Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/6ACA5114D9A611EDAEF7CC80C4F9AE02.roa
File: 6ACA5114D9A611EDAEF7CC80C4F9AE02.roa (raw, json)
Hash identifier: 6CGtvwZzKlGyj0n4nVu/3SG7oRlpsMurLY4nkMokmcQ=
Subject key identifier: 3C:58:D9:85:4E:EF:E3:46:B9:B8:1A:89:FA:EA:7D:FF:D2:87:9A:5B
Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Certificate serial: 1E56
Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/6ACA5114D9A611EDAEF7CC80C4F9AE02.roa
Signing time: Fri 08 Nov 2024 08:33:11 +0000
ROA not before: Fri 08 Nov 2024 08:33:11 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 23764
IP address blocks: 121.59.0.0/24 maxlen: 24
121.59.2.0/24 maxlen: 24
121.59.4.0/24 maxlen: 24
121.59.8.0/24 maxlen: 24
121.59.9.0/24 maxlen: 24
121.59.29.0/24 maxlen: 24
121.59.30.0/24 maxlen: 24
121.59.31.0/24 maxlen: 24
121.59.32.0/22 maxlen: 24
121.59.37.0/24 maxlen: 24
121.59.38.0/24 maxlen: 24
121.59.100.0/24 maxlen: 24
121.59.101.0/24 maxlen: 24
121.59.102.0/24 maxlen: 24
121.59.103.0/24 maxlen: 24
121.59.104.0/24 maxlen: 24
121.59.106.0/24 maxlen: 24
121.59.107.0/24 maxlen: 24
121.59.109.0/24 maxlen: 24
121.59.110.0/24 maxlen: 24
121.59.120.0/24 maxlen: 24
121.59.121.0/24 maxlen: 24
121.59.122.0/24 maxlen: 24
121.59.123.0/24 maxlen: 24
121.59.124.0/23 maxlen: 24
121.59.128.0/24 maxlen: 24
121.59.140.0/24 maxlen: 24
121.59.141.0/24 maxlen: 24
121.59.142.0/24 maxlen: 24
121.59.143.0/24 maxlen: 24
121.59.144.0/24 maxlen: 24
121.59.146.0/24 maxlen: 24
121.59.147.0/24 maxlen: 24
121.59.151.0/24 maxlen: 24
121.59.152.0/24 maxlen: 24
121.59.153.0/24 maxlen: 24
121.59.154.0/24 maxlen: 24
203.12.200.0/24 maxlen: 24
203.12.201.0/24 maxlen: 24
203.12.202.0/24 maxlen: 24
203.12.203.0/24 maxlen: 24
203.14.184.0/22 maxlen: 22
203.14.188.0/24 maxlen: 24
203.14.189.0/24 maxlen: 24
203.14.190.0/24 maxlen: 24
203.14.191.0/24 maxlen: 24
203.15.113.0/24 maxlen: 24
203.15.114.0/24 maxlen: 24
203.15.115.0/24 maxlen: 24
203.15.116.0/24 maxlen: 24
203.15.117.0/24 maxlen: 24
203.15.118.0/24 maxlen: 24
203.19.32.0/22 maxlen: 22
203.19.32.0/24 maxlen: 24
203.19.37.0/24 maxlen: 24
203.19.38.0/24 maxlen: 24
203.20.136.0/24 maxlen: 24
203.20.137.0/24 maxlen: 24
203.20.138.0/24 maxlen: 24
203.20.139.0/24 maxlen: 24
203.20.140.0/24 maxlen: 24
203.20.142.0/24 maxlen: 24
203.22.178.0/24 maxlen: 24
203.22.179.0/24 maxlen: 24
203.22.180.0/24 maxlen: 24
203.22.181.0/24 maxlen: 24
203.22.182.0/24 maxlen: 24
203.25.50.0/24 maxlen: 24
203.25.51.0/24 maxlen: 24
203.25.53.0/24 maxlen: 24
203.25.54.0/24 maxlen: 24
203.25.55.0/24 maxlen: 24
203.33.8.0/22 maxlen: 22
203.33.8.0/24 maxlen: 24
203.33.9.0/24 maxlen: 24
203.33.10.0/24 maxlen: 24
203.34.192.0/24 maxlen: 24
203.34.193.0/24 maxlen: 24
203.34.194.0/24 maxlen: 24
203.34.195.0/24 maxlen: 24
203.34.196.0/24 maxlen: 24
203.34.197.0/24 maxlen: 24
203.34.198.0/24 maxlen: 24
203.34.199.0/24 maxlen: 24
203.56.48.0/23 maxlen: 23
203.80.136.0/23 maxlen: 24
203.80.138.0/23 maxlen: 24
203.81.0.0/24 maxlen: 24
203.81.4.0/24 maxlen: 24
203.81.6.0/24 maxlen: 24
203.82.18.0/24 maxlen: 24
203.82.19.0/24 maxlen: 24
203.82.23.0/24 maxlen: 24
203.86.101.0/24 maxlen: 24
203.86.102.0/24 maxlen: 24
203.86.103.0/24 maxlen: 24
203.86.104.0/24 maxlen: 24
203.86.105.0/24 maxlen: 24
203.86.106.0/24 maxlen: 24
203.86.107.0/24 maxlen: 24
203.86.108.0/24 maxlen: 24
203.86.109.0/24 maxlen: 24
203.86.110.0/24 maxlen: 24
203.86.111.0/24 maxlen: 24
203.86.113.0/24 maxlen: 24
203.86.114.0/24 maxlen: 24
203.86.115.0/24 maxlen: 24
203.86.116.0/24 maxlen: 24
203.86.117.0/24 maxlen: 24
203.86.118.0/24 maxlen: 24
203.86.119.0/24 maxlen: 24
203.86.120.0/24 maxlen: 24
203.86.121.0/24 maxlen: 24
203.86.122.0/24 maxlen: 24
203.86.123.0/24 maxlen: 24
203.86.124.0/24 maxlen: 24
203.86.125.0/24 maxlen: 24
203.86.126.0/24 maxlen: 24
203.86.127.0/24 maxlen: 24
203.99.8.0/24 maxlen: 24
203.99.9.0/24 maxlen: 24
203.99.10.0/24 maxlen: 24
203.99.11.0/24 maxlen: 24
203.99.12.0/24 maxlen: 24
203.99.13.0/24 maxlen: 24
203.99.14.0/24 maxlen: 24
203.99.15.0/24 maxlen: 24
203.100.52.0/24 maxlen: 24
203.119.120.0/24 maxlen: 24
203.119.124.0/24 maxlen: 24
203.128.224.0/24 maxlen: 24
203.128.229.0/24 maxlen: 24
203.196.8.0/24 maxlen: 24
203.196.9.0/24 maxlen: 24
203.196.10.0/24 maxlen: 24
203.196.11.0/24 maxlen: 24
203.196.12.0/24 maxlen: 24
203.196.13.0/24 maxlen: 24
203.196.14.0/24 maxlen: 24
203.196.15.0/24 maxlen: 24
210.48.136.0/24 maxlen: 24
210.48.143.0/24 maxlen: 24
218.30.32.0/24 maxlen: 24
218.30.35.0/24 maxlen: 24
218.30.41.0/24 maxlen: 24
218.30.43.0/24 maxlen: 24
218.30.44.0/24 maxlen: 24
218.30.62.0/23 maxlen: 23
218.30.63.0/24 maxlen: 24
218.185.241.0/24 maxlen: 24
218.185.243.0/24 maxlen: 24
220.247.136.0/24 maxlen: 24
220.247.137.0/24 maxlen: 24
220.247.138.0/24 maxlen: 24
220.247.139.0/24 maxlen: 24
220.247.140.0/24 maxlen: 24
220.247.141.0/24 maxlen: 24
220.247.142.0/24 maxlen: 24
220.247.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl
rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:53:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7766 (0x1e56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Validity
Not Before: Nov 8 08:33:11 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=672dccc7-e835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6d:d3:5a:95:29:2c:37:84:8a:bd:d5:8e:4b:
57:02:99:2d:b1:59:3f:20:5e:c0:1d:e6:7a:2f:0e:
51:8a:6d:1d:bf:b2:ea:92:15:8a:3c:16:ed:f0:71:
70:72:7c:38:a2:53:3e:e4:a1:8c:3c:d4:2d:22:67:
71:a1:86:82:0c:c0:37:c5:6a:1a:8b:90:2b:ec:6e:
14:c4:06:03:de:16:17:7c:25:cc:f8:4f:98:00:25:
1b:a7:d7:02:29:87:86:51:ef:59:0f:0a:d5:a9:a2:
3d:b6:05:8f:bb:67:07:2c:3d:81:f2:33:c9:3f:35:
bb:de:3d:1b:40:e0:16:dd:22:90:81:db:09:1f:cc:
16:cf:57:19:92:2b:f1:ba:5f:2f:10:88:33:7f:9f:
d9:54:1d:06:39:d0:2a:82:6c:df:1b:93:90:b1:90:
cf:9e:1d:66:14:0c:a3:d1:64:76:2e:9f:7b:b3:8f:
2b:c8:b6:12:95:95:ff:c1:c8:94:cf:50:81:93:3f:
49:f9:d8:7b:f6:ec:d3:bb:79:5c:d5:54:06:95:77:
0c:1f:09:9d:a4:6c:56:31:8a:b1:ee:51:c9:af:dd:
5c:64:6e:62:23:fb:6c:74:7b:a4:2f:78:b5:5d:fb:
25:ed:76:0b:86:7c:69:6f:6a:44:2a:60:7b:70:48:
56:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:58:D9:85:4E:EF:E3:46:B9:B8:1A:89:FA:EA:7D:FF:D2:87:9A:5B
X509v3 Authority Key Identifier:
keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/6ACA5114D9A611EDAEF7CC80C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
121.59.0.0/24
121.59.2.0/24
121.59.4.0/24
121.59.8.0/23
121.59.29.0-121.59.35.255
121.59.37.0-121.59.38.255
121.59.100.0-121.59.104.255
121.59.106.0/23
121.59.109.0-121.59.110.255
121.59.120.0-121.59.125.255
121.59.128.0/24
121.59.140.0-121.59.144.255
121.59.146.0/23
121.59.151.0-121.59.154.255
203.12.200.0/22
203.14.184.0/21
203.15.113.0-203.15.118.255
203.19.32.0/22
203.19.37.0-203.19.38.255
203.20.136.0-203.20.140.255
203.20.142.0/24
203.22.178.0-203.22.182.255
203.25.50.0/23
203.25.53.0-203.25.55.255
203.33.8.0/22
203.34.192.0/21
203.56.48.0/23
203.80.136.0/22
203.81.0.0/24
203.81.4.0/24
203.81.6.0/24
203.82.18.0/23
203.82.23.0/24
203.86.101.0-203.86.111.255
203.86.113.0-203.86.127.255
203.99.8.0/21
203.100.52.0/24
203.119.120.0/24
203.119.124.0/24
203.128.224.0/24
203.128.229.0/24
203.196.8.0/21
210.48.136.0/24
210.48.143.0/24
218.30.32.0/24
218.30.35.0/24
218.30.41.0/24
218.30.43.0-218.30.44.255
218.30.62.0/23
218.185.241.0/24
218.185.243.0/24
220.247.136.0/21
Signature Algorithm: sha256WithRSAEncryption
bd:57:20:0e:3a:cf:ad:52:33:03:99:8a:af:1f:c8:0f:8f:a7:
59:ef:c8:c1:67:80:ab:f5:da:2d:87:e0:53:3d:ba:1d:5a:d2:
06:0d:82:b2:aa:1a:33:f9:03:62:1c:fb:74:9a:bc:f1:a3:76:
76:3d:c5:6c:69:a7:13:86:9b:1f:6d:4e:de:5f:a8:62:46:b2:
30:3f:6e:c4:17:ed:46:74:51:47:1c:ea:3e:77:fd:b7:f1:81:
af:2a:c6:06:60:2d:1f:6b:31:b1:36:a5:af:02:c0:85:bb:fb:
b2:7d:d9:b5:2a:c1:08:7b:62:b2:f0:f9:fe:f1:da:6b:0d:af:
5b:6b:04:38:89:02:ed:00:39:58:55:7e:e2:25:cb:c8:45:76:
e1:22:67:77:e2:2b:89:9a:70:77:15:6d:77:00:a1:c3:20:f7:
35:55:25:23:5b:2f:b8:80:a0:1b:3f:34:17:48:8d:b6:72:a3:
51:ff:6d:79:47:ee:de:94:a7:de:2e:52:33:d7:17:71:69:8c:
02:02:10:3e:69:f0:d0:99:eb:b1:ff:7a:2c:1d:a8:a1:09:8c:
a8:02:99:d8:fb:fd:e3:81:21:bb:65:d3:4d:37:3c:7f:9a:29:
25:ed:a4:63:0d:cb:80:e4:3a:5d:d5:c8:43:9e:1a:f3:af:70:
cd:e7:b0:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 05:50:12 2024 by rpki-client on console-fra.rpki-client.org