Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916ACF5/5B30C49A6F3C11EFB5899612C4F9AE02/B538B552701211EFB6868329C4F9AE02.roa
File: B538B552701211EFB6868329C4F9AE02.roa (raw, json)
Hash identifier: 29NsNsEH3hS+ytz7V80jP+Hgfwg6ZXrunR8Rxp6hBOU=
Subject key identifier: 8A:CA:E2:B5:AC:2E:CB:F8:66:4B:A6:21:2F:1E:A9:ED:AB:58:C8:FF
Certificate issuer: /CN=A916ACF5/serialNumber=FD5A3F5A1F335744C0C142AC4217ECBC3D20CA0F
Certificate serial: 07
Authority key identifier: FD:5A:3F:5A:1F:33:57:44:C0:C1:42:AC:42:17:EC:BC:3D:20:CA:0F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916ACF5/5B30C49A6F3C11EFB5899612C4F9AE02/B538B552701211EFB6868329C4F9AE02.roa
Signing time: Wed 11 Sep 2024 07:51:52 +0000
ROA not before: Wed 11 Sep 2024 07:51:52 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 17439
IP address blocks: 103.30.152.0/23 maxlen: 24
103.30.154.0/24 maxlen: 24
103.30.155.0/24 maxlen: 24
123.108.32.0/19 maxlen: 24
124.153.64.0/19 maxlen: 24
124.153.96.0/19 maxlen: 24
180.179.0.0/21 maxlen: 24
180.179.8.0/21 maxlen: 24
180.179.16.0/20 maxlen: 24
180.179.32.0/19 maxlen: 24
180.179.64.0/19 maxlen: 24
180.179.96.0/19 maxlen: 23
180.179.96.0/20 maxlen: 24
180.179.112.0/21 maxlen: 24
180.179.120.0/22 maxlen: 24
180.179.124.0/23 maxlen: 24
180.179.128.0/19 maxlen: 20
180.179.128.0/24 maxlen: 24
180.179.129.0/24 maxlen: 24
180.179.130.0/24 maxlen: 24
180.179.132.0/24 maxlen: 24
180.179.133.0/24 maxlen: 24
180.179.134.0/24 maxlen: 24
180.179.135.0/24 maxlen: 24
180.179.136.0/23 maxlen: 24
180.179.138.0/24 maxlen: 24
180.179.139.0/24 maxlen: 24
180.179.140.0/23 maxlen: 24
180.179.142.0/24 maxlen: 24
180.179.143.0/24 maxlen: 24
180.179.144.0/24 maxlen: 24
180.179.145.0/24 maxlen: 24
180.179.146.0/24 maxlen: 24
180.179.149.0/24 maxlen: 24
180.179.151.0/24 maxlen: 24
180.179.153.0/24 maxlen: 24
180.179.154.0/24 maxlen: 24
180.179.155.0/24 maxlen: 24
180.179.156.0/24 maxlen: 24
180.179.157.0/24 maxlen: 24
180.179.158.0/24 maxlen: 24
180.179.159.0/24 maxlen: 24
180.179.160.0/19 maxlen: 20
180.179.160.0/24 maxlen: 24
180.179.161.0/24 maxlen: 24
180.179.162.0/23 maxlen: 23
180.179.164.0/24 maxlen: 24
180.179.165.0/24 maxlen: 24
180.179.166.0/24 maxlen: 24
180.179.167.0/24 maxlen: 24
180.179.168.0/24 maxlen: 24
180.179.169.0/24 maxlen: 24
180.179.170.0/23 maxlen: 23
180.179.172.0/24 maxlen: 24
180.179.173.0/24 maxlen: 24
180.179.174.0/24 maxlen: 24
180.179.175.0/24 maxlen: 24
180.179.177.0/24 maxlen: 24
180.179.178.0/24 maxlen: 24
180.179.179.0/24 maxlen: 24
180.179.180.0/24 maxlen: 24
180.179.182.0/23 maxlen: 23
180.179.184.0/24 maxlen: 24
180.179.185.0/24 maxlen: 24
180.179.186.0/24 maxlen: 24
180.179.192.0/19 maxlen: 20
180.179.192.0/22 maxlen: 22
180.179.192.0/24 maxlen: 24
180.179.193.0/24 maxlen: 24
180.179.194.0/24 maxlen: 24
180.179.195.0/24 maxlen: 24
180.179.196.0/22 maxlen: 22
180.179.196.0/24 maxlen: 24
180.179.197.0/24 maxlen: 24
180.179.198.0/24 maxlen: 24
180.179.199.0/24 maxlen: 24
180.179.200.0/22 maxlen: 22
180.179.200.0/24 maxlen: 24
180.179.201.0/24 maxlen: 24
180.179.202.0/24 maxlen: 24
180.179.203.0/24 maxlen: 24
180.179.204.0/22 maxlen: 23
180.179.206.0/23 maxlen: 24
180.179.208.0/24 maxlen: 24
180.179.209.0/24 maxlen: 24
180.179.211.0/24 maxlen: 24
180.179.212.0/24 maxlen: 24
180.179.213.0/24 maxlen: 24
180.179.214.0/24 maxlen: 24
180.179.215.0/24 maxlen: 24
180.179.216.0/24 maxlen: 24
180.179.217.0/24 maxlen: 24
180.179.218.0/24 maxlen: 24
180.179.219.0/24 maxlen: 24
180.179.220.0/24 maxlen: 24
180.179.221.0/24 maxlen: 24
180.179.222.0/24 maxlen: 24
180.179.223.0/24 maxlen: 24
180.179.224.0/19 maxlen: 20
180.179.224.0/23 maxlen: 23
180.179.224.0/24 maxlen: 24
180.179.226.0/24 maxlen: 24
180.179.227.0/24 maxlen: 24
180.179.228.0/24 maxlen: 24
180.179.229.0/24 maxlen: 24
180.179.230.0/24 maxlen: 24
180.179.231.0/24 maxlen: 24
180.179.232.0/24 maxlen: 24
180.179.233.0/24 maxlen: 24
180.179.234.0/24 maxlen: 24
180.179.235.0/24 maxlen: 24
180.179.236.0/24 maxlen: 24
180.179.237.0/24 maxlen: 24
180.179.239.0/24 maxlen: 24
180.179.240.0/20 maxlen: 21
180.179.240.0/24 maxlen: 24
180.179.242.0/24 maxlen: 24
180.179.243.0/24 maxlen: 24
180.179.244.0/24 maxlen: 24
180.179.245.0/24 maxlen: 24
180.179.246.0/24 maxlen: 24
180.179.247.0/24 maxlen: 24
180.179.248.0/24 maxlen: 24
180.179.249.0/24 maxlen: 24
180.179.253.0/24 maxlen: 24
180.179.255.0/24 maxlen: 24
202.87.32.0/19 maxlen: 24
2401:8800::/40 maxlen: 40
2401:8800:200::/40 maxlen: 40
2401:8800:400::/40 maxlen: 40
2401:8800:600::/40 maxlen: 40
2401:8800:800::/40 maxlen: 40
2401:8800:a00::/40 maxlen: 40
2401:8800:a00::/48 maxlen: 48
2401:8800:a03::/48 maxlen: 48
2401:8800:c00::/40 maxlen: 40
2401:8800:c05::/48 maxlen: 48
2401:8800:e00::/40 maxlen: 40
2401:8800:1000::/40 maxlen: 40
2401:8800:1100::/40 maxlen: 40
2401:8800:1200::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916ACF5/5B30C49A6F3C11EFB5899612C4F9AE02/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.crl
rsync://rpki.apnic.net/member_repository/A916ACF5/5B30C49A6F3C11EFB5899612C4F9AE02/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 05:18:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916ACF5/serialNumber=FD5A3F5A1F335744C0C142AC4217ECBC3D20CA0F
Validity
Not Before: Sep 11 07:51:52 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66e14c18-1b3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ca:63:29:28:c2:e9:67:8f:ae:c4:b1:3d:04:
f2:9e:fa:02:db:f7:c1:87:e8:df:63:95:17:b0:4f:
44:e2:16:2f:68:e8:33:dc:5f:22:68:8c:eb:c3:9e:
b8:3b:89:40:17:f6:7e:db:f8:44:4e:cb:4e:5e:96:
21:92:ad:fa:ee:c1:f1:56:d0:74:5d:0c:7b:0b:52:
5b:f3:88:b1:55:16:ba:8c:b4:f9:74:e0:c3:ea:2f:
4f:4b:91:86:6f:19:53:1e:08:ca:84:a7:ea:6d:a6:
37:87:94:0e:a1:6a:c8:3f:14:71:3f:f5:40:1c:f5:
27:2c:36:1a:10:23:e1:87:62:cb:57:03:b5:db:d0:
1a:53:94:2e:01:57:d8:bb:58:10:52:4a:81:9f:c4:
1e:d2:b9:33:9a:6c:1c:85:5a:ac:1c:8e:8e:3b:ad:
b6:42:d9:47:e4:d2:e5:3b:24:b6:ff:47:2d:00:bc:
d0:97:1e:9f:31:de:dc:ae:04:ac:b3:35:35:ef:07:
2e:c6:db:2c:4b:6a:05:f7:4e:39:49:11:0b:28:9f:
1f:2c:64:fd:3b:7b:30:3e:82:67:2a:90:10:7e:c4:
a3:1a:4b:02:33:44:94:79:51:38:d4:6e:b2:e9:69:
85:07:e2:6b:19:4b:24:2c:b1:b9:30:07:ec:7e:7d:
80:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:CA:E2:B5:AC:2E:CB:F8:66:4B:A6:21:2F:1E:A9:ED:AB:58:C8:FF
X509v3 Authority Key Identifier:
keyid:FD:5A:3F:5A:1F:33:57:44:C0:C1:42:AC:42:17:EC:BC:3D:20:CA:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916ACF5/5B30C49A6F3C11EFB5899612C4F9AE02/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916ACF5/5B30C49A6F3C11EFB5899612C4F9AE02/B538B552701211EFB6868329C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.152.0/22
123.108.32.0/19
124.153.64.0/18
180.179.0.0/16
202.87.32.0/19
IPv6:
2401:8800::/40
2401:8800:200::/40
2401:8800:400::/40
2401:8800:600::/40
2401:8800:800::/40
2401:8800:a00::/40
2401:8800:c00::/40
2401:8800:e00::/40
2401:8800:1000::-2401:8800:12ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
0b:f2:5a:a4:6a:71:d7:72:76:57:ca:cf:49:69:ff:70:1b:23:
ce:25:f2:0b:f1:9a:57:28:ad:0d:a5:ae:a8:f6:f3:3d:dc:71:
79:76:e7:88:53:5a:d0:dd:8c:f2:60:2f:7a:87:c9:03:1b:c5:
f6:5f:2f:f1:24:91:9b:0e:1a:4d:d9:8b:bb:34:38:3f:8d:d2:
be:d1:2c:6c:72:73:da:ff:23:1c:e6:18:f7:fd:79:e2:68:af:
f7:02:fe:32:e4:9c:d2:5f:12:1a:e0:9a:f2:97:77:fd:1a:f1:
4e:3b:03:c1:e0:9b:59:f8:42:cd:fc:fb:94:cf:d3:09:a9:90:
ac:40:45:38:bf:93:d0:66:b5:29:7e:64:74:ab:ed:ba:85:e4:
37:bb:fa:42:f0:f7:06:5b:ac:a1:e6:e7:86:c0:7f:be:ed:5a:
c9:7c:4f:ff:3b:53:fa:e3:00:e4:62:d2:be:d2:c1:a3:e8:d0:
f9:03:7c:b8:09:61:77:8b:28:52:12:ef:41:03:04:d1:4f:06:
14:cf:46:ce:90:12:d1:34:ad:92:da:1e:15:33:c1:e0:42:f0:
03:74:23:c5:13:4b:2b:23:a8:c1:9e:7c:4c:c5:5d:3d:0c:de:
c6:fe:c2:df:39:a6:f3:1c:b5:f9:f2:3d:6d:87:6d:c2:5f:2a:
60:05:1e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 06:50:17 2024 by rpki-client on console-fra.rpki-client.org