Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/AAB802E8C78C11E8A76CD914C4F9AE02/ED7D926622C511EE8579CC72C4F9AE02.roa
File: ED7D926622C511EE8579CC72C4F9AE02.roa (raw, json)
Hash identifier: eR77IizgliF9p3Hk3DKn1CDdr9eC3iyjyvFgBE8PWnk=
Subject key identifier: 29:2A:BD:45:89:51:79:1A:8C:4C:43:0B:E1:49:13:BE:46:05:CF:9B
Certificate issuer: /CN=A9191436/serialNumber=2DA251C11AC68814F527F22E55DE9AC8C57FD66C
Certificate serial: 1267
Authority key identifier: 2D:A2:51:C1:1A:C6:88:14:F5:27:F2:2E:55:DE:9A:C8:C5:7F:D6:6C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LaJRwRrGiBT1J_IuVd6ayMV_1mw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/AAB802E8C78C11E8A76CD914C4F9AE02/ED7D926622C511EE8579CC72C4F9AE02.roa
Signing time: Tue 02 Apr 2024 17:55:58 +0000
ROA not before: Tue 02 Apr 2024 17:55:58 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 9902
IP address blocks: 103.23.136.0/22 maxlen: 22
103.23.136.0/24 maxlen: 24
103.23.137.0/24 maxlen: 24
103.23.138.0/24 maxlen: 24
103.23.139.0/24 maxlen: 24
103.25.92.0/24 maxlen: 24
103.25.93.0/24 maxlen: 24
103.25.94.0/24 maxlen: 24
103.25.95.0/24 maxlen: 24
103.244.248.0/22 maxlen: 22
103.244.248.0/24 maxlen: 24
103.244.249.0/24 maxlen: 24
103.244.250.0/24 maxlen: 24
103.244.251.0/24 maxlen: 24
110.235.220.0/22 maxlen: 22
110.235.220.0/24 maxlen: 24
110.235.221.0/24 maxlen: 24
110.235.222.0/24 maxlen: 24
110.235.223.0/24 maxlen: 24
123.108.248.0/21 maxlen: 21
123.108.248.0/24 maxlen: 24
123.108.249.0/24 maxlen: 24
123.108.250.0/24 maxlen: 24
123.108.251.0/24 maxlen: 24
123.108.252.0/24 maxlen: 24
123.108.253.0/24 maxlen: 24
123.108.254.0/23 maxlen: 24
124.199.112.0/20 maxlen: 20
124.199.112.0/24 maxlen: 24
124.199.113.0/24 maxlen: 24
124.199.114.0/24 maxlen: 24
124.199.115.0/24 maxlen: 24
124.199.116.0/24 maxlen: 24
124.199.117.0/24 maxlen: 24
124.199.118.0/24 maxlen: 24
124.199.119.0/24 maxlen: 24
124.199.120.0/24 maxlen: 24
124.199.121.0/24 maxlen: 24
124.199.122.0/24 maxlen: 24
124.199.123.0/24 maxlen: 24
124.199.124.0/24 maxlen: 24
124.199.125.0/24 maxlen: 24
124.199.126.0/24 maxlen: 24
124.199.127.0/24 maxlen: 24
163.53.196.0/22 maxlen: 22
163.53.196.0/24 maxlen: 24
163.53.197.0/24 maxlen: 24
163.53.198.0/24 maxlen: 24
163.53.199.0/24 maxlen: 24
202.124.32.0/24 maxlen: 24
202.124.33.0/24 maxlen: 24
202.124.34.0/24 maxlen: 24
202.124.35.0/24 maxlen: 24
202.124.36.0/24 maxlen: 24
202.124.37.0/24 maxlen: 24
202.124.38.0/24 maxlen: 24
202.124.39.0/24 maxlen: 24
202.124.40.0/24 maxlen: 24
202.124.41.0/24 maxlen: 24
202.124.42.0/24 maxlen: 24
202.124.43.0/24 maxlen: 24
202.124.44.0/24 maxlen: 24
202.124.45.0/24 maxlen: 24
202.124.46.0/24 maxlen: 24
202.124.47.0/24 maxlen: 24
203.80.160.0/21 maxlen: 21
203.80.160.0/24 maxlen: 24
203.80.161.0/24 maxlen: 24
203.80.162.0/24 maxlen: 24
203.80.163.0/24 maxlen: 24
203.80.164.0/24 maxlen: 24
203.80.165.0/24 maxlen: 24
203.80.166.0/24 maxlen: 24
203.80.167.0/24 maxlen: 24
203.167.16.0/22 maxlen: 24
2402:5100::/32 maxlen: 32
2402:5100::/48 maxlen: 48
2402:5100:1::/48 maxlen: 48
2402:5100:2::/48 maxlen: 48
2402:5100:3::/48 maxlen: 48
2402:5100:4::/48 maxlen: 48
2402:5100:5::/48 maxlen: 48
2402:5100:6::/47 maxlen: 47
2402:5100:8::/45 maxlen: 45
2402:5100:10::/44 maxlen: 44
2402:5100:20::/43 maxlen: 43
2402:5100:40::/42 maxlen: 42
2402:5100:80::/41 maxlen: 41
2402:5100:100::/40 maxlen: 40
2402:5100:200::/39 maxlen: 39
2402:5100:400::/38 maxlen: 38
2402:5100:800::/37 maxlen: 37
2402:5100:a61:9160::/64 maxlen: 64
2402:5100:1000::/36 maxlen: 36
2402:5100:109a:9c00::/54 maxlen: 54
2402:5100:13e4::/49 maxlen: 49
2402:5100:19c5:7b1a::/63 maxlen: 63
2402:5100:2000::/35 maxlen: 35
2402:5100:2000::/36 maxlen: 44
2402:5100:2000::/48 maxlen: 48
2402:5100:2878:a000::/51 maxlen: 51
2402:5100:3051:faf0::/61 maxlen: 61
2402:5100:34fa:4000::/50 maxlen: 50
2402:5100:3ca1::/52 maxlen: 52
2402:5100:4000::/34 maxlen: 34
2402:5100:440a:6c00::/54 maxlen: 54
2402:5100:4858:8798::/62 maxlen: 62
2402:5100:49af:7378::/62 maxlen: 62
2402:5100:4dc9:200::/55 maxlen: 55
2402:5100:5a54::/48 maxlen: 48
2402:5100:5ad0:e000::/51 maxlen: 51
2402:5100:5adf:ff00::/56 maxlen: 56
2402:5100:5b82:c640::/58 maxlen: 58
2402:5100:5f51:8000::/50 maxlen: 50
2402:5100:633d:8000::/49 maxlen: 49
2402:5100:7944:6230::/60 maxlen: 60
2402:5100:7c59:3040::/59 maxlen: 59
2402:5100:8000::/33 maxlen: 33
2402:5100:82ec:1000::/52 maxlen: 52
2402:5100:8a2c:fa80::/58 maxlen: 58
2402:5100:8c49:1daf::/64 maxlen: 64
2402:5100:913d:267c::/63 maxlen: 63
2402:5100:92a8:d800::/53 maxlen: 53
2402:5100:92d3:d000::/59 maxlen: 59
2402:5100:92ed:82a0::/59 maxlen: 59
2402:5100:9674:9800::/53 maxlen: 53
2402:5100:968b:9fd0::/61 maxlen: 61
2402:5100:96f4:35f2::/63 maxlen: 63
2402:5100:97d1:bab4::/62 maxlen: 62
2402:5100:9839:d180::/64 maxlen: 64
2402:5100:9839:d18b::/64 maxlen: 64
2402:5100:98c5::/50 maxlen: 50
2402:5100:9a3e:d560::/59 maxlen: 59
2402:5100:9ae1:9640::/58 maxlen: 58
2402:5100:9b45::/48 maxlen: 48
2402:5100:9c24::/48 maxlen: 48
2402:5100:9e92:7000::/52 maxlen: 52
2402:5100:9f87:ca0::/60 maxlen: 60
2402:5100:a595::/49 maxlen: 49
2402:5100:a5af:9200::/55 maxlen: 55
2402:5100:a6d7:1cd8::/61 maxlen: 61
2402:5100:a8d2:8a00::/55 maxlen: 55
2402:5100:ac16:2800::/56 maxlen: 56
2402:5100:ad38:f128::/63 maxlen: 63
2402:5100:af3d:9780::/57 maxlen: 57
2402:5100:af82::/48 maxlen: 48
2402:5100:b344:1800::/53 maxlen: 53
2402:5100:baec::/49 maxlen: 49
2402:5100:bd4f::/48 maxlen: 48
2402:5100:be38:d980::/57 maxlen: 57
2402:5100:bf0d:425e::/64 maxlen: 64
2402:5100:c000::/48 maxlen: 48
2402:5100:c017:3e00::/57 maxlen: 57
2402:5100:c126::/48 maxlen: 48
2402:5100:c29b::/48 maxlen: 48
2402:5100:c42e:9728::/61 maxlen: 61
2402:5100:c8e5:e000::/51 maxlen: 51
2402:5100:ca6b:62b0::/60 maxlen: 60
2402:5100:d107::/48 maxlen: 48
2402:5100:d1a2:dc00::/56 maxlen: 56
2402:5100:d360:8000::/50 maxlen: 50
2402:5100:d3b2:b800::/53 maxlen: 53
2402:5100:d7f6::/48 maxlen: 48
2402:5100:d879:7e00::/60 maxlen: 60
2402:5100:d8e9:4a04::/62 maxlen: 62
2402:5100:dc0e::/54 maxlen: 54
2402:5100:dd4c::/48 maxlen: 48
2402:5100:e458::/48 maxlen: 48
2402:5100:e965:69c0::/58 maxlen: 58
2402:5100:ef12:8800::/54 maxlen: 54
2402:5100:f116:2200::/56 maxlen: 56
2402:5100:f23f:7a80::/57 maxlen: 57
2402:5100:f48e::/48 maxlen: 48
2402:5100:f71d:2000::/51 maxlen: 51
2402:5100:f9ee:8800::/55 maxlen: 55
2402:5100:fcbe:3000::/52 maxlen: 52
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9191436/AAB802E8C78C11E8A76CD914C4F9AE02/LaJRwRrGiBT1J_IuVd6ayMV_1mw.crl
rsync://rpki.apnic.net/member_repository/A9191436/AAB802E8C78C11E8A76CD914C4F9AE02/LaJRwRrGiBT1J_IuVd6ayMV_1mw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LaJRwRrGiBT1J_IuVd6ayMV_1mw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 27 Nov 2024 17:05:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4711 (0x1267)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9191436/serialNumber=2DA251C11AC68814F527F22E55DE9AC8C57FD66C
Validity
Not Before: Apr 2 17:55:58 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=660c46ad-c912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ab:49:9f:c4:a2:9b:3d:11:37:51:00:81:02:
aa:c8:d4:6b:86:72:2c:9d:bd:1d:6e:fe:84:29:46:
d5:a7:33:1d:28:ab:36:78:a1:21:1a:f2:1e:f4:99:
8f:e0:cf:dc:f4:7c:2b:b4:ea:c9:a4:c8:32:ad:bb:
12:a7:84:c9:0b:2d:50:33:11:9b:3a:b2:fa:1c:de:
3c:ca:7d:23:70:05:4d:6f:5a:a3:3e:20:3f:f4:ac:
6d:76:af:2b:31:92:2c:92:2e:29:5c:5a:e7:87:fd:
99:d8:dc:b4:c6:f1:07:95:32:34:fe:26:9a:fa:d3:
87:b4:67:f5:18:65:ba:ef:0b:af:d8:1b:99:99:8e:
a8:0a:f9:bd:74:7a:84:6f:cb:88:b4:47:b3:fb:15:
6e:c7:fa:cd:8d:26:3a:a8:fb:4f:a3:68:45:22:74:
03:30:ae:56:7a:36:21:5e:df:05:36:f7:db:bf:70:
50:fa:f0:02:4e:9b:ad:ea:9e:4a:19:51:83:61:53:
f2:17:f8:18:b4:71:40:fb:b6:f1:7a:56:24:4b:bc:
42:34:58:76:f4:b6:85:21:f6:86:af:5e:7e:2e:e9:
db:de:f2:a8:cb:ca:06:0d:fc:a9:7f:c9:5e:6b:08:
97:78:b8:6b:01:7e:1f:d6:b1:43:4b:c5:af:fe:35:
19:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:2A:BD:45:89:51:79:1A:8C:4C:43:0B:E1:49:13:BE:46:05:CF:9B
X509v3 Authority Key Identifier:
keyid:2D:A2:51:C1:1A:C6:88:14:F5:27:F2:2E:55:DE:9A:C8:C5:7F:D6:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9191436/AAB802E8C78C11E8A76CD914C4F9AE02/LaJRwRrGiBT1J_IuVd6ayMV_1mw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LaJRwRrGiBT1J_IuVd6ayMV_1mw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/AAB802E8C78C11E8A76CD914C4F9AE02/ED7D926622C511EE8579CC72C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.23.136.0/22
103.25.92.0/22
103.244.248.0/22
110.235.220.0/22
123.108.248.0/21
124.199.112.0/20
163.53.196.0/22
202.124.32.0/20
203.80.160.0/21
203.167.16.0/22
IPv6:
2402:5100::/32
Signature Algorithm: sha256WithRSAEncryption
36:ca:d7:da:77:46:29:de:f2:58:8c:37:a5:cc:3b:ed:e3:94:
51:c5:c1:5f:82:bc:80:1e:2f:ec:de:45:a3:7b:ad:44:6b:6b:
04:d2:14:f2:ca:53:3e:fa:6e:d5:83:78:bc:5d:de:6e:58:df:
6c:5a:de:41:0d:a9:a7:4b:67:62:c0:76:5b:15:b0:c8:b6:d0:
a7:8d:4c:d1:23:e0:b9:6c:6f:39:78:9f:36:38:c5:b5:79:55:
6b:c9:d1:6e:c8:a3:b5:cf:87:7b:42:ca:4e:12:e5:9e:db:05:
36:74:09:4f:d3:ed:fe:22:9f:87:26:d4:4d:91:fb:0c:1c:e8:
c6:4f:43:1a:4b:ae:81:b0:18:35:30:b3:38:aa:1f:f8:40:df:
8d:78:a2:c3:63:b1:8a:5c:80:1f:18:29:05:24:c1:6f:26:51:
e5:fb:b5:5a:c3:4f:c9:c9:4d:c4:03:2a:52:73:50:a2:01:75:
9d:ab:50:40:88:cf:aa:ef:a3:67:3c:ce:ac:03:ea:18:7f:9b:
b0:fa:22:ce:26:8b:8f:b4:20:62:6f:c4:96:4c:7d:e3:48:27:
f7:42:00:ef:a7:cb:ef:17:40:29:a6:be:db:5b:6b:10:fc:b5:
1d:5f:55:aa:dd:ef:6d:9a:e8:66:ae:df:99:bc:89:89:6c:40:
52:c2:e7:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 19:06:01 2024 by rpki-client on console-ams.rpki-client.org