Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B600/A36A626E1D9311E286175DF708B02CD2/7D5F356C26FF11EBAC6E5B50C4F9AE02.roa
File: 7D5F356C26FF11EBAC6E5B50C4F9AE02.roa (raw, json)
Hash identifier: rVr8fDzl2KEX5tDVrlnoCpdUHd/RFaYWSSzANu5f/8g=
Subject key identifier: 7D:8A:AE:32:8E:4C:C7:83:9A:D0:AA:7A:EA:7A:48:07:A2:C3:03:6F
Certificate issuer: /CN=A912B600/serialNumber=2F44AEBA0A5544065889705BC2EF1CDAE1158325
Certificate serial: 3379
Authority key identifier: 2F:44:AE:BA:0A:55:44:06:58:89:70:5B:C2:EF:1C:DA:E1:15:83:25
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0SuugpVRAZYiXBbwu8c2uEVgyU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912B600/A36A626E1D9311E286175DF708B02CD2/7D5F356C26FF11EBAC6E5B50C4F9AE02.roa
Signing time: Wed 04 Oct 2023 15:10:46 +0000
ROA not before: Wed 04 Oct 2023 15:10:46 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 38466
IP address blocks: 27.125.224.0/19 maxlen: 19
27.125.224.0/24 maxlen: 24
27.125.225.0/24 maxlen: 24
27.125.226.0/24 maxlen: 24
27.125.227.0/24 maxlen: 24
27.125.228.0/24 maxlen: 24
27.125.229.0/24 maxlen: 24
27.125.230.0/24 maxlen: 24
27.125.231.0/24 maxlen: 24
27.125.232.0/24 maxlen: 24
27.125.233.0/24 maxlen: 24
27.125.234.0/24 maxlen: 24
27.125.235.0/24 maxlen: 24
27.125.236.0/24 maxlen: 24
27.125.237.0/24 maxlen: 24
27.125.238.0/24 maxlen: 24
27.125.239.0/24 maxlen: 24
27.125.240.0/24 maxlen: 24
27.125.241.0/24 maxlen: 24
27.125.242.0/24 maxlen: 24
27.125.243.0/24 maxlen: 24
27.125.244.0/24 maxlen: 24
27.125.245.0/24 maxlen: 24
27.125.246.0/24 maxlen: 24
27.125.247.0/24 maxlen: 24
27.125.248.0/24 maxlen: 24
27.125.249.0/24 maxlen: 24
27.125.250.0/24 maxlen: 24
27.125.251.0/24 maxlen: 24
27.125.252.0/24 maxlen: 24
27.125.253.0/24 maxlen: 24
27.125.254.0/24 maxlen: 24
27.125.255.0/24 maxlen: 24
103.1.144.0/22 maxlen: 22
103.1.144.0/24 maxlen: 24
103.1.145.0/24 maxlen: 24
103.1.146.0/24 maxlen: 24
103.1.147.0/24 maxlen: 24
113.30.232.0/21 maxlen: 21
113.30.232.0/24 maxlen: 24
113.30.233.0/24 maxlen: 24
113.30.234.0/23 maxlen: 24
113.30.236.0/22 maxlen: 24
123.136.96.0/19 maxlen: 19
123.136.96.0/24 maxlen: 24
123.136.97.0/24 maxlen: 24
123.136.98.0/24 maxlen: 24
123.136.99.0/24 maxlen: 24
123.136.100.0/24 maxlen: 24
123.136.101.0/24 maxlen: 24
123.136.102.0/23 maxlen: 24
123.136.104.0/22 maxlen: 22
123.136.104.0/24 maxlen: 24
123.136.105.0/24 maxlen: 24
123.136.106.0/24 maxlen: 24
123.136.107.0/24 maxlen: 24
123.136.108.0/24 maxlen: 24
123.136.109.0/24 maxlen: 24
123.136.110.0/24 maxlen: 24
123.136.111.0/24 maxlen: 24
123.136.112.0/24 maxlen: 24
123.136.113.0/24 maxlen: 24
123.136.114.0/24 maxlen: 24
123.136.115.0/24 maxlen: 24
123.136.116.0/24 maxlen: 24
123.136.117.0/24 maxlen: 24
123.136.118.0/24 maxlen: 24
123.136.119.0/24 maxlen: 24
123.136.120.0/24 maxlen: 24
123.136.121.0/24 maxlen: 24
123.136.122.0/24 maxlen: 24
123.136.123.0/24 maxlen: 24
123.136.124.0/24 maxlen: 24
123.136.125.0/24 maxlen: 24
123.136.126.0/24 maxlen: 24
123.136.127.0/24 maxlen: 24
2405:3800::/32 maxlen: 32
2405:3800:80::/41 maxlen: 41
2405:3800:100::/41 maxlen: 41
2405:3800:200::/41 maxlen: 41
2405:3800:280::/41 maxlen: 41
2405:3800:380::/41 maxlen: 41
2405:3800:400::/41 maxlen: 41
2405:3800:480::/41 maxlen: 41
2405:3800:500::/41 maxlen: 41
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912B600/A36A626E1D9311E286175DF708B02CD2/L0SuugpVRAZYiXBbwu8c2uEVgyU.crl
rsync://rpki.apnic.net/member_repository/A912B600/A36A626E1D9311E286175DF708B02CD2/L0SuugpVRAZYiXBbwu8c2uEVgyU.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0SuugpVRAZYiXBbwu8c2uEVgyU.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 14:53:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13177 (0x3379)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912B600/serialNumber=2F44AEBA0A5544065889705BC2EF1CDAE1158325
Validity
Not Before: Oct 4 15:10:46 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=651d8076-4743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c8:15:cd:e7:97:c8:00:76:df:b6:bf:9e:70:
29:3b:8c:32:f0:72:35:93:cf:e4:34:68:b8:dd:94:
44:d1:9c:20:16:2d:b9:cb:e9:1b:27:41:df:63:4a:
6d:33:00:9c:df:f9:65:de:11:c2:ca:57:05:a7:a4:
73:af:ff:9b:a9:e4:b9:91:79:e6:ce:be:c3:11:93:
f2:3a:a4:1a:3e:57:10:03:4b:d3:17:34:b0:f5:1e:
06:93:4c:ce:a2:33:c0:29:a4:09:66:0e:6d:73:9a:
6c:70:67:2c:26:11:07:0f:83:71:22:a7:de:87:45:
d6:da:e5:b8:76:67:49:35:06:d2:dd:bd:15:af:5b:
5e:2b:7e:4d:2a:b8:73:ff:54:b4:f1:44:a4:d2:b6:
62:9e:dd:a4:5c:18:a9:1a:d8:bb:08:a9:f1:22:dd:
5e:56:34:83:2f:f7:90:3c:c3:d8:46:c9:8a:6a:9b:
a8:5d:ec:5a:1c:61:bf:f8:b4:23:9b:c5:5a:df:fc:
b3:e9:72:f4:9d:c5:66:fb:c1:4e:91:2a:e1:9a:17:
3a:10:c3:15:71:69:f4:30:4a:b2:40:f3:6a:38:15:
57:11:68:d3:04:3b:21:ea:88:10:28:13:4b:21:cd:
ee:96:32:6e:68:a6:7c:7c:0e:56:45:bf:46:bd:35:
30:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:8A:AE:32:8E:4C:C7:83:9A:D0:AA:7A:EA:7A:48:07:A2:C3:03:6F
X509v3 Authority Key Identifier:
keyid:2F:44:AE:BA:0A:55:44:06:58:89:70:5B:C2:EF:1C:DA:E1:15:83:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912B600/A36A626E1D9311E286175DF708B02CD2/L0SuugpVRAZYiXBbwu8c2uEVgyU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0SuugpVRAZYiXBbwu8c2uEVgyU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B600/A36A626E1D9311E286175DF708B02CD2/7D5F356C26FF11EBAC6E5B50C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.125.224.0/19
103.1.144.0/22
113.30.232.0/21
123.136.96.0/19
IPv6:
2405:3800::/32
Signature Algorithm: sha256WithRSAEncryption
6f:55:45:ba:83:df:a0:74:50:03:e9:de:52:0f:4b:3f:35:5c:
57:80:38:7c:bc:a3:f1:4c:ed:05:4e:bc:62:6d:b7:48:2d:d3:
9c:35:4b:a0:94:5f:72:a8:ab:45:cd:83:84:21:65:21:99:55:
5d:e2:8a:06:ab:5c:5f:0e:f7:11:74:53:77:8a:b0:4f:6d:95:
94:aa:f4:fe:4c:ab:29:8d:3d:d8:f6:f1:ef:4c:fe:42:24:0e:
5f:91:eb:70:01:69:63:17:b1:be:44:c7:e3:a7:f1:94:b6:00:
b8:37:74:6b:c6:45:a5:77:59:7d:ca:03:c3:85:81:08:4a:72:
b7:ce:b7:93:04:12:1f:96:e1:46:4a:4c:f8:c3:95:14:b4:2a:
99:42:10:cd:b8:de:32:ed:4f:1d:1f:62:14:73:4c:f7:21:ad:
d4:7e:8a:9e:7d:c5:63:3c:5e:c2:62:b5:ba:9b:49:29:e1:28:
6a:85:66:0e:1a:28:36:4e:f3:7b:e8:7c:52:00:1a:45:bf:24:
19:0e:c8:de:33:85:03:a1:56:89:d6:13:40:70:4c:f4:20:1d:
da:f1:ca:f2:f1:52:cc:04:03:98:28:d1:c4:88:dc:83:5b:c3:
c5:3f:e9:96:15:dc:1d:ce:95:e7:fb:97:50:11:6e:1d:a2:b0:
86:cf:59:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 16:35:44 2024 by rpki-client on console-fra.rpki-client.org