Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/665C2DFC1C1511EFB1AF8F28C4F9AE02.roa
File: 665C2DFC1C1511EFB1AF8F28C4F9AE02.roa (raw, json)
Hash identifier: fwQeTVurB+Fy8cbxpFo5uSylEEcB+icgV21PTKUqveQ=
Subject key identifier: 71:60:D9:03:54:E9:21:C7:05:1E:C7:EF:25:4A:BB:75:A4:6A:4A:DC
Certificate issuer: /CN=A913E32A/serialNumber=C1C46FC4A71969E58504A734D4904A7BD2FF0543
Certificate serial: 2550
Authority key identifier: C1:C4:6F:C4:A7:19:69:E5:85:04:A7:34:D4:90:4A:7B:D2:FF:05:43
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcRvxKcZaeWFBKc01JBKe9L_BUM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/665C2DFC1C1511EFB1AF8F28C4F9AE02.roa
Signing time: Thu 30 May 2024 16:38:49 +0000
ROA not before: Thu 30 May 2024 16:38:48 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 7590
IP address blocks: 203.124.32.0/24 maxlen: 24
203.124.33.0/24 maxlen: 24
203.124.35.0/24 maxlen: 24
203.124.36.0/24 maxlen: 24
203.124.37.0/24 maxlen: 24
203.124.38.0/24 maxlen: 24
203.124.39.0/24 maxlen: 24
203.124.40.0/24 maxlen: 24
203.124.41.0/24 maxlen: 24
203.124.42.0/24 maxlen: 24
203.124.43.0/24 maxlen: 24
203.124.44.0/24 maxlen: 24
203.124.45.0/24 maxlen: 24
203.124.46.0/24 maxlen: 24
203.124.47.0/24 maxlen: 24
203.124.48.0/24 maxlen: 24
203.124.49.0/24 maxlen: 24
203.124.50.0/24 maxlen: 24
203.124.51.0/24 maxlen: 24
203.124.52.0/24 maxlen: 24
203.124.53.0/24 maxlen: 24
203.124.56.0/24 maxlen: 24
203.124.57.0/24 maxlen: 24
203.124.58.0/24 maxlen: 24
203.124.59.0/24 maxlen: 24
203.124.60.0/24 maxlen: 24
203.124.61.0/24 maxlen: 24
203.124.62.0/24 maxlen: 24
203.124.63.0/24 maxlen: 24
210.56.0.0/24 maxlen: 24
210.56.1.0/24 maxlen: 24
210.56.2.0/24 maxlen: 24
210.56.3.0/24 maxlen: 24
210.56.4.0/24 maxlen: 24
210.56.5.0/24 maxlen: 24
210.56.6.0/24 maxlen: 24
210.56.7.0/24 maxlen: 24
210.56.8.0/24 maxlen: 24
210.56.9.0/24 maxlen: 24
210.56.10.0/24 maxlen: 24
210.56.11.0/24 maxlen: 24
210.56.12.0/24 maxlen: 24
210.56.13.0/24 maxlen: 24
210.56.14.0/24 maxlen: 24
210.56.15.0/24 maxlen: 24
210.56.16.0/24 maxlen: 24
210.56.17.0/24 maxlen: 24
210.56.18.0/24 maxlen: 24
210.56.19.0/24 maxlen: 24
210.56.20.0/24 maxlen: 24
210.56.21.0/24 maxlen: 24
210.56.22.0/24 maxlen: 24
210.56.23.0/24 maxlen: 24
210.56.24.0/24 maxlen: 24
210.56.25.0/24 maxlen: 24
210.56.26.0/24 maxlen: 24
210.56.27.0/24 maxlen: 24
210.56.28.0/24 maxlen: 24
210.56.29.0/24 maxlen: 24
210.56.30.0/24 maxlen: 24
210.56.31.0/24 maxlen: 24
2402:1680:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/wcRvxKcZaeWFBKc01JBKe9L_BUM.crl
rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/wcRvxKcZaeWFBKc01JBKe9L_BUM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcRvxKcZaeWFBKc01JBKe9L_BUM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 15:43:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9552 (0x2550)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913E32A/serialNumber=C1C46FC4A71969E58504A734D4904A7BD2FF0543
Validity
Not Before: May 30 16:38:48 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6658ab98-943c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4b:f5:de:7d:10:e3:14:94:f8:22:6c:01:bd:
2a:21:b2:fb:50:2b:08:11:22:47:4d:a4:bb:2c:ea:
2f:d6:b2:6e:09:ec:d4:d9:ae:d5:7a:52:a8:93:90:
93:52:20:dc:39:59:28:f4:16:6e:b2:5b:bd:64:db:
3f:80:e0:25:ba:6c:ec:2b:0e:e0:ab:70:1a:7b:df:
09:b5:1e:af:f7:96:dc:dd:29:a0:ba:b8:ff:6a:e9:
d3:f3:f4:26:dc:89:a9:85:65:8a:ec:3b:cf:2e:20:
b3:fa:0c:d3:1d:34:d7:71:92:2a:65:69:1b:06:e7:
5c:13:0d:61:16:19:7e:20:ae:ec:4b:79:00:51:ac:
db:45:fa:86:5d:c5:13:9c:d4:da:49:92:dd:03:8c:
f6:fc:96:7b:5d:27:d0:77:5d:a3:d8:1c:7b:4c:25:
54:6b:55:ed:1b:e5:d4:e6:f0:d6:94:7e:1f:2d:69:
e5:1d:98:03:ff:ad:cf:12:d6:8f:e7:8a:5c:5e:73:
03:ab:ff:ee:37:2b:79:80:76:ea:c8:5d:f3:85:d5:
7c:b0:87:b9:a1:d4:b8:df:08:7a:d5:19:1a:7d:a9:
76:45:4e:5a:fe:39:56:33:72:96:98:b3:b1:72:05:
fb:66:47:a5:f2:c5:17:14:e6:63:2f:38:82:65:6b:
1f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:60:D9:03:54:E9:21:C7:05:1E:C7:EF:25:4A:BB:75:A4:6A:4A:DC
X509v3 Authority Key Identifier:
keyid:C1:C4:6F:C4:A7:19:69:E5:85:04:A7:34:D4:90:4A:7B:D2:FF:05:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/wcRvxKcZaeWFBKc01JBKe9L_BUM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcRvxKcZaeWFBKc01JBKe9L_BUM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/665C2DFC1C1511EFB1AF8F28C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.124.32.0/23
203.124.35.0-203.124.53.255
203.124.56.0/21
210.56.0.0/19
IPv6:
2402:1680:1::/48
Signature Algorithm: sha256WithRSAEncryption
58:c4:d5:5a:67:6a:f8:ec:28:d0:85:bd:e4:28:c9:17:b8:bc:
b7:4b:8e:f6:f3:8d:d0:e4:c5:81:ec:64:72:fe:9b:fc:8d:66:
0a:2e:5f:bf:e4:2d:16:ba:db:bb:e2:92:3f:92:d5:a2:e5:6e:
af:9d:64:f4:07:3f:f3:ae:82:8b:aa:18:bd:30:1a:4a:00:d0:
3d:87:34:72:71:01:0b:25:af:21:c4:0a:74:a7:5e:bb:e3:da:
15:35:65:8b:bc:91:0a:cf:a7:6a:0c:cb:89:d6:2a:e9:82:e6:
1b:66:d5:aa:d3:ff:52:51:96:c1:9d:f1:8b:e4:55:f1:fe:17:
ee:e4:ac:2e:d0:48:08:55:18:5c:5b:6c:4f:1c:5e:6a:04:e9:
69:33:d3:50:80:7a:eb:13:8b:b1:36:3d:a8:51:03:27:ca:51:
62:24:0e:a2:48:85:7e:5b:9e:56:3b:38:b9:19:92:a1:76:ca:
f0:d7:4b:a1:16:a2:b1:1b:9d:37:ef:79:f6:4a:9b:13:eb:6b:
30:17:70:c7:1c:55:bd:25:87:3b:13:f8:1c:f3:ac:2e:b9:58:
b0:bf:96:5d:0b:44:8c:52:b1:eb:ad:2d:f8:66:0d:70:cd:47:
9b:c0:b4:22:13:60:3a:f5:c3:48:36:09:99:cf:7d:a6:2f:45:
0d:aa:19:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 17:55:41 2024 by rpki-client on console-fra.rpki-client.org