Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/727C68508AB411EA89D83541C4F9AE02.roa
File: 727C68508AB411EA89D83541C4F9AE02.roa (raw, json)
Hash identifier: 3/YHfMJFd4+/uHvYeznP2jrI3k3cNg88tQA8zxhGa9Q=
Subject key identifier: FE:AA:7F:52:4A:98:28:06:80:0A:CF:BF:65:B1:01:A5:17:B6:50:85
Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8
Certificate serial: 1C59
Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/727C68508AB411EA89D83541C4F9AE02.roa
Signing time: Mon 28 Oct 2024 14:40:39 +0000
ROA not before: Mon 28 Oct 2024 14:40:39 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 23966
IP address blocks: 119.30.80.0/20 maxlen: 20
119.30.86.0/24 maxlen: 24
119.30.87.0/24 maxlen: 24
119.30.100.0/24 maxlen: 24
119.30.106.0/24 maxlen: 24
119.30.107.0/24 maxlen: 24
119.30.108.0/24 maxlen: 24
119.30.112.0/22 maxlen: 24
119.30.124.0/22 maxlen: 24
119.73.0.0/18 maxlen: 18
202.61.32.0/19 maxlen: 19
202.61.32.0/20 maxlen: 20
202.61.32.0/24 maxlen: 24
202.61.34.0/24 maxlen: 24
202.61.40.0/24 maxlen: 24
202.61.41.0/24 maxlen: 24
202.61.42.0/24 maxlen: 24
202.61.43.0/24 maxlen: 24
202.61.44.0/24 maxlen: 24
202.61.46.0/24 maxlen: 24
202.61.47.0/24 maxlen: 24
202.61.48.0/21 maxlen: 24
202.61.56.0/21 maxlen: 24
202.147.160.0/20 maxlen: 24
202.147.176.0/20 maxlen: 20
202.147.176.0/21 maxlen: 24
202.147.184.0/21 maxlen: 24
202.154.224.0/19 maxlen: 19
202.154.224.0/20 maxlen: 20
202.154.224.0/24 maxlen: 24
202.154.225.0/24 maxlen: 24
202.154.226.0/24 maxlen: 24
202.154.227.0/24 maxlen: 24
202.154.228.0/24 maxlen: 24
202.154.229.0/24 maxlen: 24
202.154.230.0/24 maxlen: 24
202.154.231.0/24 maxlen: 24
202.154.232.0/24 maxlen: 24
202.154.233.0/24 maxlen: 24
202.154.234.0/24 maxlen: 24
202.154.235.0/24 maxlen: 24
202.154.236.0/24 maxlen: 24
202.154.237.0/24 maxlen: 24
202.154.238.0/24 maxlen: 24
202.154.239.0/24 maxlen: 24
202.154.240.0/20 maxlen: 20
202.154.240.0/24 maxlen: 24
202.154.241.0/24 maxlen: 24
202.154.242.0/24 maxlen: 24
202.154.243.0/24 maxlen: 24
202.154.244.0/24 maxlen: 24
202.154.245.0/24 maxlen: 24
202.154.246.0/24 maxlen: 24
202.154.247.0/24 maxlen: 24
202.154.248.0/24 maxlen: 24
202.154.249.0/24 maxlen: 24
202.154.250.0/24 maxlen: 24
202.154.251.0/24 maxlen: 24
202.154.252.0/24 maxlen: 24
202.154.253.0/24 maxlen: 24
202.154.254.0/24 maxlen: 24
202.154.255.0/24 maxlen: 24
203.223.160.0/20 maxlen: 24
210.2.128.0/18 maxlen: 18
210.2.128.0/20 maxlen: 21
210.2.128.0/24 maxlen: 24
210.2.129.0/24 maxlen: 24
210.2.130.0/24 maxlen: 24
210.2.131.0/24 maxlen: 24
210.2.132.0/22 maxlen: 22
210.2.132.0/24 maxlen: 24
210.2.133.0/24 maxlen: 24
210.2.134.0/24 maxlen: 24
210.2.135.0/24 maxlen: 24
210.2.136.0/21 maxlen: 22
210.2.136.0/24 maxlen: 24
210.2.137.0/24 maxlen: 24
210.2.138.0/24 maxlen: 24
210.2.139.0/24 maxlen: 24
210.2.140.0/24 maxlen: 24
210.2.141.0/24 maxlen: 24
210.2.142.0/24 maxlen: 24
210.2.143.0/24 maxlen: 24
210.2.144.0/20 maxlen: 21
210.2.144.0/24 maxlen: 24
210.2.145.0/24 maxlen: 24
210.2.146.0/24 maxlen: 24
210.2.147.0/24 maxlen: 24
210.2.148.0/24 maxlen: 24
210.2.149.0/24 maxlen: 24
210.2.150.0/24 maxlen: 24
210.2.151.0/24 maxlen: 24
210.2.152.0/24 maxlen: 24
210.2.153.0/24 maxlen: 24
210.2.154.0/24 maxlen: 24
210.2.155.0/24 maxlen: 24
210.2.156.0/24 maxlen: 24
210.2.157.0/24 maxlen: 24
210.2.158.0/24 maxlen: 24
210.2.159.0/24 maxlen: 24
210.2.160.0/20 maxlen: 21
210.2.160.0/24 maxlen: 24
210.2.161.0/24 maxlen: 24
210.2.162.0/24 maxlen: 24
210.2.163.0/24 maxlen: 24
210.2.164.0/24 maxlen: 24
210.2.165.0/24 maxlen: 24
210.2.166.0/24 maxlen: 24
210.2.167.0/24 maxlen: 24
210.2.168.0/24 maxlen: 24
210.2.169.0/24 maxlen: 24
210.2.170.0/24 maxlen: 24
210.2.171.0/24 maxlen: 24
210.2.172.0/24 maxlen: 24
210.2.173.0/24 maxlen: 24
210.2.174.0/24 maxlen: 24
210.2.175.0/24 maxlen: 24
210.2.176.0/20 maxlen: 22
210.2.176.0/24 maxlen: 24
210.2.177.0/24 maxlen: 24
210.2.178.0/24 maxlen: 24
210.2.179.0/24 maxlen: 24
210.2.180.0/24 maxlen: 24
210.2.181.0/24 maxlen: 24
210.2.182.0/24 maxlen: 24
210.2.183.0/24 maxlen: 24
210.2.184.0/24 maxlen: 24
210.2.185.0/24 maxlen: 24
210.2.186.0/24 maxlen: 24
210.2.187.0/24 maxlen: 24
210.2.188.0/24 maxlen: 24
210.2.189.0/24 maxlen: 24
210.2.190.0/24 maxlen: 24
210.2.191.0/24 maxlen: 24
2401:0:201::/48 maxlen: 48
2401:0:4000::/40 maxlen: 40
2401:0:8001::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl
rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 14:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7257 (0x1c59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8
Validity
Not Before: Oct 28 14:40:39 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=671fa267-95f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:07:ae:a1:85:d6:e0:6a:f2:93:da:ce:eb:53:
30:12:a6:c2:88:48:6c:e6:c6:dd:c8:bd:77:cc:48:
31:a1:12:21:a1:24:36:0a:cc:45:e0:83:74:22:55:
79:d6:79:db:9c:8e:03:99:89:f1:0b:f2:fe:63:29:
56:b4:bf:af:fd:18:2f:5a:14:89:38:47:8b:bc:7b:
d0:2d:c8:6a:b9:7d:38:13:e6:3c:d5:ad:91:97:0c:
05:a2:5d:1a:50:47:24:49:32:77:f8:2e:8a:ca:5d:
dd:2f:1c:76:f3:92:83:39:19:4c:b4:76:3e:2c:59:
39:c7:f0:a9:04:6e:32:71:26:81:b9:9f:65:4d:ea:
e3:f3:88:e6:6d:e4:7f:81:c8:e9:76:24:d9:99:c2:
bb:ce:85:a0:03:98:ec:00:38:fa:17:cb:9a:54:97:
2a:88:1d:59:ab:97:f0:e8:66:6c:04:30:c4:51:5f:
6c:d6:ee:64:8e:90:4d:fc:b5:c9:81:b0:61:16:85:
1a:29:0f:4b:b3:4a:9a:0b:af:b5:eb:38:30:9e:3b:
8d:e5:b7:63:aa:fe:ca:5a:94:b9:41:34:7d:56:74:
3c:44:47:96:72:e2:23:a6:73:95:1f:7f:ea:f6:57:
d2:25:21:64:ef:38:5d:24:b1:e4:2a:18:a5:79:4b:
9e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:AA:7F:52:4A:98:28:06:80:0A:CF:BF:65:B1:01:A5:17:B6:50:85
X509v3 Authority Key Identifier:
keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/727C68508AB411EA89D83541C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
119.30.80.0/20
119.30.100.0/24
119.30.106.0-119.30.108.255
119.30.112.0/22
119.30.124.0/22
119.73.0.0/18
202.61.32.0/19
202.147.160.0/19
202.154.224.0/19
203.223.160.0/20
210.2.128.0/18
IPv6:
2401:0:201::/48
2401:0:4000::/40
2401:0:8001::/48
Signature Algorithm: sha256WithRSAEncryption
54:5c:ce:0b:55:17:1e:60:47:cd:df:33:8f:48:a6:97:ca:4c:
35:1e:cc:c5:e8:d1:9e:36:eb:c7:92:d9:11:3a:23:13:5f:a9:
26:47:88:bd:c7:de:0f:b3:4f:88:c0:84:fc:59:be:54:19:15:
d2:d2:5c:ee:1f:72:74:1a:1f:af:fd:25:1a:74:7d:d8:54:a4:
45:ca:a4:02:2f:9e:c8:4b:16:fe:5c:b6:5b:b1:d6:6d:20:f2:
12:63:93:eb:6a:99:b9:06:cb:4b:14:d6:92:c4:57:b1:e2:d8:
93:34:8d:13:22:df:4c:e7:69:1e:52:87:e9:77:2a:fd:fe:52:
0e:52:12:6c:21:cf:d8:bc:43:63:8a:7d:bc:75:73:66:ac:75:
34:e8:45:91:ae:20:e0:ff:95:d1:6e:39:e0:d9:42:3b:e7:e1:
5d:51:62:d2:ce:bb:c7:af:6f:ae:55:a7:07:59:8b:39:b8:79:
6e:a7:9c:f9:3c:62:1a:ae:26:0f:eb:4e:a1:32:2c:95:48:7d:
cd:0c:83:6e:86:35:8b:ab:f4:1f:e9:dc:9b:49:c5:09:f7:5a:
4c:3a:72:e0:4d:6b:1d:4f:4a:2c:ae:9e:5b:7a:1f:6e:e9:b7:
f5:9b:f7:fa:ad:1f:9a:2f:9b:02:58:ef:ed:38:ef:15:e2:e4:
54:e8:e8:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:49:21 2024 by rpki-client on console-ams.rpki-client.org