Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/6ACA5114D9A611EDAEF7CC80C4F9AE02.roa
File: 6ACA5114D9A611EDAEF7CC80C4F9AE02.roa (raw, json)
Hash identifier: KTC2I3Deq6a1thcr2XVLh/i3NBm41Z0PUZO9p1FnJ3E=
Subject key identifier: 0A:E5:C6:47:74:C4:F9:FC:E7:6A:1D:CB:90:A8:94:6F:B8:43:14:7C
Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Certificate serial: 1D8F
Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/6ACA5114D9A611EDAEF7CC80C4F9AE02.roa
Signing time: Thu 25 Apr 2024 03:04:25 +0000
ROA not before: Thu 25 Apr 2024 03:04:25 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 23764
IP address blocks: 121.59.0.0/24 maxlen: 24
121.59.2.0/24 maxlen: 24
121.59.4.0/24 maxlen: 24
121.59.8.0/24 maxlen: 24
121.59.9.0/24 maxlen: 24
121.59.29.0/24 maxlen: 24
121.59.30.0/24 maxlen: 24
121.59.31.0/24 maxlen: 24
121.59.32.0/22 maxlen: 24
121.59.37.0/24 maxlen: 24
121.59.38.0/24 maxlen: 24
121.59.100.0/24 maxlen: 24
121.59.101.0/24 maxlen: 24
121.59.102.0/24 maxlen: 24
121.59.103.0/24 maxlen: 24
121.59.104.0/24 maxlen: 24
121.59.106.0/24 maxlen: 24
121.59.107.0/24 maxlen: 24
121.59.109.0/24 maxlen: 24
121.59.110.0/24 maxlen: 24
121.59.120.0/24 maxlen: 24
121.59.121.0/24 maxlen: 24
121.59.122.0/24 maxlen: 24
121.59.123.0/24 maxlen: 24
121.59.124.0/23 maxlen: 24
121.59.128.0/24 maxlen: 24
121.59.140.0/24 maxlen: 24
121.59.141.0/24 maxlen: 24
121.59.142.0/24 maxlen: 24
121.59.143.0/24 maxlen: 24
121.59.144.0/24 maxlen: 24
121.59.146.0/24 maxlen: 24
121.59.147.0/24 maxlen: 24
121.59.151.0/24 maxlen: 24
121.59.152.0/24 maxlen: 24
121.59.153.0/24 maxlen: 24
121.59.154.0/24 maxlen: 24
203.12.200.0/24 maxlen: 24
203.12.201.0/24 maxlen: 24
203.12.202.0/24 maxlen: 24
203.12.203.0/24 maxlen: 24
203.14.184.0/22 maxlen: 22
203.14.188.0/24 maxlen: 24
203.14.189.0/24 maxlen: 24
203.14.190.0/24 maxlen: 24
203.14.191.0/24 maxlen: 24
203.15.113.0/24 maxlen: 24
203.15.114.0/24 maxlen: 24
203.15.115.0/24 maxlen: 24
203.15.116.0/24 maxlen: 24
203.15.117.0/24 maxlen: 24
203.15.118.0/24 maxlen: 24
203.19.32.0/22 maxlen: 22
203.19.32.0/24 maxlen: 24
203.19.37.0/24 maxlen: 24
203.19.38.0/24 maxlen: 24
203.20.136.0/24 maxlen: 24
203.20.137.0/24 maxlen: 24
203.20.138.0/24 maxlen: 24
203.20.139.0/24 maxlen: 24
203.20.140.0/24 maxlen: 24
203.22.178.0/24 maxlen: 24
203.22.179.0/24 maxlen: 24
203.22.180.0/24 maxlen: 24
203.22.181.0/24 maxlen: 24
203.22.182.0/24 maxlen: 24
203.25.50.0/24 maxlen: 24
203.25.51.0/24 maxlen: 24
203.25.53.0/24 maxlen: 24
203.25.54.0/24 maxlen: 24
203.33.8.0/22 maxlen: 22
203.33.8.0/24 maxlen: 24
203.33.9.0/24 maxlen: 24
203.33.10.0/24 maxlen: 24
203.34.192.0/24 maxlen: 24
203.34.193.0/24 maxlen: 24
203.34.194.0/24 maxlen: 24
203.34.195.0/24 maxlen: 24
203.34.196.0/24 maxlen: 24
203.34.197.0/24 maxlen: 24
203.34.198.0/24 maxlen: 24
203.34.199.0/24 maxlen: 24
203.56.48.0/23 maxlen: 23
203.80.136.0/23 maxlen: 24
203.80.138.0/23 maxlen: 24
203.81.0.0/24 maxlen: 24
203.81.4.0/24 maxlen: 24
203.81.6.0/24 maxlen: 24
203.82.18.0/24 maxlen: 24
203.82.19.0/24 maxlen: 24
203.82.23.0/24 maxlen: 24
203.86.101.0/24 maxlen: 24
203.86.102.0/24 maxlen: 24
203.86.103.0/24 maxlen: 24
203.86.104.0/24 maxlen: 24
203.86.105.0/24 maxlen: 24
203.86.106.0/24 maxlen: 24
203.86.107.0/24 maxlen: 24
203.86.108.0/24 maxlen: 24
203.86.109.0/24 maxlen: 24
203.86.110.0/24 maxlen: 24
203.86.111.0/24 maxlen: 24
203.86.113.0/24 maxlen: 24
203.86.114.0/24 maxlen: 24
203.86.115.0/24 maxlen: 24
203.86.116.0/24 maxlen: 24
203.86.117.0/24 maxlen: 24
203.86.118.0/24 maxlen: 24
203.86.119.0/24 maxlen: 24
203.86.120.0/24 maxlen: 24
203.86.121.0/24 maxlen: 24
203.86.122.0/24 maxlen: 24
203.86.123.0/24 maxlen: 24
203.86.124.0/24 maxlen: 24
203.86.125.0/24 maxlen: 24
203.86.126.0/24 maxlen: 24
203.86.127.0/24 maxlen: 24
203.99.8.0/24 maxlen: 24
203.99.9.0/24 maxlen: 24
203.99.10.0/24 maxlen: 24
203.99.11.0/24 maxlen: 24
203.99.12.0/24 maxlen: 24
203.99.13.0/24 maxlen: 24
203.99.14.0/24 maxlen: 24
203.99.15.0/24 maxlen: 24
203.100.52.0/24 maxlen: 24
203.119.120.0/24 maxlen: 24
203.119.124.0/24 maxlen: 24
203.128.224.0/24 maxlen: 24
203.128.229.0/24 maxlen: 24
203.196.8.0/24 maxlen: 24
203.196.9.0/24 maxlen: 24
203.196.10.0/24 maxlen: 24
203.196.11.0/24 maxlen: 24
203.196.12.0/24 maxlen: 24
203.196.13.0/24 maxlen: 24
203.196.15.0/24 maxlen: 24
210.48.136.0/24 maxlen: 24
210.48.143.0/24 maxlen: 24
218.30.32.0/24 maxlen: 24
218.30.35.0/24 maxlen: 24
218.30.41.0/24 maxlen: 24
218.30.43.0/24 maxlen: 24
218.30.44.0/24 maxlen: 24
218.30.63.0/24 maxlen: 24
218.185.241.0/24 maxlen: 24
218.185.243.0/24 maxlen: 24
220.247.136.0/24 maxlen: 24
220.247.137.0/24 maxlen: 24
220.247.138.0/24 maxlen: 24
220.247.139.0/24 maxlen: 24
220.247.140.0/24 maxlen: 24
220.247.141.0/24 maxlen: 24
220.247.142.0/24 maxlen: 24
220.247.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl
rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 25 May 2024 14:50:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7567 (0x1d8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Validity
Not Before: Apr 25 03:04:25 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=6629c839-eb06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:03:75:8b:61:7d:b6:84:ca:ce:c1:8d:24:2a:
28:47:5c:67:29:d8:32:d4:4d:db:e1:d5:c8:09:86:
37:f3:65:64:18:97:54:ee:23:19:84:cb:dd:ba:18:
f4:fb:5b:13:e8:f5:bc:bd:69:bd:c5:e5:81:98:09:
db:28:6c:bc:62:d7:11:11:fb:c4:20:36:9d:74:06:
99:76:da:fe:45:35:6a:b2:1a:24:cf:52:29:19:34:
86:a3:cc:ad:68:53:2c:c4:c4:60:0a:2e:96:43:9c:
00:be:5b:c7:fe:5e:1c:f0:10:24:31:04:bb:03:98:
4d:45:33:54:a4:07:49:58:f0:c5:24:20:5e:e8:31:
3d:5d:f8:fc:9a:9f:80:51:ee:62:be:54:15:51:a0:
81:dc:dd:e6:6a:99:b5:48:4a:6e:18:39:79:cd:04:
42:64:39:9a:88:7c:3a:e1:2f:24:1e:57:31:3e:b0:
cd:9f:0e:9c:8c:ca:b6:8d:55:bb:bb:81:91:17:7c:
e1:f8:3f:ca:a5:74:6f:a8:34:dc:3e:1f:7f:25:8c:
04:41:fb:3d:9d:30:f6:ee:12:59:ac:37:b1:1c:5c:
9f:ca:e0:f1:c8:00:6d:e7:a3:24:24:15:4b:e0:00:
a5:d8:d2:5e:08:81:ef:3e:24:64:06:24:ce:3b:d2:
0f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:E5:C6:47:74:C4:F9:FC:E7:6A:1D:CB:90:A8:94:6F:B8:43:14:7C
X509v3 Authority Key Identifier:
keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/6ACA5114D9A611EDAEF7CC80C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
121.59.0.0/24
121.59.2.0/24
121.59.4.0/24
121.59.8.0/23
121.59.29.0-121.59.35.255
121.59.37.0-121.59.38.255
121.59.100.0-121.59.104.255
121.59.106.0/23
121.59.109.0-121.59.110.255
121.59.120.0-121.59.125.255
121.59.128.0/24
121.59.140.0-121.59.144.255
121.59.146.0/23
121.59.151.0-121.59.154.255
203.12.200.0/22
203.14.184.0/21
203.15.113.0-203.15.118.255
203.19.32.0/22
203.19.37.0-203.19.38.255
203.20.136.0-203.20.140.255
203.22.178.0-203.22.182.255
203.25.50.0/23
203.25.53.0-203.25.54.255
203.33.8.0/22
203.34.192.0/21
203.56.48.0/23
203.80.136.0/22
203.81.0.0/24
203.81.4.0/24
203.81.6.0/24
203.82.18.0/23
203.82.23.0/24
203.86.101.0-203.86.111.255
203.86.113.0-203.86.127.255
203.99.8.0/21
203.100.52.0/24
203.119.120.0/24
203.119.124.0/24
203.128.224.0/24
203.128.229.0/24
203.196.8.0-203.196.13.255
203.196.15.0/24
210.48.136.0/24
210.48.143.0/24
218.30.32.0/24
218.30.35.0/24
218.30.41.0/24
218.30.43.0-218.30.44.255
218.30.63.0/24
218.185.241.0/24
218.185.243.0/24
220.247.136.0/21
Signature Algorithm: sha256WithRSAEncryption
b7:41:d5:33:c7:f1:24:2b:e6:cb:fe:76:a3:fe:9e:09:9e:90:
89:fd:6d:83:a4:07:8e:18:8d:7b:03:8f:73:43:2e:e2:f5:b8:
7a:24:f7:13:fe:22:df:89:a0:d8:f2:be:7d:e1:d8:68:e4:39:
38:68:ab:5f:f1:70:5a:3b:e6:96:d0:0f:00:6a:a6:b7:93:8e:
7e:1e:cd:73:fd:a8:b2:c1:15:69:b2:de:5a:8c:f3:52:df:26:
03:0b:e4:fe:56:a0:91:92:18:19:87:dd:d1:8d:0a:8d:cb:57:
77:b7:e4:3a:af:30:9a:71:28:2b:ab:28:ca:f2:9b:b9:bf:28:
df:86:0f:be:55:3f:93:0f:57:84:be:19:53:60:6d:04:b7:36:
e2:2b:88:fd:52:9c:09:14:e8:59:b3:d9:da:50:45:5b:ff:5a:
4f:5a:f3:e0:f7:9a:df:aa:b0:02:aa:64:1d:a3:f8:24:dc:49:
12:e3:31:88:34:29:b3:3d:88:a2:be:45:72:c1:94:35:0d:03:
01:3e:f7:c9:4f:8b:86:25:21:90:ce:22:0f:7a:17:3a:9f:cb:
0d:2f:f7:45:8b:17:d1:e5:47:cf:81:82:8c:a9:dd:cb:c6:78:
d8:b2:8a:33:d6:fc:e2:53:3c:05:59:15:38:5d:53:64:a9:fd:
49:b4:e4:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org