Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/19CCFBDE6F0911ED8A7BD268C4F9AE02.roa
File: 19CCFBDE6F0911ED8A7BD268C4F9AE02.roa (raw, json)
Hash identifier: /XeI0jGoUE2jsxdjfQdHau8xmMxt4tyWdnTosRjXYw4=
Subject key identifier: EF:30:11:ED:55:00:59:63:BE:39:DE:72:17:38:75:CE:8B:83:36:C5
Certificate issuer: /CN=A917FFB0/serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2
Certificate serial: 346E
Authority key identifier: 13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/19CCFBDE6F0911ED8A7BD268C4F9AE02.roa
Signing time: Thu 22 Aug 2024 15:00:54 +0000
ROA not before: Thu 22 Aug 2024 15:00:54 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 38264
IP address blocks: 58.27.128.0/17 maxlen: 17
58.27.128.0/24 maxlen: 24
58.27.129.0/24 maxlen: 24
58.27.130.0/24 maxlen: 24
58.27.131.0/24 maxlen: 24
58.27.132.0/22 maxlen: 22
58.27.132.0/24 maxlen: 24
58.27.133.0/24 maxlen: 24
58.27.134.0/24 maxlen: 24
58.27.135.0/24 maxlen: 24
58.27.136.0/22 maxlen: 22
58.27.140.0/24 maxlen: 24
58.27.141.0/24 maxlen: 24
58.27.142.0/24 maxlen: 24
58.27.144.0/22 maxlen: 23
58.27.144.0/23 maxlen: 24
58.27.148.0/22 maxlen: 22
58.27.148.0/24 maxlen: 24
58.27.149.0/24 maxlen: 24
58.27.150.0/23 maxlen: 23
58.27.152.0/21 maxlen: 22
58.27.152.0/22 maxlen: 23
58.27.156.0/24 maxlen: 24
58.27.157.0/24 maxlen: 24
58.27.158.0/24 maxlen: 24
58.27.159.0/24 maxlen: 24
58.27.160.0/21 maxlen: 22
58.27.160.0/24 maxlen: 24
58.27.164.0/24 maxlen: 24
58.27.168.0/21 maxlen: 22
58.27.168.0/23 maxlen: 23
58.27.170.0/24 maxlen: 24
58.27.171.0/24 maxlen: 24
58.27.172.0/24 maxlen: 24
58.27.176.0/20 maxlen: 20
58.27.184.0/22 maxlen: 22
58.27.188.0/24 maxlen: 24
58.27.189.0/24 maxlen: 24
58.27.190.0/24 maxlen: 24
58.27.192.0/19 maxlen: 19
58.27.192.0/21 maxlen: 21
58.27.192.0/24 maxlen: 24
58.27.193.0/24 maxlen: 24
58.27.194.0/23 maxlen: 23
58.27.195.0/24 maxlen: 24
58.27.196.0/23 maxlen: 24
58.27.198.0/24 maxlen: 24
58.27.199.0/24 maxlen: 24
58.27.200.0/22 maxlen: 22
58.27.200.0/24 maxlen: 24
58.27.201.0/24 maxlen: 24
58.27.202.0/24 maxlen: 24
58.27.203.0/24 maxlen: 24
58.27.204.0/22 maxlen: 22
58.27.204.0/24 maxlen: 24
58.27.205.0/24 maxlen: 24
58.27.206.0/24 maxlen: 24
58.27.207.0/24 maxlen: 24
58.27.208.0/20 maxlen: 20
58.27.208.0/22 maxlen: 22
58.27.208.0/24 maxlen: 24
58.27.209.0/24 maxlen: 24
58.27.210.0/24 maxlen: 24
58.27.211.0/24 maxlen: 24
58.27.212.0/22 maxlen: 22
58.27.212.0/24 maxlen: 24
58.27.215.0/24 maxlen: 24
58.27.216.0/24 maxlen: 24
58.27.217.0/24 maxlen: 24
58.27.218.0/24 maxlen: 24
58.27.219.0/24 maxlen: 24
58.27.220.0/24 maxlen: 24
58.27.221.0/24 maxlen: 24
58.27.222.0/24 maxlen: 24
58.27.223.0/24 maxlen: 24
58.27.224.0/19 maxlen: 19
58.27.224.0/20 maxlen: 20
58.27.224.0/24 maxlen: 24
58.27.225.0/24 maxlen: 24
58.27.226.0/24 maxlen: 24
58.27.227.0/24 maxlen: 24
58.27.228.0/24 maxlen: 24
58.27.229.0/24 maxlen: 24
58.27.230.0/24 maxlen: 24
58.27.231.0/24 maxlen: 24
58.27.232.0/21 maxlen: 21
58.27.232.0/22 maxlen: 22
58.27.232.0/24 maxlen: 24
58.27.233.0/24 maxlen: 24
58.27.234.0/24 maxlen: 24
58.27.235.0/24 maxlen: 24
58.27.236.0/23 maxlen: 24
58.27.238.0/24 maxlen: 24
58.27.239.0/24 maxlen: 24
58.27.240.0/21 maxlen: 21
58.27.240.0/24 maxlen: 24
58.27.241.0/24 maxlen: 24
58.27.242.0/24 maxlen: 24
58.27.243.0/24 maxlen: 24
58.27.244.0/24 maxlen: 24
58.27.245.0/24 maxlen: 24
58.27.246.0/24 maxlen: 24
58.27.247.0/24 maxlen: 24
58.27.248.0/22 maxlen: 22
58.27.248.0/24 maxlen: 24
58.27.249.0/24 maxlen: 24
58.27.250.0/24 maxlen: 24
58.27.251.0/24 maxlen: 24
58.27.252.0/22 maxlen: 23
58.27.255.0/24 maxlen: 24
110.36.0.0/14 maxlen: 15
110.36.0.0/18 maxlen: 24
110.36.64.0/18 maxlen: 24
110.36.128.0/18 maxlen: 24
110.36.192.0/18 maxlen: 24
110.37.0.0/18 maxlen: 24
110.37.64.0/18 maxlen: 24
110.37.128.0/18 maxlen: 24
110.37.192.0/18 maxlen: 24
110.38.0.0/16 maxlen: 19
110.38.0.0/17 maxlen: 24
110.38.128.0/18 maxlen: 24
110.38.192.0/19 maxlen: 24
110.38.224.0/20 maxlen: 24
110.39.0.0/16 maxlen: 24
2402:fd00::/32 maxlen: 32
2402:fd00:100::/44 maxlen: 44
2402:fd00:110::/48 maxlen: 48
2402:fd00:111::/48 maxlen: 48
2402:fd00:11f::/48 maxlen: 48
2402:fd00:130::/44 maxlen: 44
2402:fd00:1f0::/48 maxlen: 48
2402:fd00:300::/40 maxlen: 40
2402:fd00:4000::/40 maxlen: 40
2402:fd00:6000::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl
rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 14:46:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13422 (0x346e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917FFB0/serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2
Validity
Not Before: Aug 22 15:00:54 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66c752a6-1911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:94:61:f9:d2:92:11:b4:12:dd:39:d3:8f:74:
21:60:86:aa:47:55:bd:71:e2:a4:b4:af:b1:48:85:
cb:26:58:21:da:10:27:eb:c9:db:26:dd:1a:07:39:
e3:5e:72:88:99:e7:e6:9b:82:68:61:71:a9:fd:3b:
72:99:b2:88:80:71:98:20:25:e7:62:f8:39:40:ea:
19:cb:3c:a3:b0:b1:99:07:dd:16:22:2a:1e:5f:02:
90:28:d9:24:85:92:cb:af:7c:4d:a9:4b:80:99:d4:
6e:44:5b:f0:23:39:83:60:21:ba:6d:0e:23:6c:e0:
e9:96:2e:80:19:7d:03:7c:f8:e4:45:70:2e:1a:45:
d2:86:a9:14:68:46:d1:79:be:c6:e1:ba:2d:b0:ee:
ae:93:50:28:de:33:34:4e:5d:83:44:d7:5f:37:d0:
7e:70:d7:38:71:12:f8:75:c6:89:36:fc:b6:7c:9d:
ff:99:67:d9:f2:19:5f:cf:3e:74:4b:a7:f9:88:f4:
50:0d:75:47:4a:1b:3d:dd:37:22:f0:1c:11:bd:4d:
b3:eb:b4:07:67:50:ef:57:de:70:53:91:ed:66:7a:
ab:0d:ca:a6:f7:d0:6b:f0:14:24:86:78:92:ad:b0:
47:a0:48:07:53:ff:3c:46:ad:24:b5:4f:80:b9:60:
b7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:30:11:ED:55:00:59:63:BE:39:DE:72:17:38:75:CE:8B:83:36:C5
X509v3 Authority Key Identifier:
keyid:13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/19CCFBDE6F0911ED8A7BD268C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
58.27.128.0/17
110.36.0.0/14
IPv6:
2402:fd00::/32
Signature Algorithm: sha256WithRSAEncryption
84:92:6c:a7:44:d0:fc:2b:4b:f7:9a:9b:65:89:80:26:48:b0:
a1:c2:86:9b:fb:49:8d:be:db:da:f1:b9:08:15:8e:94:f9:31:
b1:51:fc:fe:40:11:19:ee:76:90:2b:2f:c3:53:39:d5:57:5b:
fa:4b:d6:6f:99:fb:7a:8b:43:e0:74:72:be:ab:cd:02:81:34:
97:80:74:8f:27:d6:5a:d9:2f:a4:e8:22:8f:20:90:5a:6f:1a:
e4:91:81:5e:f4:58:9a:75:be:bb:ae:d6:b4:14:99:ee:e8:0b:
ed:22:3e:65:55:e8:c8:82:f8:63:20:f7:94:e8:9d:e0:84:83:
57:92:21:9e:78:94:5f:9b:2a:54:60:5d:0d:05:09:61:10:fc:
d1:b7:c2:a4:76:3d:7d:b1:03:0e:2c:44:5c:c6:dc:14:fb:1d:
98:dc:03:25:4c:5b:ff:82:88:97:bc:91:7f:b6:6e:67:92:77:
4c:e0:b8:b6:17:62:ee:f3:b9:e0:5e:13:6f:ef:a7:38:86:de:
55:38:5d:48:b0:a7:3b:ce:f5:02:d7:80:84:12:76:c6:ab:61:
31:c4:c7:14:8d:da:1b:51:ea:07:aa:44:74:ec:da:1f:0c:3f:
30:74:3c:7d:82:12:8f:07:ba:5e:16:c6:1a:03:f2:5f:96:0e:
49:f3:ee:3a
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgICNG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0ZGQjAxMTAvBgNVBAUTKDEzMjQwNDMwMjFCQjQ1RDdGRjY2RjIwQUZDNjgzOTM0
MzEzMEMzRjIwHhcNMjQwODIyMTUwMDU0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmM3NTJhNi0xOTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA5pRh+dKSEbQS3TnTj3QhYIaqR1W9ceKktK+xSIXLJlgh2hAn68nbJt0aBznj
XnKImefmm4JoYXGp/TtymbKIgHGYICXnYvg5QOoZyzyjsLGZB90WIioeXwKQKNkk
hZLLr3xNqUuAmdRuRFvwIzmDYCG6bQ4jbODpli6AGX0DfPjkRXAuGkXShqkUaEbR
eb7G4botsO6uk1Ao3jM0Tl2DRNdfN9B+cNc4cRL4dcaJNvy2fJ3/mWfZ8hlfzz50
S6f5iPRQDXVHShs93Tci8BwRvU2z67QHZ1DvV95wU5HtZnqrDcqm99Br8BQkhniS
rbBHoEgHU/88Rq0ktU+AuWC3wQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFO8wEe1V
AFljvjnechc4dc6LgzbFMB8GA1UdIwQYMBaAFBMkBDAhu0XX/2byCvxoOTQxMMPy
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkZCMC9FNTU3QzAwMDFE
OTIxMUUyOTMzQTIxRjYwOEIwMkNEMi9FeVFFTUNHN1JkZl9adklLX0dnNU5ERXd3
X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0V5UUVNQ0c3UmRmX1p2SUtfR2c1TkRFd3dfSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
N0ZGQjAvRTU1N0MwMDAxRDkyMTFFMjkzM0EyMUY2MDhCMDJDRDIvMTlDQ0ZCREU2
RjA5MTFFRDhBN0JEMjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E
JDAiMBEEAgABMAsDBAc6G4ADAwJuJDANBAIAAjAHAwUAJAL9ADANBgkqhkiG9w0B
AQsFAAOCAQEAhJJsp0TQ/CtL95qbZYmAJkiwocKGm/tJjb7b2vG5CBWOlPkxsVH8
/kARGe52kCsvw1M51Vdb+kvWb5n7eotD4HRyvqvNAoE0l4B0jyfWWtkvpOgijyCQ
Wm8a5JGBXvRYmnW+u67WtBSZ7ugL7SI+ZVXoyIL4YyD3lOid4ISDV5IhnniUX5sq
VGBdDQUJYRD80bfCpHY9fbEDDixEXMbcFPsdmNwDJUxb/4KIl7yRf7ZuZ5J3TOC4
thdi7vO54F4Tb++nOIbeVThdSLCnO871AteAhBJ2xqthMcTHFI3aG1HqB6pEdOza
Hww/MHQ8fYISjwe6XhbGGgPyX5YOSfPuOg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 16:49:22 2024 by rpki-client on console-ams.rpki-client.org