Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9189099/8AEFB1D25F0F11EB8D8B2616C4F9AE02/16625D045F1111EBB1A05A17C4F9AE02.roa
File: 16625D045F1111EBB1A05A17C4F9AE02.roa (raw, json)
Hash identifier: i5mBTa0vcOEsQQ50dwMwmVO2ef9KohlASrU/wQWVASc=
Subject key identifier: 30:97:38:E0:4D:9E:07:15:A4:03:9B:74:CC:F5:AA:E0:67:D9:B4:D2
Certificate issuer: /CN=A9189099/serialNumber=6200B157ADBA2569FA7B88B7DA2FB5AE3FF6A3B6
Certificate serial: 058D
Authority key identifier: 62:00:B1:57:AD:BA:25:69:FA:7B:88:B7:DA:2F:B5:AE:3F:F6:A3:B6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YgCxV626JWn6e4i32i-1rj_2o7Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9189099/8AEFB1D25F0F11EB8D8B2616C4F9AE02/16625D045F1111EBB1A05A17C4F9AE02.roa
Signing time: Thu 31 Aug 2023 23:30:38 +0000
ROA not before: Thu 31 Aug 2023 23:30:38 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 23930
IP address blocks: 43.243.126.0/24 maxlen: 24
43.243.127.0/24 maxlen: 24
103.38.214.0/24 maxlen: 24
103.38.215.0/24 maxlen: 24
116.93.0.0/23 maxlen: 23
116.93.1.0/24 maxlen: 24
116.93.4.0/23 maxlen: 24
116.93.7.0/24 maxlen: 24
116.93.8.0/23 maxlen: 24
116.93.10.0/23 maxlen: 24
116.93.12.0/23 maxlen: 24
116.93.15.0/24 maxlen: 24
116.93.16.0/23 maxlen: 23
116.93.17.0/24 maxlen: 24
116.93.18.0/23 maxlen: 23
116.93.18.0/24 maxlen: 24
116.93.20.0/24 maxlen: 24
116.93.21.0/24 maxlen: 24
116.93.22.0/23 maxlen: 23
116.93.23.0/24 maxlen: 24
116.93.24.0/22 maxlen: 24
116.93.28.0/23 maxlen: 24
116.93.30.0/23 maxlen: 24
116.93.32.0/23 maxlen: 24
116.93.34.0/23 maxlen: 23
116.93.34.0/24 maxlen: 24
116.93.36.0/23 maxlen: 24
116.93.38.0/23 maxlen: 24
116.93.40.0/24 maxlen: 24
116.93.41.0/24 maxlen: 24
116.93.42.0/24 maxlen: 24
116.93.43.0/24 maxlen: 24
116.93.44.0/24 maxlen: 24
116.93.45.0/24 maxlen: 24
116.93.46.0/23 maxlen: 23
116.93.47.0/24 maxlen: 24
116.93.48.0/23 maxlen: 23
116.93.49.0/24 maxlen: 24
116.93.50.0/23 maxlen: 23
116.93.51.0/24 maxlen: 24
116.93.52.0/24 maxlen: 24
116.93.54.0/23 maxlen: 23
116.93.54.0/24 maxlen: 24
116.93.61.0/24 maxlen: 24
116.93.62.0/24 maxlen: 24
116.93.63.0/24 maxlen: 24
116.93.64.0/24 maxlen: 24
116.93.65.0/24 maxlen: 24
116.93.66.0/24 maxlen: 24
116.93.67.0/24 maxlen: 24
116.93.71.0/24 maxlen: 24
116.93.74.0/24 maxlen: 24
116.93.75.0/24 maxlen: 24
116.93.78.0/24 maxlen: 24
116.93.79.0/24 maxlen: 24
116.93.80.0/23 maxlen: 23
116.93.80.0/24 maxlen: 24
116.93.85.0/24 maxlen: 24
116.93.87.0/24 maxlen: 24
116.93.88.0/24 maxlen: 24
116.93.90.0/24 maxlen: 24
116.93.91.0/24 maxlen: 24
116.93.93.0/24 maxlen: 24
116.93.96.0/24 maxlen: 24
116.93.97.0/24 maxlen: 24
116.93.100.0/24 maxlen: 24
116.93.102.0/24 maxlen: 24
116.93.105.0/24 maxlen: 24
116.93.106.0/24 maxlen: 24
116.93.107.0/24 maxlen: 24
116.93.108.0/24 maxlen: 24
116.93.109.0/24 maxlen: 24
116.93.110.0/24 maxlen: 24
116.93.111.0/24 maxlen: 24
116.93.112.0/24 maxlen: 24
116.93.114.0/24 maxlen: 24
116.93.115.0/24 maxlen: 24
116.93.117.0/24 maxlen: 24
116.93.118.0/24 maxlen: 24
116.93.119.0/24 maxlen: 24
116.93.120.0/24 maxlen: 24
116.93.121.0/24 maxlen: 24
116.93.122.0/24 maxlen: 24
116.93.124.0/24 maxlen: 24
116.93.126.0/24 maxlen: 24
116.93.127.0/24 maxlen: 24
121.127.6.0/24 maxlen: 24
121.127.7.0/24 maxlen: 24
121.127.8.0/24 maxlen: 24
121.127.9.0/24 maxlen: 24
121.127.10.0/24 maxlen: 24
121.127.11.0/24 maxlen: 24
121.127.12.0/23 maxlen: 24
121.127.14.0/23 maxlen: 24
121.127.16.0/24 maxlen: 24
121.127.17.0/24 maxlen: 24
121.127.18.0/24 maxlen: 24
121.127.20.0/23 maxlen: 24
121.127.22.0/23 maxlen: 24
121.127.26.0/23 maxlen: 24
121.127.28.0/23 maxlen: 23
121.127.28.0/24 maxlen: 24
121.127.30.0/23 maxlen: 24
203.99.232.0/21 maxlen: 21
203.99.232.0/23 maxlen: 24
203.99.234.0/24 maxlen: 24
203.99.235.0/24 maxlen: 24
203.99.236.0/24 maxlen: 24
203.99.237.0/24 maxlen: 24
203.99.238.0/23 maxlen: 24
203.208.24.0/21 maxlen: 21
203.208.24.0/23 maxlen: 24
203.208.26.0/24 maxlen: 24
203.208.27.0/24 maxlen: 24
203.208.28.0/24 maxlen: 24
203.208.29.0/24 maxlen: 24
203.208.30.0/24 maxlen: 24
2401:9800::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9189099/8AEFB1D25F0F11EB8D8B2616C4F9AE02/YgCxV626JWn6e4i32i-1rj_2o7Y.crl
rsync://rpki.apnic.net/member_repository/A9189099/8AEFB1D25F0F11EB8D8B2616C4F9AE02/YgCxV626JWn6e4i32i-1rj_2o7Y.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YgCxV626JWn6e4i32i-1rj_2o7Y.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 22 Jun 2024 00:22:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1421 (0x58d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9189099/serialNumber=6200B157ADBA2569FA7B88B7DA2FB5AE3FF6A3B6
Validity
Not Before: Aug 31 23:30:38 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=64f1229e-dd22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:59:74:07:fb:54:82:c7:e5:bc:c2:54:a8:4e:
b8:8e:0f:6d:f7:e9:3e:7d:da:8a:4b:9e:4b:b8:8b:
19:1d:89:da:89:d3:5c:28:3e:66:79:43:24:23:ff:
64:f8:a2:0b:7c:87:c3:5c:95:eb:cf:6a:3b:89:12:
b0:32:69:f0:a7:ef:56:fb:b0:8b:fb:89:d8:05:91:
3d:e7:bb:d0:08:ec:1e:a5:33:0e:3c:90:c6:ca:89:
6e:fb:1d:fd:ef:6a:cd:4e:54:50:90:e5:35:8f:ce:
24:ec:9b:9d:05:a7:53:e1:0c:43:eb:0c:d2:af:ce:
9a:3a:26:ca:46:a9:ff:2b:5b:82:7e:7a:99:35:34:
67:51:f2:02:00:54:42:13:5e:a4:b6:f7:2e:55:51:
6f:7f:b5:af:bb:e0:ea:2e:b7:7b:58:72:17:fd:b6:
0f:b7:78:12:c5:30:0e:c8:a4:ab:80:d5:dc:8b:d3:
94:85:25:a7:c0:ad:0b:ff:f9:12:1c:9d:f6:9f:93:
11:aa:b0:ed:3a:1e:17:29:d3:a1:0a:6d:67:e1:85:
b9:7f:dd:c5:1c:59:2a:d3:37:bf:f7:73:cf:25:0b:
cb:62:56:90:34:75:bc:ab:59:44:7d:7b:cd:05:7c:
0e:f6:a5:18:ee:52:77:ad:df:5c:fe:64:54:18:cd:
59:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:97:38:E0:4D:9E:07:15:A4:03:9B:74:CC:F5:AA:E0:67:D9:B4:D2
X509v3 Authority Key Identifier:
keyid:62:00:B1:57:AD:BA:25:69:FA:7B:88:B7:DA:2F:B5:AE:3F:F6:A3:B6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9189099/8AEFB1D25F0F11EB8D8B2616C4F9AE02/YgCxV626JWn6e4i32i-1rj_2o7Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YgCxV626JWn6e4i32i-1rj_2o7Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189099/8AEFB1D25F0F11EB8D8B2616C4F9AE02/16625D045F1111EBB1A05A17C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.243.126.0/23
103.38.214.0/23
116.93.0.0/23
116.93.4.0/23
116.93.7.0-116.93.13.255
116.93.15.0-116.93.52.255
116.93.54.0/23
116.93.61.0-116.93.67.255
116.93.71.0/24
116.93.74.0/23
116.93.78.0-116.93.81.255
116.93.85.0/24
116.93.87.0-116.93.88.255
116.93.90.0/23
116.93.93.0/24
116.93.96.0/23
116.93.100.0/24
116.93.102.0/24
116.93.105.0-116.93.112.255
116.93.114.0/23
116.93.117.0-116.93.122.255
116.93.124.0/24
116.93.126.0/23
121.127.6.0-121.127.18.255
121.127.20.0/22
121.127.26.0-121.127.31.255
203.99.232.0/21
203.208.24.0/21
IPv6:
2401:9800::/32
Signature Algorithm: sha256WithRSAEncryption
22:88:fc:b0:fd:ad:98:97:aa:12:26:00:92:4e:81:17:0b:4b:
97:b4:e5:3e:00:36:8c:ef:c7:d4:84:dc:51:6a:49:8a:e6:33:
e3:c3:af:c1:3b:2e:ea:85:ba:23:67:06:0b:66:34:da:40:f4:
3f:0d:54:8b:c1:cc:27:3d:47:4f:73:8e:94:f1:fb:c7:2c:15:
c5:9d:47:1f:08:20:4e:17:8e:ff:fd:21:66:0f:8b:13:15:4c:
30:b7:7a:5a:93:0d:16:de:63:72:0b:7f:7d:de:1b:55:4b:44:
c7:a4:c6:0f:48:7d:55:d5:8b:b2:8e:16:c1:d3:3a:b8:dc:55:
ac:94:23:80:72:26:2b:8f:b9:1f:0c:00:0e:b5:ce:d5:fa:da:
56:77:0f:cd:65:0b:84:37:a9:8e:9e:b0:4c:2b:a2:3e:7c:5b:
12:f3:b3:82:e1:2c:68:71:4d:1f:00:03:33:44:59:84:b8:15:
c4:45:57:60:9a:a6:d1:04:78:bc:af:b9:62:cd:5d:8a:ba:c0:
15:76:00:a7:8d:69:ec:7f:51:ae:fe:f9:72:89:95:41:c5:6d:
b4:a5:6e:3b:54:5f:46:3b:d6:0a:30:1f:78:50:7a:b9:35:5d:
22:1c:68:c4:70:b6:d1:7e:50:1a:27:9b:c3:c0:77:8a:1f:ea:
de:d3:8a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 02:44:44 2024 by rpki-client on console-ams.rpki-client.org