Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/9816AE202ED111EF9B668069C4F9AE02.roa
File: 9816AE202ED111EF9B668069C4F9AE02.roa (raw, json)
Hash identifier: GMwqHbyGhuMSUm48op4I5mi1ydXZr2Sf2bThmTPQeU0=
Subject key identifier: 2D:4E:B0:58:DB:71:AC:57:0A:45:B0:2E:5B:A9:8E:96:8A:A1:68:66
Certificate issuer: /CN=A917B092/serialNumber=0B61C4748969A44FC83C8882A02579D0D5923B61
Certificate serial: 0186
Authority key identifier: 0B:61:C4:74:89:69:A4:4F:C8:3C:88:82:A0:25:79:D0:D5:92:3B:61
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/9816AE202ED111EF9B668069C4F9AE02.roa
Signing time: Mon 31 Mar 2025 02:59:22 +0000
ROA not before: Mon 31 Mar 2025 02:59:22 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 207083
IP address blocks: 103.219.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.crl
rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 02:47:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390 (0x186)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917B092, serialNumber=0B61C4748969A44FC83C8882A02579D0D5923B61
Validity
Not Before: Mar 31 02:59:22 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67ea050a-a03b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:34:1e:4c:76:98:d0:7b:f6:e0:f2:36:81:a0:
59:60:bb:d1:c3:9c:16:0c:8c:aa:0c:71:1c:47:14:
b5:85:bb:59:77:0f:0f:f8:1d:a9:ad:7d:b6:12:6a:
c9:24:32:74:7d:a9:3b:be:29:94:16:30:a0:c2:d3:
0e:cc:9a:3a:04:8b:ca:17:fb:86:56:ec:7b:df:e6:
39:9c:18:d5:25:a5:48:ae:11:5d:10:b4:b6:73:2c:
20:10:80:bf:11:17:3a:85:c4:d0:c7:5b:53:35:c1:
ed:66:cf:bd:74:92:33:50:3c:6c:26:92:e0:77:ef:
05:14:96:b5:2e:96:cf:6d:9d:bb:88:9b:81:68:da:
68:ae:22:93:2a:8d:18:a2:80:ef:10:95:71:4c:4d:
f9:29:95:e6:97:40:54:58:2a:12:29:4f:87:27:cd:
96:0c:63:41:8d:11:45:68:45:b2:11:b9:2c:43:04:
c4:bc:c0:af:94:a7:a5:8d:13:c1:67:70:99:68:bd:
50:4d:e6:72:3a:cb:9b:72:67:56:9e:86:9b:91:59:
a2:34:d1:be:c9:fc:5b:85:42:4d:1a:68:49:e4:67:
50:b5:8d:d6:44:3c:24:05:d2:20:a9:15:20:0e:07:
b4:3a:f4:da:40:b7:ac:90:c7:1d:6b:64:f4:f0:f1:
16:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:4E:B0:58:DB:71:AC:57:0A:45:B0:2E:5B:A9:8E:96:8A:A1:68:66
X509v3 Authority Key Identifier:
keyid:0B:61:C4:74:89:69:A4:4F:C8:3C:88:82:A0:25:79:D0:D5:92:3B:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/9816AE202ED111EF9B668069C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.219.152.0/24
Signature Algorithm: sha256WithRSAEncryption
04:30:a8:65:f3:2b:44:ad:ea:a4:c7:d8:a0:2e:a8:16:68:7b:
73:0b:ae:29:de:b6:00:53:86:f1:b1:8a:19:9b:7a:71:a5:e2:
32:c8:e9:08:2a:3f:3d:07:e6:0d:08:b4:69:43:ea:86:b5:eb:
3a:0b:4d:f7:b1:04:db:a1:e5:8d:71:f0:fe:32:37:0f:fb:62:
9c:27:8c:28:31:04:d7:0d:b4:f2:e4:57:1e:aa:a1:f5:12:51:
92:52:06:c6:cb:ac:9a:16:f4:28:34:70:b5:23:ba:f5:6f:ad:
06:dc:c2:59:82:11:9b:33:42:a0:e4:56:93:2f:5e:0d:36:aa:
34:13:0b:e8:b1:aa:bf:4e:63:ea:62:09:35:58:87:2b:9d:12:
74:74:93:57:a0:51:db:e2:91:ad:6e:74:35:d7:a3:d3:62:91:
29:d5:18:ae:a0:dd:1a:eb:b4:f4:ac:7a:7e:a4:21:0d:f3:bb:
a1:42:6c:95:3a:91:8d:72:f7:ac:87:60:b7:40:7b:2d:af:dd:
36:d7:76:b0:58:42:ba:8f:64:91:d8:10:14:95:42:d4:99:f4:
01:8b:eb:e7:72:01:16:8e:18:23:e7:ab:79:9e:99:a1:1a:f3:
13:85:dc:3a:73:20:cd:6e:79:94:a1:6f:6c:b7:da:7f:03:58:
1b:2a:71:ff
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0IwOTIxMTAvBgNVBAUTKDBCNjFDNDc0ODk2OUE0NEZDODNDODg4MkEwMjU3OUQw
RDU5MjNCNjEwHhcNMjUwMzMxMDI1OTIyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2VhMDUwYS1hMDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxTQeTHaY0Hv24PI2gaBZYLvRw5wWDIyqDHEcRxS1hbtZdw8P+B2prX22EmrJ
JDJ0fak7vimUFjCgwtMOzJo6BIvKF/uGVux73+Y5nBjVJaVIrhFdELS2cywgEIC/
ERc6hcTQx1tTNcHtZs+9dJIzUDxsJpLgd+8FFJa1LpbPbZ27iJuBaNporiKTKo0Y
ooDvEJVxTE35KZXml0BUWCoSKU+HJ82WDGNBjRFFaEWyEbksQwTEvMCvlKeljRPB
Z3CZaL1QTeZyOsubcmdWnoabkVmiNNG+yfxbhUJNGmhJ5GdQtY3WRDwkBdIgqRUg
Dge0OvTaQLeskMcda2T08PEW8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFC1OsFjb
caxXCkWwLlupjpaKoWhmMB8GA1UdIwQYMBaAFAthxHSJaaRPyDyIgqAledDVkjth
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjA5Mi8yODIzMDk5NkVF
MjMxMUVEQkFCRTJBNURDNEY5QUUwMi9DMkhFZElscHBFX0lQSWlDb0NWNTBOV1NP
MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0MySEVkSWxwcEVfSVBJaUNvQ1Y1ME5XU08yRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
N0IwOTIvMjgyMzA5OTZFRTIzMTFFREJBQkUyQTVEQzRGOUFFMDIvOTgxNkFFMjAy
RUQxMTFFRjlCNjY4MDY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABn25gwDQYJKoZIhvcNAQELBQADggEBAAQwqGXzK0St6qTH
2KAuqBZoe3MLrinetgBThvGxihmbenGl4jLI6QgqPz0H5g0ItGlD6oa16zoLTfex
BNuh5Y1x8P4yNw/7YpwnjCgxBNcNtPLkVx6qofUSUZJSBsbLrJoW9Cg0cLUjuvVv
rQbcwlmCEZszQqDkVpMvXg02qjQTC+ixqr9OY+piCTVYhyudEnR0k1egUdvika1u
dDXXo9NikSnVGK6g3RrrtPSsen6kIQ3zu6FCbJU6kY1y96yHYLdAey2v3TbXdrBY
QrqPZJHYEBSVQtSZ9AGL6+dyARaOGCPnq3memaEa8xOF3DpzIM1ueZShb2y32n8D
WBsqcf8=
-----END CERTIFICATE-----
Generated at Mon Apr 14 03:28:39 2025 by rpki-client