Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/1855E96CABBD11EA9A38D358C4F9AE02.roa
File: 1855E96CABBD11EA9A38D358C4F9AE02.roa (raw, json)
Hash identifier: o9QERY8vMjvb/oZ9N6XYdwqY3j9St5pMLYz81Y7dm5M=
Subject key identifier: AB:FE:DE:34:96:78:44:6A:DD:9F:92:0B:ED:94:C6:AC:1D:A3:44:9A
Certificate issuer: /CN=A917576D/serialNumber=B1E84FACFACBC0B7838561EF21E28F2FACF5DFEC
Certificate serial: 09FC
Authority key identifier: B1:E8:4F:AC:FA:CB:C0:B7:83:85:61:EF:21:E2:8F:2F:AC:F5:DF:EC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/1855E96CABBD11EA9A38D358C4F9AE02.roa
Signing time: Thu 14 Nov 2024 19:59:00 +0000
ROA not before: Thu 14 Nov 2024 19:59:00 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 136167
IP address blocks: 2400:9380:80c0::/44 maxlen: 44
2400:9380:81c0::/44 maxlen: 44
2400:9380:82c0::/44 maxlen: 44
2400:9380:83c0::/44 maxlen: 44
2400:9380:84c0::/44 maxlen: 44
2400:9380:85c0::/44 maxlen: 44
2400:9380:86c0::/44 maxlen: 44
2400:9380:87c0::/44 maxlen: 44
2400:9380:88c0::/44 maxlen: 44
2400:9380:89c0::/44 maxlen: 44
2400:9380:8ac0::/44 maxlen: 44
2400:9380:8bc0::/44 maxlen: 44
2400:9380:8cc0::/44 maxlen: 44
2400:9380:8dc0::/44 maxlen: 44
2400:9380:8ec0::/44 maxlen: 44
2400:9380:8fc0::/44 maxlen: 44
2400:9380:90c0::/44 maxlen: 44
2400:9380:91c0::/44 maxlen: 44
2400:9380:92c0::/44 maxlen: 44
2400:9380:93c0::/44 maxlen: 44
2400:9380:94c0::/44 maxlen: 44
2400:9380:95c0::/44 maxlen: 44
2400:9380:96c0::/44 maxlen: 44
2400:9380:97c0::/44 maxlen: 44
2400:9380:98c0::/44 maxlen: 44
2400:9380:99c0::/44 maxlen: 44
2400:9380:9ac0::/44 maxlen: 44
2400:9380:9bc0::/44 maxlen: 44
2400:9380:9cc0::/44 maxlen: 44
2400:9380:9dc0::/44 maxlen: 44
2400:9380:9ec0::/44 maxlen: 44
2400:9380:9fc0::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/sehPrPrLwLeDhWHvIeKPL6z13-w.crl
rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/sehPrPrLwLeDhWHvIeKPL6z13-w.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 01 Dec 2024 17:11:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2556 (0x9fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917576D/serialNumber=B1E84FACFACBC0B7838561EF21E28F2FACF5DFEC
Validity
Not Before: Nov 14 19:59:00 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=67365684-d31d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5f:71:6d:c3:ea:3b:d6:df:bf:86:ae:78:6d:
e5:d9:7b:a8:13:d5:11:de:7a:04:2b:bc:34:ea:f5:
26:38:66:b0:12:7d:78:3c:4e:64:82:fa:d8:02:a9:
cd:02:0a:55:13:41:11:10:46:16:ec:02:fc:1e:7e:
cb:7c:ac:5c:54:ea:2c:9b:6c:a5:08:3e:de:f1:69:
25:71:e4:92:13:60:22:0e:1b:da:95:61:43:84:1c:
72:4f:b8:9a:77:5e:48:1d:18:6f:4f:83:d1:b9:f1:
77:ba:02:3d:22:71:dc:71:ae:e4:d7:52:e4:e2:c3:
21:74:86:00:97:5e:3a:34:ce:b1:37:2b:34:8c:c4:
a0:36:6e:82:2b:4f:13:2c:04:db:3d:36:b7:f2:e1:
98:ca:59:28:dd:58:83:2a:0e:e8:af:f2:58:44:34:
6c:84:24:a2:84:f2:dc:2a:d3:98:4a:86:91:3a:1c:
d8:5a:cd:19:30:1d:60:0e:1a:dd:a0:e4:f2:aa:b7:
5a:ca:73:40:15:8d:49:03:13:35:f0:21:63:bd:21:
4e:ff:d0:9c:57:94:70:05:07:73:91:a2:df:e7:57:
9c:47:48:4a:35:08:72:d8:f2:b6:9c:9a:89:29:13:
b1:91:d3:25:17:0f:e9:27:75:94:36:5e:b3:c8:0b:
ef:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:FE:DE:34:96:78:44:6A:DD:9F:92:0B:ED:94:C6:AC:1D:A3:44:9A
X509v3 Authority Key Identifier:
keyid:B1:E8:4F:AC:FA:CB:C0:B7:83:85:61:EF:21:E2:8F:2F:AC:F5:DF:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/sehPrPrLwLeDhWHvIeKPL6z13-w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/1855E96CABBD11EA9A38D358C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:9380:80c0::/44
2400:9380:81c0::/44
2400:9380:82c0::/44
2400:9380:83c0::/44
2400:9380:84c0::/44
2400:9380:85c0::/44
2400:9380:86c0::/44
2400:9380:87c0::/44
2400:9380:88c0::/44
2400:9380:89c0::/44
2400:9380:8ac0::/44
2400:9380:8bc0::/44
2400:9380:8cc0::/44
2400:9380:8dc0::/44
2400:9380:8ec0::/44
2400:9380:8fc0::/44
2400:9380:90c0::/44
2400:9380:91c0::/44
2400:9380:92c0::/44
2400:9380:93c0::/44
2400:9380:94c0::/44
2400:9380:95c0::/44
2400:9380:96c0::/44
2400:9380:97c0::/44
2400:9380:98c0::/44
2400:9380:99c0::/44
2400:9380:9ac0::/44
2400:9380:9bc0::/44
2400:9380:9cc0::/44
2400:9380:9dc0::/44
2400:9380:9ec0::/44
2400:9380:9fc0::/44
Signature Algorithm: sha256WithRSAEncryption
45:52:ec:b8:19:a4:21:d0:b0:ff:0e:ec:3d:44:80:a9:ed:eb:
ec:34:47:e4:c1:97:f9:5f:17:0f:9e:6f:30:87:ba:7f:ca:51:
ca:5b:aa:e1:ac:49:55:02:14:ab:2a:95:3c:78:3d:18:ec:c2:
c9:ec:7c:d8:c2:82:5f:75:85:bf:b3:78:3d:06:74:bb:50:96:
21:a9:4d:1e:b3:7e:e5:7a:34:14:05:40:e5:1e:25:53:36:92:
c6:88:79:36:2b:85:6f:2b:e3:bf:73:ee:1a:b2:09:ea:df:56:
b4:f9:27:d9:4c:e1:81:28:f4:21:de:16:c2:27:21:dd:b4:91:
ec:62:30:d9:73:70:e9:c4:96:5d:ae:70:65:31:06:b7:54:e7:
73:38:a8:70:5a:94:cd:cf:8e:cf:5b:d6:a5:15:d2:73:c0:0a:
10:ab:fc:b4:77:1d:59:0c:e8:e0:d5:83:a4:3e:33:5c:31:68:
bd:d0:eb:63:a3:21:08:81:f2:de:4f:3b:f1:cd:90:15:88:10:
90:2e:02:df:0b:f7:05:9a:b7:b9:57:2b:e2:e3:ae:b9:10:c1:
63:4d:a2:19:cf:ca:d6:5c:aa:d2:38:dd:56:61:5a:3d:d4:34:
79:f6:50:38:e3:6b:8e:3c:9a:48:20:93:e0:21:60:27:85:45:
0a:11:19:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 21:45:04 2024 by rpki-client on console-ams.rpki-client.org