Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/9BA94A4A0D8911ED999D4F3BC4F9AE02.roa
File: 9BA94A4A0D8911ED999D4F3BC4F9AE02.roa (raw, json)
Hash identifier: LvjI1kGLElm7JCE/Hv6TR8CpWAtHCUumiOTJr7qH3KA=
Subject key identifier: 6C:46:36:B4:1A:8A:8C:99:12:18:93:0C:46:F6:DF:80:41:8A:88:2D
Certificate issuer: /CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0
Certificate serial: 01CD
Authority key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/9BA94A4A0D8911ED999D4F3BC4F9AE02.roa
Signing time: Wed 03 Apr 2024 06:11:00 +0000
ROA not before: Wed 03 Apr 2024 06:11:00 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 138341
IP address blocks: 134.65.64.0/18 maxlen: 18
143.92.64.0/19 maxlen: 19
143.92.64.0/24 maxlen: 24
143.92.65.0/24 maxlen: 24
143.92.66.0/24 maxlen: 24
143.92.67.0/24 maxlen: 24
143.92.68.0/24 maxlen: 24
143.92.69.0/24 maxlen: 24
143.92.70.0/24 maxlen: 24
143.92.72.0/24 maxlen: 24
143.92.73.0/24 maxlen: 24
143.92.74.0/23 maxlen: 23
143.92.74.0/24 maxlen: 24
143.92.75.0/24 maxlen: 24
143.92.76.0/24 maxlen: 24
143.92.77.0/24 maxlen: 24
143.92.78.0/24 maxlen: 24
143.92.79.0/24 maxlen: 24
143.92.80.0/24 maxlen: 24
143.92.81.0/24 maxlen: 24
143.92.82.0/23 maxlen: 23
143.92.82.0/24 maxlen: 24
143.92.83.0/24 maxlen: 24
143.92.84.0/23 maxlen: 23
143.92.84.0/24 maxlen: 24
143.92.85.0/24 maxlen: 24
143.92.86.0/24 maxlen: 24
143.92.87.0/24 maxlen: 24
143.92.88.0/24 maxlen: 24
143.92.89.0/24 maxlen: 24
143.92.90.0/24 maxlen: 24
143.92.91.0/24 maxlen: 24
143.92.92.0/23 maxlen: 23
143.92.92.0/24 maxlen: 24
143.92.93.0/24 maxlen: 24
143.92.94.0/23 maxlen: 23
143.92.94.0/24 maxlen: 24
143.92.95.0/24 maxlen: 24
143.92.96.0/22 maxlen: 22
143.92.97.0/24 maxlen: 24
143.92.98.0/24 maxlen: 24
143.92.99.0/24 maxlen: 24
143.92.100.0/23 maxlen: 23
143.92.100.0/24 maxlen: 24
143.92.101.0/24 maxlen: 24
143.92.108.0/23 maxlen: 23
143.92.109.0/24 maxlen: 24
147.136.128.0/22 maxlen: 22
147.136.128.0/23 maxlen: 23
147.136.128.0/24 maxlen: 24
147.136.129.0/24 maxlen: 24
147.136.130.0/23 maxlen: 23
147.136.130.0/24 maxlen: 24
147.136.131.0/24 maxlen: 24
147.136.132.0/22 maxlen: 22
147.136.132.0/23 maxlen: 23
147.136.132.0/24 maxlen: 24
147.136.133.0/24 maxlen: 24
147.136.134.0/23 maxlen: 23
147.136.134.0/24 maxlen: 24
147.136.135.0/24 maxlen: 24
147.136.136.0/22 maxlen: 22
147.136.136.0/23 maxlen: 23
147.136.136.0/24 maxlen: 24
147.136.137.0/24 maxlen: 24
147.136.138.0/23 maxlen: 23
147.136.138.0/24 maxlen: 24
147.136.139.0/24 maxlen: 24
147.136.140.0/22 maxlen: 22
147.136.140.0/23 maxlen: 23
147.136.140.0/24 maxlen: 24
147.136.141.0/24 maxlen: 24
147.136.142.0/23 maxlen: 23
147.136.142.0/24 maxlen: 24
147.136.143.0/24 maxlen: 24
147.136.144.0/22 maxlen: 22
147.136.144.0/23 maxlen: 23
147.136.144.0/24 maxlen: 24
147.136.145.0/24 maxlen: 24
147.136.146.0/23 maxlen: 23
147.136.146.0/24 maxlen: 24
147.136.147.0/24 maxlen: 24
147.136.148.0/22 maxlen: 22
147.136.148.0/23 maxlen: 23
147.136.148.0/24 maxlen: 24
147.136.149.0/24 maxlen: 24
147.136.150.0/23 maxlen: 23
147.136.150.0/24 maxlen: 24
147.136.151.0/24 maxlen: 24
147.136.152.0/22 maxlen: 22
147.136.152.0/23 maxlen: 23
147.136.152.0/24 maxlen: 24
147.136.153.0/24 maxlen: 24
147.136.154.0/23 maxlen: 23
147.136.154.0/24 maxlen: 24
147.136.155.0/24 maxlen: 24
147.136.156.0/22 maxlen: 22
147.136.156.0/23 maxlen: 23
147.136.156.0/24 maxlen: 24
147.136.157.0/24 maxlen: 24
147.136.158.0/23 maxlen: 23
147.136.158.0/24 maxlen: 24
147.136.159.0/24 maxlen: 24
147.136.160.0/22 maxlen: 22
147.136.160.0/23 maxlen: 23
147.136.160.0/24 maxlen: 24
147.136.161.0/24 maxlen: 24
147.136.162.0/23 maxlen: 23
147.136.162.0/24 maxlen: 24
147.136.163.0/24 maxlen: 24
147.136.164.0/22 maxlen: 22
147.136.164.0/23 maxlen: 23
147.136.164.0/24 maxlen: 24
147.136.165.0/24 maxlen: 24
147.136.166.0/23 maxlen: 23
147.136.166.0/24 maxlen: 24
147.136.167.0/24 maxlen: 24
147.136.168.0/22 maxlen: 22
147.136.168.0/23 maxlen: 23
147.136.168.0/24 maxlen: 24
147.136.169.0/24 maxlen: 24
147.136.170.0/23 maxlen: 23
147.136.170.0/24 maxlen: 24
147.136.171.0/24 maxlen: 24
147.136.172.0/22 maxlen: 22
147.136.172.0/23 maxlen: 23
147.136.172.0/24 maxlen: 24
147.136.173.0/24 maxlen: 24
147.136.174.0/23 maxlen: 23
147.136.174.0/24 maxlen: 24
147.136.175.0/24 maxlen: 24
147.136.176.0/22 maxlen: 22
147.136.176.0/23 maxlen: 23
147.136.176.0/24 maxlen: 24
147.136.177.0/24 maxlen: 24
147.136.178.0/23 maxlen: 23
147.136.178.0/24 maxlen: 24
147.136.179.0/24 maxlen: 24
147.136.180.0/22 maxlen: 22
147.136.180.0/23 maxlen: 23
147.136.180.0/24 maxlen: 24
147.136.181.0/24 maxlen: 24
147.136.182.0/23 maxlen: 23
147.136.182.0/24 maxlen: 24
147.136.183.0/24 maxlen: 24
147.136.184.0/22 maxlen: 22
147.136.184.0/23 maxlen: 23
147.136.184.0/24 maxlen: 24
147.136.185.0/24 maxlen: 24
147.136.186.0/23 maxlen: 23
147.136.186.0/24 maxlen: 24
147.136.187.0/24 maxlen: 24
147.136.188.0/22 maxlen: 22
147.136.188.0/23 maxlen: 23
147.136.188.0/24 maxlen: 24
147.136.189.0/24 maxlen: 24
147.136.190.0/23 maxlen: 23
147.136.190.0/24 maxlen: 24
147.136.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl
rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 22 May 2024 02:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 461 (0x1cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0
Validity
Not Before: Apr 3 06:11:00 2024 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=660cf2f4-d029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f1:d5:87:20:09:73:ea:2d:06:da:a8:25:37:
9c:dc:99:86:e4:9e:ea:47:3f:71:46:bf:3d:b2:5c:
bf:d2:b0:69:b6:65:3e:c3:58:12:dd:92:50:6b:ae:
07:fb:8c:a4:9a:26:be:0e:4e:bb:2a:bc:33:10:c3:
42:b8:c6:03:0c:74:78:5f:1e:a4:d2:ad:00:96:39:
0c:2e:0e:98:80:56:2b:c0:d9:c0:6e:68:f5:68:a4:
44:14:fd:1c:29:6c:6f:cb:0e:22:3d:72:7d:19:d0:
b4:ba:9d:6f:32:4c:d9:54:08:c1:35:e9:21:b0:ef:
49:c3:a1:e5:c0:74:ca:9c:0d:5f:e5:7f:c5:f9:44:
2b:62:9e:1a:5d:d5:9b:ab:53:44:be:e2:22:f1:79:
85:1b:07:81:61:14:1b:dd:d7:fe:ee:87:83:bd:ef:
38:fa:9d:b6:29:67:7a:3c:00:e5:62:e4:49:c9:23:
b4:e1:3d:af:0a:cb:d0:d5:b6:51:a3:21:b5:51:5c:
35:b8:96:82:93:19:b0:4d:c1:3b:f6:c0:c0:a5:02:
51:23:9e:2d:1a:40:33:c8:a5:3f:65:b1:37:57:8f:
12:8a:5a:1a:d8:17:15:5f:0a:6a:22:4c:8a:c1:ea:
44:9a:23:dd:e8:4d:a2:83:ab:f6:6d:ee:cc:9f:a0:
0f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:46:36:B4:1A:8A:8C:99:12:18:93:0C:46:F6:DF:80:41:8A:88:2D
X509v3 Authority Key Identifier:
keyid:74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/9BA94A4A0D8911ED999D4F3BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
134.65.64.0/18
143.92.64.0-143.92.101.255
143.92.108.0/23
147.136.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a0:4b:38:48:c4:74:e4:94:d0:0a:0f:45:10:ee:eb:e7:49:e8:
28:d3:65:1b:9b:a9:12:59:53:46:83:df:82:72:7b:49:09:3c:
ba:a2:53:04:20:a3:31:16:cd:ea:a7:4d:35:83:02:7a:87:dd:
83:da:8e:93:ed:26:54:4c:40:95:fe:74:1d:56:c4:8f:91:fb:
9c:69:f8:01:ef:e4:4f:b7:66:1e:4e:31:5f:a9:02:f7:f8:5d:
80:12:a6:bb:5e:71:31:8f:1d:86:8a:10:34:cb:9a:19:bf:58:
a2:08:9c:8d:52:6f:73:85:95:de:0a:bf:9f:d1:57:45:8f:e4:
b4:e5:20:8f:13:1b:d6:1c:80:e5:8c:08:23:91:f6:5e:6e:e6:
75:6f:f0:aa:15:92:04:6a:e1:be:ce:35:1b:83:00:12:16:d9:
68:a6:93:ac:e8:3d:e3:bb:3a:9b:87:4a:90:ed:b3:af:8d:c5:
be:8e:19:19:7e:a7:43:02:a5:28:b3:fb:4d:94:a1:b2:c7:5c:
22:d6:7e:5b:b4:49:5c:ff:39:3e:e7:8a:4f:7d:91:12:f9:89:
94:c4:eb:e5:0b:66:87:91:c1:ee:7e:6f:e8:65:df:c0:6a:48:
72:6d:fe:34:90:34:bc:95:96:f5:b5:e2:26:78:ed:a9:aa:bd:
c9:38:6f:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 05:22:35 2024 by rpki-client on console-fra.rpki-client.org