Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/3A826C8CED9311EFB3825372C4F9AE02.roa
File: 3A826C8CED9311EFB3825372C4F9AE02.roa (raw, json)
Hash identifier: AIcPcPwO0MC9ukAjdNsCx6XwtejcpEw/imMkdJauIwo=
Subject key identifier: F8:D3:C0:23:85:DC:2F:D7:31:24:B9:35:2F:0D:35:EA:1B:88:18:04
Certificate issuer: /CN=A9161613/serialNumber=09FC077F33E3AD67BF147755167A3AD4EACB1E7C
Certificate serial: 05EF
Authority key identifier: 09:FC:07:7F:33:E3:AD:67:BF:14:77:55:16:7A:3A:D4:EA:CB:1E:7C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/3A826C8CED9311EFB3825372C4F9AE02.roa
Signing time: Tue 18 Feb 2025 00:56:47 +0000
ROA not before: Tue 18 Feb 2025 00:56:47 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 18190
IP address blocks: 49.157.9.0/24 maxlen: 24
49.157.10.0/24 maxlen: 24
49.157.11.0/24 maxlen: 24
49.157.12.0/24 maxlen: 24
49.157.13.0/24 maxlen: 24
49.157.16.0/24 maxlen: 24
49.157.17.0/24 maxlen: 24
49.157.18.0/24 maxlen: 24
49.157.19.0/24 maxlen: 24
49.157.20.0/24 maxlen: 24
49.157.21.0/24 maxlen: 24
49.157.22.0/24 maxlen: 24
49.157.23.0/24 maxlen: 24
49.157.24.0/24 maxlen: 24
49.157.25.0/24 maxlen: 24
49.157.29.0/24 maxlen: 24
49.157.30.0/24 maxlen: 24
49.157.31.0/24 maxlen: 24
49.157.32.0/24 maxlen: 24
49.157.33.0/24 maxlen: 24
49.157.34.0/24 maxlen: 24
49.157.35.0/24 maxlen: 24
49.157.36.0/24 maxlen: 24
49.157.37.0/24 maxlen: 24
49.157.38.0/24 maxlen: 24
49.157.39.0/24 maxlen: 24
49.157.40.0/24 maxlen: 24
49.157.41.0/24 maxlen: 24
49.157.42.0/24 maxlen: 24
49.157.43.0/24 maxlen: 24
49.157.44.0/24 maxlen: 24
49.157.45.0/24 maxlen: 24
49.157.55.0/24 maxlen: 24
49.157.56.0/24 maxlen: 24
49.157.57.0/24 maxlen: 24
49.157.58.0/24 maxlen: 24
49.157.59.0/24 maxlen: 24
61.28.168.0/24 maxlen: 24
112.199.73.0/24 maxlen: 24
113.61.32.0/24 maxlen: 24
113.61.33.0/24 maxlen: 24
113.61.34.0/24 maxlen: 24
113.61.35.0/24 maxlen: 24
113.61.36.0/24 maxlen: 24
113.61.38.0/24 maxlen: 24
113.61.42.0/24 maxlen: 24
113.61.43.0/24 maxlen: 24
113.61.44.0/24 maxlen: 24
113.61.45.0/24 maxlen: 24
113.61.46.0/24 maxlen: 24
113.61.47.0/24 maxlen: 24
113.61.48.0/24 maxlen: 24
113.61.49.0/24 maxlen: 24
113.61.50.0/24 maxlen: 24
113.61.51.0/24 maxlen: 24
113.61.52.0/24 maxlen: 24
113.61.53.0/24 maxlen: 24
113.61.54.0/24 maxlen: 24
113.61.55.0/24 maxlen: 24
113.61.56.0/24 maxlen: 24
113.61.57.0/24 maxlen: 24
113.61.58.0/24 maxlen: 24
113.61.59.0/24 maxlen: 24
113.61.60.0/24 maxlen: 24
113.61.61.0/24 maxlen: 24
113.61.62.0/24 maxlen: 24
113.61.63.0/24 maxlen: 24
115.85.2.0/24 maxlen: 24
116.50.137.0/24 maxlen: 24
116.50.138.0/24 maxlen: 24
116.50.139.0/24 maxlen: 24
116.50.140.0/24 maxlen: 24
116.50.142.0/24 maxlen: 24
116.50.143.0/24 maxlen: 24
116.50.144.0/24 maxlen: 24
116.50.145.0/24 maxlen: 24
116.50.183.0/24 maxlen: 24
116.50.238.0/24 maxlen: 24
116.50.252.0/24 maxlen: 24
117.104.240.0/24 maxlen: 24
117.104.241.0/24 maxlen: 24
117.104.242.0/24 maxlen: 24
117.104.243.0/24 maxlen: 24
117.104.244.0/24 maxlen: 24
117.104.245.0/24 maxlen: 24
117.104.246.0/24 maxlen: 24
117.104.247.0/24 maxlen: 24
117.104.248.0/24 maxlen: 24
117.104.249.0/24 maxlen: 24
117.104.250.0/24 maxlen: 24
117.104.251.0/24 maxlen: 24
117.104.252.0/24 maxlen: 24
117.104.253.0/24 maxlen: 24
117.104.254.0/24 maxlen: 24
180.232.5.0/24 maxlen: 24
180.232.6.0/24 maxlen: 24
180.232.7.0/24 maxlen: 24
180.232.8.0/24 maxlen: 24
180.232.9.0/24 maxlen: 24
180.232.15.0/24 maxlen: 24
180.232.16.0/24 maxlen: 24
180.232.17.0/24 maxlen: 24
180.232.18.0/24 maxlen: 24
180.232.19.0/24 maxlen: 24
180.232.113.0/24 maxlen: 24
180.232.114.0/24 maxlen: 24
180.232.115.0/24 maxlen: 24
180.232.116.0/24 maxlen: 24
180.232.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.crl
rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 19 Mar 2025 23:05:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1519 (0x5ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9161613
Validity
Not Before: Feb 18 00:56:47 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67b3dacf-83dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b9:57:65:0d:ec:6c:46:36:57:1b:ac:80:f4:
ae:65:98:7c:24:57:84:ed:70:49:dd:ae:b6:28:5c:
37:3b:1e:c2:89:3f:a8:9b:e6:a0:fb:b8:3c:13:52:
27:e3:01:a1:8d:7f:92:c4:01:d9:51:68:7b:40:f8:
2a:55:19:55:ee:c0:5c:d2:df:d3:17:da:3f:bc:e6:
5b:5d:a8:26:82:53:ba:29:38:51:ea:92:ea:74:77:
06:22:ca:78:82:dc:0f:48:43:fb:d2:c2:89:83:7c:
86:cf:d1:c7:ce:e1:ce:e6:c0:47:25:29:e1:fe:ae:
5a:31:55:62:7f:e2:97:ef:d4:d0:be:09:5e:bb:10:
f7:9d:d8:e8:2a:f3:04:c2:ac:8b:30:28:64:e5:a0:
11:5a:8a:b6:e6:36:a0:09:50:5f:67:87:24:2f:06:
19:f1:82:ec:2c:2f:28:25:c7:22:66:c7:fe:30:13:
fb:bd:e1:d2:b5:ec:42:c9:a2:6e:40:7b:d5:ba:da:
d6:9f:ba:49:1e:4d:e9:a0:a5:41:18:55:a2:05:e0:
50:29:3f:6e:25:87:f1:82:06:81:72:5c:51:bb:72:
7c:2c:a5:ec:90:d1:d7:26:33:d8:1b:ac:99:ea:79:
a3:4c:ce:9c:d4:cc:13:35:e0:f8:41:3e:42:7d:03:
bd:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:D3:C0:23:85:DC:2F:D7:31:24:B9:35:2F:0D:35:EA:1B:88:18:04
X509v3 Authority Key Identifier:
keyid:09:FC:07:7F:33:E3:AD:67:BF:14:77:55:16:7A:3A:D4:EA:CB:1E:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/3A826C8CED9311EFB3825372C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.157.9.0-49.157.13.255
49.157.16.0-49.157.25.255
49.157.29.0-49.157.45.255
49.157.55.0-49.157.59.255
61.28.168.0/24
112.199.73.0/24
113.61.32.0-113.61.36.255
113.61.38.0/24
113.61.42.0-113.61.63.255
115.85.2.0/24
116.50.137.0-116.50.140.255
116.50.142.0-116.50.145.255
116.50.183.0/24
116.50.238.0/24
116.50.252.0/24
117.104.240.0-117.104.254.255
180.232.5.0-180.232.9.255
180.232.15.0-180.232.19.255
180.232.113.0-180.232.117.255
Signature Algorithm: sha256WithRSAEncryption
78:a8:df:ca:72:13:f6:fc:cb:27:72:2a:d6:72:6a:12:03:e9:
25:c0:4d:4b:f7:28:a5:b2:cb:56:db:f8:93:a1:19:11:08:d3:
99:3c:4b:af:fe:b9:cd:e2:0c:91:d5:f4:c1:c4:ae:94:e8:51:
48:a5:05:92:fd:7f:d6:61:00:ad:d2:53:50:2b:42:b3:8e:ca:
70:39:38:e3:e0:44:5e:a8:21:cc:7d:99:27:20:01:3b:ad:0d:
7b:33:97:7e:10:05:64:14:52:e2:d1:ca:33:88:00:ac:d1:e6:
ac:c6:de:15:3c:5f:57:02:d8:ad:c7:f1:99:bb:30:5d:a2:ef:
61:af:26:38:d0:f4:04:ed:f9:9f:b0:af:e7:04:d4:85:f5:f2:
7f:1a:98:cd:10:b1:f4:88:3d:51:9a:76:38:a3:52:cc:d7:3a:
0d:3d:23:fb:d2:da:04:42:71:0e:d6:ab:c7:82:b3:ae:fb:c7:
51:72:8e:aa:41:24:6b:9a:a9:1c:19:8c:51:95:7d:cf:94:d8:
a1:cd:0f:66:5b:44:a3:95:a8:e9:a9:b3:25:5f:b2:3a:01:3c:
3c:75:66:79:a0:b5:da:b3:4f:b5:f3:23:97:21:a9:94:33:f1:
c2:0f:bf:fd:39:25:7e:0b:7c:e2:e0:18:30:77:fd:45:92:7c:
92:cc:83:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 06:33:16 2025 by rpki-client