Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/1803FFC65E5F11EBBE37FA4CC4F9AE02.roa
File: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (raw, json)
Hash identifier: gqFP1IUKKDRvNeAUOIr33aKVzsawxI23lvIfLsK890s=
Subject key identifier: C7:D9:99:01:4C:C0:EC:7F:6F:09:BE:21:90:C8:34:09:39:F3:9C:91
Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F
Certificate serial: 0FB9
Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/1803FFC65E5F11EBBE37FA4CC4F9AE02.roa
Signing time: Tue 26 Mar 2024 19:00:07 +0000
ROA not before: Tue 26 Mar 2024 19:00:07 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 138544
IP address blocks: 103.132.180.0/22 maxlen: 22
103.132.180.0/23 maxlen: 23
103.132.180.0/24 maxlen: 24
103.132.181.0/24 maxlen: 24
103.132.182.0/24 maxlen: 24
103.132.183.0/24 maxlen: 24
2404:3d40::/32 maxlen: 32
2404:3d40::/48 maxlen: 48
2404:3d40:1::/48 maxlen: 48
2404:3d40:2::/48 maxlen: 48
2404:3d40:3::/48 maxlen: 48
2404:3d40:4::/48 maxlen: 48
2404:3d40:5::/48 maxlen: 48
2404:3d40:6::/48 maxlen: 48
2404:3d40:7::/48 maxlen: 48
2404:3d40:8::/48 maxlen: 48
2404:3d40:9::/48 maxlen: 48
2404:3d40:a::/48 maxlen: 48
2404:3d40:b::/48 maxlen: 48
2404:3d40:c::/48 maxlen: 48
2404:3d40:d::/48 maxlen: 48
2404:3d40:e::/48 maxlen: 48
2404:3d40:f::/48 maxlen: 48
2404:3d40:10::/48 maxlen: 48
2404:3d40:11::/48 maxlen: 48
2404:3d40:12::/48 maxlen: 48
2404:3d40:13::/48 maxlen: 48
2404:3d40:14::/48 maxlen: 48
2404:3d40:15::/48 maxlen: 48
2404:3d40:16::/48 maxlen: 48
2404:3d40:17::/48 maxlen: 48
2404:3d40:18::/48 maxlen: 48
2404:3d40:19::/48 maxlen: 48
2404:3d40:1a::/48 maxlen: 48
2404:3d40:1b::/48 maxlen: 48
2404:3d40:1c::/48 maxlen: 48
2404:3d40:1d::/48 maxlen: 48
2404:3d40:1e::/48 maxlen: 48
2404:3d40:1f::/48 maxlen: 48
2404:3d40:20::/48 maxlen: 48
2404:3d40:21::/48 maxlen: 48
2404:3d40:22::/48 maxlen: 48
2404:3d40:23::/48 maxlen: 48
2404:3d40:24::/48 maxlen: 48
2404:3d40:25::/48 maxlen: 48
2404:3d40:26::/48 maxlen: 48
2404:3d40:27::/48 maxlen: 48
2404:3d40:28::/48 maxlen: 48
2404:3d40:29::/48 maxlen: 48
2404:3d40:2a::/48 maxlen: 48
2404:3d40:2b::/48 maxlen: 48
2404:3d40:2c::/48 maxlen: 48
2404:3d40:2d::/48 maxlen: 48
2404:3d40:2e::/48 maxlen: 48
2404:3d40:2f::/48 maxlen: 48
2404:3d40:30::/48 maxlen: 48
2404:3d40:31::/48 maxlen: 48
2404:3d40:32::/48 maxlen: 48
2404:3d40:33::/48 maxlen: 48
2404:3d40:34::/48 maxlen: 48
2404:3d40:35::/48 maxlen: 48
2404:3d40:36::/48 maxlen: 48
2404:3d40:37::/48 maxlen: 48
2404:3d40:38::/48 maxlen: 48
2404:3d40:39::/48 maxlen: 48
2404:3d40:3a::/48 maxlen: 48
2404:3d40:3b::/48 maxlen: 48
2404:3d40:3c::/48 maxlen: 48
2404:3d40:3d::/48 maxlen: 48
2404:3d40:3e::/48 maxlen: 48
2404:3d40:3f::/48 maxlen: 48
2404:3d40:40::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl
rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 May 2024 18:11:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4025 (0xfb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F
Validity
Not Before: Mar 26 19:00:07 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=66031b37-fb64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5a:c0:57:9f:4c:4a:81:35:35:8b:80:a1:aa:
d4:21:d5:24:e9:fa:7f:f7:0a:b1:ab:1c:97:07:80:
fa:a3:2c:33:3a:fd:89:98:33:8a:41:ad:a9:b6:5d:
f5:e5:b2:e3:64:f6:97:d0:f7:26:a8:71:ad:b5:a7:
74:52:e6:bb:2a:f6:58:c1:8c:99:29:66:9a:67:b6:
2d:2d:b4:dc:10:5a:5d:aa:80:5f:1c:8a:1b:58:37:
cc:d9:4c:c4:90:15:5f:01:e0:5f:eb:ee:2f:15:4c:
14:51:5a:1c:77:3b:1b:7b:bc:ae:5c:17:33:f5:39:
97:e9:b5:97:1c:26:fb:fa:e7:41:c3:fb:4b:0f:4a:
cc:97:c8:a3:ad:52:ad:65:43:50:f9:e4:b5:51:15:
17:eb:36:a9:4e:e8:56:30:2f:88:66:51:ca:1c:20:
d7:72:23:86:9d:d8:7c:6b:2f:5d:f5:c2:40:12:9b:
42:4e:7f:b3:c3:4c:da:fe:85:c8:71:c5:3e:f4:cd:
e2:0a:df:f7:80:c7:54:73:2c:c7:e9:7c:ff:47:c2:
20:47:0d:a1:c2:1a:36:c5:d0:9f:5f:a5:8c:e9:74:
5f:cc:88:7a:b1:99:27:a5:9c:5e:80:2c:68:2a:85:
68:a8:d6:d9:34:5b:3a:83:e2:94:1d:f7:0e:d4:d1:
24:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:D9:99:01:4C:C0:EC:7F:6F:09:BE:21:90:C8:34:09:39:F3:9C:91
X509v3 Authority Key Identifier:
keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/1803FFC65E5F11EBBE37FA4CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.132.180.0/22
IPv6:
2404:3d40::/32
Signature Algorithm: sha256WithRSAEncryption
8d:47:df:a7:89:31:96:df:81:ef:be:b6:20:21:f7:3d:bf:d9:
59:67:ab:72:5d:98:88:ff:a9:10:fe:bd:94:bb:42:87:75:7f:
e4:5a:8e:1f:37:b7:8c:d4:7d:31:b0:56:3a:67:a0:1b:74:d7:
1e:b6:2d:b3:b4:9f:0c:24:48:ae:a9:33:69:67:17:a8:c3:df:
e3:c6:0c:e1:b9:df:3b:7a:8a:35:3a:6c:b8:b2:96:92:26:2e:
b0:9b:a5:0b:6f:48:fe:4e:6a:05:f2:81:c1:c9:3e:ca:7c:04:
f9:71:2f:f1:25:5e:5c:59:dd:12:06:6f:c9:14:c1:cd:f0:53:
c7:8e:e6:b0:c3:6a:21:8f:e2:0d:76:71:4d:97:28:07:70:bc:
8b:36:a5:5e:45:94:92:e2:2a:b9:be:f7:1c:47:ef:52:ca:53:
e9:4c:9a:81:af:77:92:44:ea:f4:9d:ed:d5:7e:ca:28:73:70:
f5:36:f8:98:3b:f6:2a:6d:39:b6:61:79:5a:1d:f2:73:5c:3e:
09:43:7f:8d:58:a1:0f:bb:a3:e1:9e:25:2e:3f:03:1e:4b:ce:
0b:9a:a9:6f:e2:02:73:e1:c1:f3:dc:ce:50:91:87:1f:92:8f:
13:5d:ca:eb:bb:d7:ee:ec:aa:c6:3d:d2:c2:54:aa:fa:55:2d:
9a:f6:52:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 20:25:39 2024 by rpki-client on console-ams.rpki-client.org