Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/64A2C96E919E11EEA5241125C4F9AE02.roa
File: 64A2C96E919E11EEA5241125C4F9AE02.roa (raw, json)
Hash identifier: Aal+HBep+5xZrlmKHLkJr4jyZZt99dWiNpvcTmJl2F0=
Subject key identifier: A0:99:88:F7:64:45:F1:B4:E1:F5:50:9B:D2:A5:5C:D3:FB:A5:F0:83
Certificate issuer: /CN=A91616DC/serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34
Certificate serial: 0BB0
Authority key identifier: 97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/64A2C96E919E11EEA5241125C4F9AE02.roa
Signing time: Wed 10 Apr 2024 19:58:18 +0000
ROA not before: Wed 10 Apr 2024 19:58:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 137515
IP address blocks: 103.111.120.0/22 maxlen: 24
2405:7e40::/32 maxlen: 36
2405:7e40:f100::/48 maxlen: 48
2405:7e40:f101::/48 maxlen: 48
2405:7e40:f102::/48 maxlen: 48
2405:7e40:f103::/48 maxlen: 48
2405:7e40:f104::/48 maxlen: 48
2405:7e40:f105::/48 maxlen: 48
2405:7e40:f106::/48 maxlen: 48
2405:7e40:f107::/48 maxlen: 48
2405:7e40:f108::/48 maxlen: 48
2405:7e40:f109::/48 maxlen: 48
2405:7e40:f10a::/48 maxlen: 48
2405:7e40:f10b::/48 maxlen: 48
2405:7e40:f10c::/48 maxlen: 48
2405:7e40:f10d::/48 maxlen: 48
2405:7e40:f10e::/48 maxlen: 48
2405:7e40:f10f::/48 maxlen: 48
2405:7e40:f110::/48 maxlen: 48
2405:7e40:f111::/48 maxlen: 48
2405:7e40:f112::/48 maxlen: 48
2405:7e40:f113::/48 maxlen: 48
2405:7e40:f114::/48 maxlen: 48
2405:7e40:f115::/48 maxlen: 48
2405:7e40:f116::/48 maxlen: 48
2405:7e40:f117::/48 maxlen: 48
2405:7e40:f118::/48 maxlen: 48
2405:7e40:f119::/48 maxlen: 48
2405:7e40:f11a::/48 maxlen: 48
2405:7e40:f11b::/48 maxlen: 48
2405:7e40:f11c::/48 maxlen: 48
2405:7e40:f11d::/48 maxlen: 48
2405:7e40:f11e::/48 maxlen: 48
2405:7e40:f11f::/48 maxlen: 48
2405:7e40:f120::/48 maxlen: 48
2405:7e40:f121::/48 maxlen: 48
2405:7e40:f122::/48 maxlen: 48
2405:7e40:f123::/48 maxlen: 48
2405:7e40:f124::/48 maxlen: 48
2405:7e40:f125::/48 maxlen: 48
2405:7e40:f126::/48 maxlen: 48
2405:7e40:f127::/48 maxlen: 48
2405:7e40:f128::/48 maxlen: 48
2405:7e40:f129::/48 maxlen: 48
2405:7e40:f12a::/48 maxlen: 48
2405:7e40:f12b::/48 maxlen: 48
2405:7e40:f12c::/48 maxlen: 48
2405:7e40:f12d::/48 maxlen: 48
2405:7e40:f12e::/48 maxlen: 48
2405:7e40:f12f::/48 maxlen: 48
2405:7e40:f130::/48 maxlen: 48
2405:7e40:f131::/48 maxlen: 48
2405:7e40:f132::/48 maxlen: 48
2405:7e40:f133::/48 maxlen: 48
2405:7e40:f134::/48 maxlen: 48
2405:7e40:f135::/48 maxlen: 48
2405:7e40:f136::/48 maxlen: 48
2405:7e40:f137::/48 maxlen: 48
2405:7e40:f138::/48 maxlen: 48
2405:7e40:f139::/48 maxlen: 48
2405:7e40:f13a::/48 maxlen: 48
2405:7e40:f13b::/48 maxlen: 48
2405:7e40:f13c::/48 maxlen: 48
2405:7e40:f13d::/48 maxlen: 48
2405:7e40:f13e::/48 maxlen: 48
2405:7e40:f13f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl
rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 02 Jun 2024 19:37:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2992 (0xbb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91616DC/serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34
Validity
Not Before: Apr 10 19:58:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6616ef5a-762f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:69:7e:c6:de:8d:59:59:1f:02:7c:69:e3:95:
b7:86:d4:f0:08:dc:b4:41:ba:be:9b:99:a1:4c:ff:
d5:ea:1b:1a:0a:a5:8e:82:40:62:f0:5b:52:a4:d7:
21:ac:e7:0c:32:16:64:35:e2:db:99:0c:b0:95:c9:
57:80:ef:40:38:48:2c:66:77:5d:a8:19:27:f6:aa:
f4:8c:ed:e9:fe:7a:1c:73:68:91:fb:23:d9:e0:62:
29:80:8c:33:2c:6f:48:db:50:ca:ff:74:e6:de:d7:
01:15:ac:97:09:bf:d3:6f:cf:68:a8:57:d6:50:15:
4a:de:6c:20:95:f1:42:8c:ee:67:26:67:ac:68:ac:
04:c2:6c:f6:ae:dc:a3:72:17:dd:71:e5:4e:4c:5d:
6e:e0:7e:d1:b3:47:db:70:9d:a2:b9:85:83:c7:f6:
1e:3b:29:8e:cd:3c:81:f0:09:54:71:8b:9b:9b:e4:
b5:e5:1d:9e:08:ac:6e:92:62:3a:45:15:92:18:e8:
1d:e8:79:1f:0f:a1:72:97:a4:67:d6:6f:fb:62:94:
56:c0:2d:54:f2:6f:55:53:d6:a9:ec:9d:85:90:89:
b7:6a:9c:2f:33:92:c1:bd:25:a2:57:3b:15:36:df:
d0:cd:ea:fc:25:80:cd:4c:95:74:67:6d:32:66:ca:
2a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:99:88:F7:64:45:F1:B4:E1:F5:50:9B:D2:A5:5C:D3:FB:A5:F0:83
X509v3 Authority Key Identifier:
keyid:97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/64A2C96E919E11EEA5241125C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.111.120.0/22
IPv6:
2405:7e40::/32
Signature Algorithm: sha256WithRSAEncryption
85:db:79:8a:12:9c:98:24:b1:0e:22:59:52:33:5c:02:dd:02:
7b:14:ec:24:96:8f:27:19:89:4c:6c:2b:38:a9:16:85:5a:2b:
fd:4e:1b:b7:2f:15:a4:2f:8f:84:a8:94:21:c9:8c:64:e6:d6:
0b:ea:8c:c7:06:94:92:f2:cf:13:38:ca:be:85:a3:68:df:2a:
d8:00:29:9e:18:09:21:fe:58:9c:22:89:34:d4:f5:07:2c:1b:
3f:40:33:9f:63:f1:1d:34:12:57:62:60:d2:ad:3a:36:f3:26:
ad:35:ac:fc:fc:e2:96:c6:c1:50:41:73:30:b6:1a:d6:1d:56:
ad:24:ca:ca:bc:29:f4:15:17:01:3c:14:d0:24:6d:79:41:3b:
2d:ff:ad:09:5c:ea:e2:2f:a5:43:7b:e0:aa:61:79:ae:8c:26:
ac:d3:f7:e4:0a:81:83:1b:d7:ce:cc:87:2a:08:7a:c3:62:4b:
f7:ab:f3:9e:d4:31:ec:af:6f:c6:c8:39:3a:71:de:51:55:91:
1d:4e:d7:ac:ed:e7:62:b1:c3:7a:71:db:d0:7d:6a:44:10:73:
7d:17:e5:99:a7:ba:8b:90:1e:46:6d:97:22:b6:65:6c:2f:91:
7a:f6:e5:0c:73:bc:16:d1:bc:75:d5:ec:fa:08:46:1f:d2:62:
60:95:a3:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 23:05:29 2024 by rpki-client on console-ams.rpki-client.org