Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/6215E9C089CF11ECA1DA1810C4F9AE02.roa
File: 6215E9C089CF11ECA1DA1810C4F9AE02.roa (raw, json)
Hash identifier: zqO+6+1m7aZm2JcpbyGs7JD55ITmH3KS8z593DQAnJc=
Subject key identifier: DB:8A:E1:49:E1:FC:26:B7:59:3D:6D:D8:74:AA:4B:AD:CE:BA:7E:15
Certificate issuer: /CN=A9141FD6/serialNumber=6B9D65EAE9C697DA21CB4BEEBF4DF4CE0A419321
Certificate serial: 33F7
Authority key identifier: 6B:9D:65:EA:E9:C6:97:DA:21:CB:4B:EE:BF:4D:F4:CE:0A:41:93:21
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/6215E9C089CF11ECA1DA1810C4F9AE02.roa
Signing time: Wed 08 May 2024 15:00:51 +0000
ROA not before: Wed 08 May 2024 15:00:51 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 38182
IP address blocks: 58.84.16.0/22 maxlen: 24
113.23.128.0/17 maxlen: 17
113.23.128.0/24 maxlen: 24
113.23.129.0/24 maxlen: 24
113.23.130.0/23 maxlen: 23
113.23.130.0/24 maxlen: 24
113.23.131.0/24 maxlen: 24
113.23.132.0/23 maxlen: 23
113.23.132.0/24 maxlen: 24
113.23.133.0/24 maxlen: 24
113.23.134.0/24 maxlen: 24
113.23.135.0/24 maxlen: 24
113.23.136.0/24 maxlen: 24
113.23.137.0/24 maxlen: 24
113.23.138.0/24 maxlen: 24
113.23.139.0/24 maxlen: 24
113.23.140.0/24 maxlen: 24
113.23.141.0/24 maxlen: 24
113.23.142.0/24 maxlen: 24
113.23.143.0/24 maxlen: 24
113.23.144.0/24 maxlen: 24
113.23.145.0/24 maxlen: 24
113.23.146.0/24 maxlen: 24
113.23.147.0/24 maxlen: 24
113.23.148.0/24 maxlen: 24
113.23.149.0/24 maxlen: 24
113.23.150.0/24 maxlen: 24
113.23.151.0/24 maxlen: 24
113.23.152.0/24 maxlen: 24
113.23.153.0/24 maxlen: 24
113.23.154.0/24 maxlen: 24
113.23.155.0/24 maxlen: 24
113.23.156.0/24 maxlen: 24
113.23.157.0/24 maxlen: 24
113.23.158.0/24 maxlen: 24
113.23.159.0/24 maxlen: 24
113.23.160.0/22 maxlen: 22
113.23.160.0/24 maxlen: 24
113.23.161.0/24 maxlen: 24
113.23.162.0/24 maxlen: 24
113.23.163.0/24 maxlen: 24
113.23.164.0/24 maxlen: 24
113.23.165.0/24 maxlen: 24
113.23.166.0/24 maxlen: 24
113.23.167.0/24 maxlen: 24
113.23.168.0/24 maxlen: 24
113.23.169.0/24 maxlen: 24
113.23.170.0/24 maxlen: 24
113.23.171.0/24 maxlen: 24
113.23.172.0/24 maxlen: 24
113.23.173.0/24 maxlen: 24
113.23.174.0/24 maxlen: 24
113.23.175.0/24 maxlen: 24
113.23.176.0/24 maxlen: 24
113.23.177.0/24 maxlen: 24
113.23.178.0/24 maxlen: 24
113.23.179.0/24 maxlen: 24
113.23.180.0/24 maxlen: 24
113.23.181.0/24 maxlen: 24
113.23.182.0/24 maxlen: 24
113.23.183.0/24 maxlen: 24
113.23.184.0/24 maxlen: 24
113.23.185.0/24 maxlen: 24
113.23.186.0/24 maxlen: 24
113.23.187.0/24 maxlen: 24
113.23.188.0/24 maxlen: 24
113.23.189.0/24 maxlen: 24
113.23.190.0/24 maxlen: 24
113.23.191.0/24 maxlen: 24
113.23.192.0/24 maxlen: 24
113.23.193.0/24 maxlen: 24
113.23.194.0/24 maxlen: 24
113.23.195.0/24 maxlen: 24
113.23.196.0/24 maxlen: 24
113.23.197.0/24 maxlen: 24
113.23.198.0/24 maxlen: 24
113.23.199.0/24 maxlen: 24
113.23.200.0/24 maxlen: 24
113.23.201.0/24 maxlen: 24
113.23.202.0/24 maxlen: 24
113.23.203.0/24 maxlen: 24
113.23.204.0/24 maxlen: 24
113.23.205.0/24 maxlen: 24
113.23.206.0/24 maxlen: 24
113.23.207.0/24 maxlen: 24
113.23.208.0/24 maxlen: 24
113.23.209.0/24 maxlen: 24
113.23.210.0/24 maxlen: 24
113.23.211.0/24 maxlen: 24
113.23.212.0/24 maxlen: 24
113.23.213.0/24 maxlen: 24
113.23.214.0/24 maxlen: 24
113.23.215.0/24 maxlen: 24
113.23.216.0/24 maxlen: 24
113.23.217.0/24 maxlen: 24
113.23.218.0/24 maxlen: 24
113.23.219.0/24 maxlen: 24
113.23.220.0/24 maxlen: 24
113.23.221.0/24 maxlen: 24
113.23.222.0/24 maxlen: 24
113.23.223.0/24 maxlen: 24
113.23.224.0/24 maxlen: 24
113.23.225.0/24 maxlen: 24
113.23.226.0/24 maxlen: 24
113.23.227.0/24 maxlen: 24
113.23.228.0/24 maxlen: 24
113.23.229.0/24 maxlen: 24
113.23.230.0/24 maxlen: 24
113.23.231.0/24 maxlen: 24
113.23.232.0/24 maxlen: 24
113.23.233.0/24 maxlen: 24
113.23.234.0/24 maxlen: 24
113.23.235.0/24 maxlen: 24
113.23.236.0/24 maxlen: 24
113.23.237.0/24 maxlen: 24
113.23.238.0/24 maxlen: 24
113.23.239.0/24 maxlen: 24
113.23.240.0/24 maxlen: 24
113.23.241.0/24 maxlen: 24
113.23.242.0/24 maxlen: 24
113.23.243.0/24 maxlen: 24
113.23.244.0/24 maxlen: 24
113.23.245.0/24 maxlen: 24
113.23.246.0/24 maxlen: 24
113.23.247.0/24 maxlen: 24
113.23.248.0/24 maxlen: 24
113.23.249.0/24 maxlen: 24
113.23.250.0/24 maxlen: 24
113.23.251.0/24 maxlen: 24
113.23.252.0/24 maxlen: 24
113.23.253.0/24 maxlen: 24
113.23.254.0/24 maxlen: 24
113.23.255.0/24 maxlen: 24
203.188.232.0/21 maxlen: 21
203.188.232.0/24 maxlen: 24
203.188.233.0/24 maxlen: 24
203.188.234.0/23 maxlen: 23
203.188.234.0/24 maxlen: 24
203.188.235.0/24 maxlen: 24
203.188.236.0/24 maxlen: 24
203.188.237.0/24 maxlen: 24
203.188.238.0/24 maxlen: 24
203.188.239.0/24 maxlen: 24
2407:f800::/40 maxlen: 40
2407:f800::/48 maxlen: 48
2407:f800::3:0:0/96 maxlen: 96
2407:f800:100::/40 maxlen: 40
2407:f800:200::/40 maxlen: 40
2407:f800:200::/48 maxlen: 48
2407:f800:300::/40 maxlen: 40
2407:f800:300::/48 maxlen: 48
2407:f800:400::/40 maxlen: 40
2407:f800:400::/48 maxlen: 48
2407:f800:500::/40 maxlen: 40
2407:f800:500::/48 maxlen: 48
2407:f800:800::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.crl
rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13303 (0x33f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9141FD6/serialNumber=6B9D65EAE9C697DA21CB4BEEBF4DF4CE0A419321
Validity
Not Before: May 8 15:00:51 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=663b93a3-8621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:19:4f:66:ac:ef:ca:73:10:fb:b9:ca:92:3b:
b2:d1:25:c1:c7:62:d7:25:8f:20:7d:bb:c8:f4:b3:
6e:3a:fc:6f:5f:29:6f:42:35:37:89:17:48:6b:55:
e2:40:1f:e1:82:8b:71:02:eb:ed:c1:f3:65:28:41:
5e:c5:40:7b:97:fe:02:84:22:d1:d8:82:2d:7b:28:
45:ad:ce:8c:e1:4f:0c:97:a8:c5:71:f3:66:8b:bb:
47:6f:9c:ea:54:56:a4:27:1a:47:c9:4c:37:04:79:
28:6b:86:9e:00:3a:fd:5b:47:07:fd:43:0a:0f:be:
a8:28:7a:fb:18:e0:78:0f:43:f9:4d:16:0e:6f:f9:
ce:d0:7a:fb:22:aa:82:50:6e:3d:f6:2f:db:fd:31:
ec:9d:8f:32:b4:8d:e3:74:17:57:14:e9:bd:56:f0:
a6:f0:3b:0c:85:1f:1c:77:8d:75:46:4e:11:66:63:
b2:60:be:ba:2f:3e:aa:cb:60:0d:bf:06:70:9d:a0:
bb:be:c3:df:a2:6a:dc:d1:1f:6c:cd:e1:53:66:40:
3c:04:d7:03:0b:31:77:e1:6a:55:49:04:ca:4f:c4:
b5:d9:74:82:ab:17:18:0b:6a:4a:4d:e8:74:d1:2c:
79:f6:3f:ce:24:8d:75:11:f4:78:de:e4:37:4c:d1:
2a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:8A:E1:49:E1:FC:26:B7:59:3D:6D:D8:74:AA:4B:AD:CE:BA:7E:15
X509v3 Authority Key Identifier:
keyid:6B:9D:65:EA:E9:C6:97:DA:21:CB:4B:EE:BF:4D:F4:CE:0A:41:93:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/6215E9C089CF11ECA1DA1810C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
58.84.16.0/22
113.23.128.0/17
203.188.232.0/21
IPv6:
2407:f800::-2407:f800:5ff:ffff:ffff:ffff:ffff:ffff
2407:f800:800::/40
Signature Algorithm: sha256WithRSAEncryption
88:2e:ed:2d:06:db:fb:f6:28:ff:9e:1f:e5:73:3f:46:a5:2f:
e2:ad:99:de:a5:59:0f:51:70:25:81:d5:dc:27:aa:a2:b0:8c:
53:ac:f5:9e:6a:27:07:2b:34:ea:52:10:95:90:d4:75:b1:c7:
a5:bb:df:0b:b4:4a:11:00:87:5b:33:75:cd:20:11:c9:6f:26:
4e:44:fe:9b:82:fa:3d:51:e1:f4:5d:de:18:a8:1a:e8:38:db:
1a:eb:d3:c7:2d:70:18:8d:cf:2d:64:0d:b8:3d:12:9c:2d:59:
1b:0d:fd:6f:5b:4f:f6:c7:02:e3:56:29:80:ad:fc:ad:7a:81:
be:ef:79:90:48:d5:4f:dc:41:30:4e:dc:e1:e5:a8:70:5d:d7:
55:08:66:0e:c4:26:8d:1e:da:ab:c9:d6:51:6b:e8:64:cf:aa:
84:b8:a9:82:cc:9d:8f:b6:87:ad:36:36:02:2a:2f:ba:e0:9f:
e9:80:f6:54:56:77:b0:36:47:b7:4f:2c:3b:37:57:42:c9:30:
1b:4a:bf:6f:a4:ef:a1:64:d4:9e:aa:a6:d0:4d:23:64:a1:c7:
b8:dd:e9:36:f2:cb:88:ff:53:97:d8:b1:cc:63:22:8e:34:ea:
2e:15:61:85:eb:9e:72:ff:75:5e:b2:00:ca:b5:ed:02:1e:62:
93:f7:44:8d
-----BEGIN CERTIFICATE-----
MIIFnTCCBIWgAwIBAgICM/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDFGRDYxMTAvBgNVBAUTKDZCOUQ2NUVBRTlDNjk3REEyMUNCNEJFRUJGNERGNENF
MEE0MTkzMjEwHhcNMjQwNTA4MTUwMDUxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjNiOTNhMy04NjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuRlPZqzvynMQ+7nKkjuy0SXBx2LXJY8gfbvI9LNuOvxvXylvQjU3iRdIa1Xi
QB/hgotxAuvtwfNlKEFexUB7l/4ChCLR2IIteyhFrc6M4U8Ml6jFcfNmi7tHb5zq
VFakJxpHyUw3BHkoa4aeADr9W0cH/UMKD76oKHr7GOB4D0P5TRYOb/nO0Hr7IqqC
UG499i/b/THsnY8ytI3jdBdXFOm9VvCm8DsMhR8cd411Rk4RZmOyYL66Lz6qy2AN
vwZwnaC7vsPfomrc0R9szeFTZkA8BNcDCzF34WpVSQTKT8S12XSCqxcYC2pKTeh0
0Sx59j/OJI11EfR43uQ3TNEqaQIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFNuK4Unh
/Ca3WT1t2HSqS63Oun4VMB8GA1UdIwQYMBaAFGudZerpxpfaIctL7r9N9M4KQZMh
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUZENi82RUVDNjQzMDFE
OTExMUUyQjY4N0E1RjMwOEIwMkNEMi9hNTFsNnVuR2w5b2h5MHZ1djAzMHpncEJr
eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2E1MWw2dW5HbDlvaHkwdnV2MDMwemdwQmt5RS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDFGRDYvNkVFQzY0MzAxRDkxMTFFMkI2ODdBNUYzMDhCMDJDRDIvNjIxNUU5QzA4
OUNGMTFFQ0ExREExODEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E
PDA6MBgEAgABMBIDBAI6VBADBAdxF4ADBAPLvOgwHgQCAAIwGDAOAwQDJAf4AwYB
JAf4AAQDBgAkB/gACDANBgkqhkiG9w0BAQsFAAOCAQEAiC7tLQbb+/Yo/54f5XM/
RqUv4q2Z3qVZD1FwJYHV3CeqorCMU6z1nmonBys06lIQlZDUdbHHpbvfC7RKEQCH
WzN1zSARyW8mTkT+m4L6PVHh9F3eGKga6DjbGuvTxy1wGI3PLWQNuD0SnC1ZGw39
b1tP9scC41YpgK38rXqBvu95kEjVT9xBME7c4eWocF3XVQhmDsQmjR7aq8nWUWvo
ZM+qhLipgsydj7aHrTY2AiovuuCf6YD2VFZ3sDZHt08sOzdXQskwG0q/b6TvoWTU
nqqm0E0jZKHHuN3pNvLLiP9Tl9ixzGMijjTqLhVhheuecv91XrIAyrXtAh5ik/dE
jQ==
-----END CERTIFICATE-----
Generated at Fri May 10 16:38:03 2024 by rpki-client on console-ams.rpki-client.org