Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/ECB6EF462FC311EB8B442B0DC4F9AE02.roa
File: ECB6EF462FC311EB8B442B0DC4F9AE02.roa (raw, json)
Hash identifier: t3kiYS7RBKX8pOw6LazGRwO8YQiJHUwwNHhDc8Cb27I=
Subject key identifier: 67:EF:47:A2:CF:4B:BE:4D:78:74:6D:0C:89:47:ED:EA:0A:06:8F:EA
Certificate issuer: /CN=A9186E8A/serialNumber=A9BCCA6D34D3D5F1EFF8BBE783D49773813E5EF8
Certificate serial: 06BF
Authority key identifier: A9:BC:CA:6D:34:D3:D5:F1:EF:F8:BB:E7:83:D4:97:73:81:3E:5E:F8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/ECB6EF462FC311EB8B442B0DC4F9AE02.roa
Signing time: Fri 05 Apr 2024 00:02:20 +0000
ROA not before: Fri 05 Apr 2024 00:02:20 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 135377
IP address blocks: 45.249.244.0/24 maxlen: 24
45.249.245.0/24 maxlen: 24
45.249.246.0/24 maxlen: 24
45.249.247.0/24 maxlen: 24
101.36.96.0/24 maxlen: 24
101.36.97.0/24 maxlen: 24
101.36.98.0/24 maxlen: 24
101.36.99.0/24 maxlen: 24
101.36.100.0/24 maxlen: 24
101.36.101.0/24 maxlen: 24
101.36.102.0/24 maxlen: 24
101.36.103.0/24 maxlen: 24
101.36.104.0/24 maxlen: 24
101.36.105.0/24 maxlen: 24
101.36.106.0/24 maxlen: 24
101.36.107.0/24 maxlen: 24
101.36.108.0/24 maxlen: 24
101.36.109.0/24 maxlen: 24
101.36.110.0/24 maxlen: 24
101.36.111.0/24 maxlen: 24
101.36.112.0/24 maxlen: 24
101.36.113.0/24 maxlen: 24
101.36.114.0/24 maxlen: 24
101.36.115.0/24 maxlen: 24
101.36.116.0/24 maxlen: 24
101.36.117.0/24 maxlen: 24
101.36.118.0/24 maxlen: 24
101.36.119.0/24 maxlen: 24
101.36.120.0/24 maxlen: 24
101.36.121.0/24 maxlen: 24
101.36.122.0/24 maxlen: 24
101.36.123.0/24 maxlen: 24
101.36.124.0/24 maxlen: 24
101.36.125.0/24 maxlen: 24
101.36.126.0/24 maxlen: 24
101.36.127.0/24 maxlen: 24
103.149.26.0/24 maxlen: 24
103.149.27.0/24 maxlen: 24
103.218.240.0/24 maxlen: 24
103.218.241.0/24 maxlen: 24
103.218.242.0/24 maxlen: 24
103.218.243.0/24 maxlen: 24
118.26.36.0/24 maxlen: 24
118.26.37.0/24 maxlen: 24
118.26.38.0/24 maxlen: 24
118.26.39.0/24 maxlen: 24
118.26.104.0/24 maxlen: 24
118.26.105.0/24 maxlen: 24
118.26.106.0/24 maxlen: 24
118.26.107.0/24 maxlen: 24
118.26.108.0/24 maxlen: 24
118.26.109.0/24 maxlen: 24
118.26.110.0/24 maxlen: 24
118.26.111.0/24 maxlen: 24
118.193.32.0/24 maxlen: 24
118.193.33.0/24 maxlen: 24
118.193.34.0/24 maxlen: 24
118.193.35.0/24 maxlen: 24
118.193.36.0/24 maxlen: 24
118.193.37.0/24 maxlen: 24
118.193.38.0/24 maxlen: 24
118.193.39.0/24 maxlen: 24
118.193.40.0/24 maxlen: 24
118.193.41.0/24 maxlen: 24
118.193.42.0/24 maxlen: 24
118.193.43.0/24 maxlen: 24
118.193.44.0/24 maxlen: 24
118.193.45.0/24 maxlen: 24
118.193.46.0/24 maxlen: 24
118.193.47.0/24 maxlen: 24
118.193.56.0/24 maxlen: 24
118.193.57.0/24 maxlen: 24
118.193.58.0/24 maxlen: 24
118.193.59.0/24 maxlen: 24
118.193.60.0/24 maxlen: 24
118.193.61.0/24 maxlen: 24
118.193.62.0/24 maxlen: 24
118.193.63.0/24 maxlen: 24
118.193.64.0/24 maxlen: 24
118.193.65.0/24 maxlen: 24
118.193.66.0/24 maxlen: 24
118.193.67.0/24 maxlen: 24
118.193.68.0/24 maxlen: 24
118.193.69.0/24 maxlen: 24
118.193.70.0/24 maxlen: 24
118.193.71.0/24 maxlen: 24
118.193.72.0/24 maxlen: 24
118.193.73.0/24 maxlen: 24
118.193.74.0/24 maxlen: 24
118.193.75.0/24 maxlen: 24
118.193.76.0/24 maxlen: 24
118.193.77.0/24 maxlen: 24
118.193.78.0/24 maxlen: 24
118.193.79.0/24 maxlen: 24
118.194.228.0/24 maxlen: 24
118.194.229.0/24 maxlen: 24
118.194.230.0/24 maxlen: 24
118.194.231.0/24 maxlen: 24
118.194.232.0/24 maxlen: 24
118.194.233.0/24 maxlen: 24
118.194.234.0/24 maxlen: 24
118.194.235.0/24 maxlen: 24
118.194.236.0/24 maxlen: 24
118.194.237.0/24 maxlen: 24
118.194.238.0/24 maxlen: 24
118.194.239.0/24 maxlen: 24
118.194.248.0/24 maxlen: 24
118.194.249.0/24 maxlen: 24
118.194.250.0/24 maxlen: 24
118.194.251.0/24 maxlen: 24
118.194.252.0/24 maxlen: 24
118.194.253.0/24 maxlen: 24
118.194.254.0/24 maxlen: 24
118.194.255.0/24 maxlen: 24
123.58.192.0/24 maxlen: 24
123.58.193.0/24 maxlen: 24
123.58.194.0/24 maxlen: 24
123.58.195.0/24 maxlen: 24
123.58.196.0/24 maxlen: 24
123.58.197.0/24 maxlen: 24
123.58.198.0/24 maxlen: 24
123.58.199.0/24 maxlen: 24
123.58.200.0/24 maxlen: 24
123.58.201.0/24 maxlen: 24
123.58.202.0/24 maxlen: 24
123.58.203.0/24 maxlen: 24
123.58.204.0/24 maxlen: 24
123.58.205.0/24 maxlen: 24
123.58.206.0/24 maxlen: 24
123.58.207.0/24 maxlen: 24
123.58.208.0/24 maxlen: 24
123.58.209.0/24 maxlen: 24
123.58.210.0/24 maxlen: 24
123.58.211.0/24 maxlen: 24
123.58.212.0/24 maxlen: 24
123.58.213.0/24 maxlen: 24
123.58.214.0/24 maxlen: 24
123.58.215.0/24 maxlen: 24
123.58.216.0/24 maxlen: 24
123.58.217.0/24 maxlen: 24
123.58.218.0/24 maxlen: 24
123.58.219.0/24 maxlen: 24
123.58.220.0/24 maxlen: 24
123.58.221.0/24 maxlen: 24
123.58.222.0/24 maxlen: 24
123.58.223.0/24 maxlen: 24
2001:df3:9500::/48 maxlen: 48
2404:82c0::/42 maxlen: 42
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.crl
rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 27 Nov 2024 20:33:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1727 (0x6bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9186E8A/serialNumber=A9BCCA6D34D3D5F1EFF8BBE783D49773813E5EF8
Validity
Not Before: Apr 5 00:02:20 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=660f3f8c-99a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8c:fd:a1:65:2a:f6:dc:c1:41:b4:5d:8b:0b:
b7:81:7c:3b:6c:81:22:79:ce:71:57:f0:fb:9d:f5:
33:ab:59:48:1d:f4:43:b6:bb:1c:c3:18:1c:36:07:
06:24:2a:2b:9b:6b:fd:df:0f:60:3d:ec:13:c8:ab:
17:3a:19:0e:35:07:f6:58:31:58:ff:f0:92:de:9b:
39:b0:39:1f:64:a7:b4:e8:b1:ff:ac:04:87:2a:ee:
78:9f:01:d1:5a:dc:29:35:08:e0:bc:26:4a:88:4f:
2e:34:a3:60:99:13:ab:e8:76:dd:ed:5f:e6:ce:ac:
0d:42:06:98:17:91:16:8f:d3:03:73:ad:af:50:c6:
00:9f:51:24:58:a3:1b:1f:ba:6f:97:06:b8:33:45:
7f:da:42:ab:16:44:5d:96:fd:97:9c:17:fe:34:b0:
3e:e2:5c:46:a2:a5:c1:55:9a:c8:dd:31:dc:13:83:
05:dd:e7:c3:75:e0:72:1f:2e:53:f0:c9:83:ba:fb:
72:1f:2d:2c:60:ff:ae:4c:de:d3:84:8d:51:0f:e2:
09:15:e7:62:d6:cf:05:de:fb:1f:c8:58:13:1a:80:
ce:25:37:4e:bd:46:62:b6:66:51:cc:f9:51:e9:a7:
20:ac:90:97:00:87:3f:90:61:ad:8b:d4:51:ab:ef:
fb:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:EF:47:A2:CF:4B:BE:4D:78:74:6D:0C:89:47:ED:EA:0A:06:8F:EA
X509v3 Authority Key Identifier:
keyid:A9:BC:CA:6D:34:D3:D5:F1:EF:F8:BB:E7:83:D4:97:73:81:3E:5E:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/ECB6EF462FC311EB8B442B0DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.249.244.0/22
101.36.96.0/19
103.149.26.0/23
103.218.240.0/22
118.26.36.0/22
118.26.104.0/21
118.193.32.0/20
118.193.56.0-118.193.79.255
118.194.228.0-118.194.239.255
118.194.248.0/21
123.58.192.0/19
IPv6:
2001:df3:9500::/48
2404:82c0::/42
Signature Algorithm: sha256WithRSAEncryption
1f:50:e7:d9:39:cf:0d:f0:37:92:70:02:4e:6c:c7:f7:d8:6b:
4f:ca:f0:00:32:78:34:fc:ae:2e:8c:83:00:0c:1b:13:60:77:
eb:ff:ed:a3:ee:1a:76:0c:69:57:9d:d1:21:c0:5b:77:b9:ce:
85:40:dd:0d:0f:eb:ad:2e:96:71:1b:7e:fd:da:42:bf:28:66:
97:38:9f:75:33:e9:df:fb:83:38:96:05:31:f1:62:cf:67:ea:
51:1e:bd:49:6d:bc:84:12:10:e0:53:bf:d5:0b:16:28:1d:6e:
50:a2:28:d3:6d:21:76:9c:6e:55:09:50:39:b3:f5:17:8d:ad:
ed:cd:48:69:3d:e3:c5:1e:ce:df:08:b8:55:5c:20:8e:68:2b:
55:c1:08:e2:9f:df:0e:79:ba:ab:bd:88:29:40:f5:3a:e7:e5:
e5:ef:59:e6:ef:7d:38:d0:d1:cd:c1:b0:e4:b5:2d:0c:fa:7b:
9f:a6:29:22:4a:58:76:22:13:c9:3f:fc:1d:6d:6d:47:d8:18:
b3:75:81:d1:6c:73:a0:a0:75:62:30:bd:0c:7f:eb:e1:c6:fd:
3b:d1:ee:93:d3:e9:71:ad:c9:e8:f4:d6:82:a2:a4:69:45:88:
4d:7a:cb:1b:6c:b4:7a:dc:ea:5d:20:f0:aa:06:25:97:29:09:
a7:f0:71:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 23:11:46 2024 by rpki-client on console-fra.rpki-client.org