 22
130.105.248.0/22 maxlen: 22
130.105.252.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.crl
rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 27 Nov 2024 15:22:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9314 (0x2462)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91275FD/serialNumber=5EBDD4D5F36C6AA59B012C9E899AAD3C27EAD8ED
Validity
Not Before: May 8 16:33:10 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=663ba946-ab5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:26:58:dd:c0:c2:ee:74:43:eb:1c:84:df:be:
ff:84:e2:e4:4e:ad:d1:64:64:01:fb:fb:6d:01:17:
2e:47:bf:96:5f:86:da:b6:47:e2:78:f0:60:06:f6:
b9:b2:58:1c:3a:6b:a1:d7:0e:fc:1a:9f:5d:a0:ca:
d8:8d:30:03:a5:c2:95:66:c7:1e:1b:9c:1e:43:f8:
c9:a7:3f:a7:8d:d8:6e:4a:fe:c4:5a:66:4e:0b:95:
53:8d:eb:fb:1c:22:f5:73:c6:f7:f4:42:df:dd:f1:
71:f1:05:e8:29:ad:b8:51:9d:02:49:e1:89:34:b0:
c1:24:5a:22:f2:65:fd:62:33:f3:50:ac:1c:be:67:
9b:85:d3:93:ca:93:ab:4e:41:26:fe:e8:c7:14:59:
0e:28:98:6a:4b:64:f4:4d:73:fd:ae:61:6b:83:59:
cf:ef:6a:ae:da:7f:25:01:aa:70:8d:a4:67:02:8c:
40:5f:b3:bf:68:6e:7d:d1:b1:08:af:c8:b4:ba:3a:
4a:77:37:bf:ca:ab:eb:75:92:91:c1:9b:48:00:9c:
e7:4a:e6:9d:23:92:f3:6a:aa:48:6b:28:b7:e0:03:
63:a1:f3:2e:d5:84:86:06:9c:13:2d:a9:8a:24:e8:
f0:27:18:1b:a7:8f:2a:ce:97:35:ac:11:60:24:fb:
29:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:AB:E6:19:33:48:87:A3:EB:53:55:41:C1:97:23:83:90:12:C4:96
X509v3 Authority Key Identifier:
keyid:5E:BD:D4:D5:F3:6C:6A:A5:9B:01:2C:9E:89:9A:AD:3C:27:EA:D8:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/9461B15C144611EBA5418244C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
130.105.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3b:82:ef:d5:67:30:09:88:b3:83:b2:6e:08:30:01:3e:6a:16:
29:0a:a4:c9:a8:b1:3d:c8:f9:09:cb:28:99:58:34:38:6b:17:
63:14:f3:5b:a8:39:fa:96:cf:c4:1e:2c:db:e1:48:cb:10:10:
02:66:2c:fb:f4:51:a1:77:e1:15:5c:69:e7:58:5f:15:c4:b3:
5e:f2:74:67:97:07:0e:5a:f3:df:be:7d:76:db:e5:a0:22:e6:
15:ee:a9:89:d6:d5:63:3e:8e:6c:5b:e0:a7:c3:00:98:12:a7:
23:ce:a9:d7:c8:1d:1c:79:65:50:dd:54:63:9c:f3:e6:04:bb:
cc:87:77:a7:11:f2:5e:58:d2:23:e3:57:24:12:fd:96:17:32:
2b:af:a1:88:37:d2:64:61:50:47:63:88:28:9a:f3:ee:99:05:
c5:21:6c:14:0d:f0:65:03:0e:f5:61:a3:f7:44:46:d8:bd:e4:
e4:81:f9:38:db:10:97:a5:e2:c2:6d:bc:cf:82:22:54:de:fc:
ba:31:1e:e5:f6:c7:6a:58:97:46:98:9a:7c:ec:3a:60:ce:68:
12:a8:22:08:93:53:a1:11:1d:77:8c:c4:4d:24:58:5d:56:94:
7d:67:65:dd:3f:44:17:c0:d7:6a:4b:95:e7:af:31:63:e6:0d:
27:94:da:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 19:05:14 2024 by rpki-client on console-ams.rpki-client.org