Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919CAB7/64698BD47CD611EB9A2A606BC4F9AE02/EECD7500CF6E11ED915AD729C4F9AE02.roa
File: EECD7500CF6E11ED915AD729C4F9AE02.roa (raw, json)
Hash identifier: QFyNBVkrpqoC0f3paRUUMemxQInra+G6JMgWsjaRB8E=
Subject key identifier: 82:53:29:DB:9E:2D:BD:F0:D7:AB:1A:5E:D1:25:EA:E8:B6:7F:39:3E
Certificate issuer: /CN=A919CAB7/serialNumber=DC7381043E36433DBA6C8295321077A02E8E8787
Certificate serial: 0646
Authority key identifier: DC:73:81:04:3E:36:43:3D:BA:6C:82:95:32:10:77:A0:2E:8E:87:87
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HOBBD42Qz26bIKVMhB3oC6Oh4c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919CAB7/64698BD47CD611EB9A2A606BC4F9AE02/EECD7500CF6E11ED915AD729C4F9AE02.roa
Signing time: Fri 14 Feb 2025 23:41:00 +0000
ROA not before: Fri 14 Feb 2025 23:41:00 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 131314
IP address blocks: 103.163.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919CAB7/64698BD47CD611EB9A2A606BC4F9AE02/3HOBBD42Qz26bIKVMhB3oC6Oh4c.crl
rsync://rpki.apnic.net/member_repository/A919CAB7/64698BD47CD611EB9A2A606BC4F9AE02/3HOBBD42Qz26bIKVMhB3oC6Oh4c.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HOBBD42Qz26bIKVMhB3oC6Oh4c.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 22:11:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1606 (0x646)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919CAB7
Validity
Not Before: Feb 14 23:41:00 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67afd48c-712d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9d:7c:21:2c:09:b5:1f:5f:0c:b3:f7:54:32:
6d:c9:9b:92:52:6b:bd:95:dd:eb:44:45:28:8b:1f:
05:5a:e8:57:ce:88:05:c2:9e:f5:c0:a5:48:3a:80:
aa:5f:16:87:e7:0f:a9:19:75:a1:48:17:b8:80:14:
bb:0f:cb:93:43:0e:db:f7:b0:c1:28:fa:62:f9:68:
d3:d7:c3:ae:97:25:43:77:d9:b1:24:73:7b:03:19:
33:2a:4a:25:1a:be:a2:cb:da:14:b5:0c:8c:65:36:
37:6d:f7:e1:c5:d4:84:a3:70:ef:26:c2:35:4b:48:
a3:c3:02:2d:a7:b7:65:b3:2c:26:33:dd:54:49:98:
67:44:8c:e9:b0:8e:58:d1:15:99:f3:79:8a:84:6a:
77:6b:8f:f9:f2:47:59:eb:47:74:b9:c8:e3:d5:e6:
d1:8f:04:d7:cd:a2:07:5f:d2:78:87:ef:cb:2e:e9:
9a:71:60:b2:8c:d0:08:f4:f0:2f:0a:1b:d1:c8:6b:
04:69:9d:23:d3:b9:79:7f:3d:dc:a9:83:13:28:23:
52:5c:6c:ab:f0:da:5c:3d:9a:e9:b3:14:e4:d5:50:
8c:8c:e2:bf:76:1f:bc:96:29:66:23:5c:4f:cb:42:
bd:a8:54:11:22:d9:f5:1a:6c:1b:22:67:2c:0a:b3:
ff:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:53:29:DB:9E:2D:BD:F0:D7:AB:1A:5E:D1:25:EA:E8:B6:7F:39:3E
X509v3 Authority Key Identifier:
keyid:DC:73:81:04:3E:36:43:3D:BA:6C:82:95:32:10:77:A0:2E:8E:87:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919CAB7/64698BD47CD611EB9A2A606BC4F9AE02/3HOBBD42Qz26bIKVMhB3oC6Oh4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HOBBD42Qz26bIKVMhB3oC6Oh4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CAB7/64698BD47CD611EB9A2A606BC4F9AE02/EECD7500CF6E11ED915AD729C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.163.164.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:03:2c:56:25:aa:96:a4:d7:0c:51:c2:78:75:e7:ce:99:bf:
92:97:5b:24:ee:e4:3b:3c:9f:bd:4c:2d:9b:a2:d8:59:18:71:
ed:a5:ef:38:2a:a8:c0:f3:46:e8:59:d9:a3:15:43:5f:d0:91:
78:66:d4:f5:6a:65:6e:18:f7:64:42:38:03:4c:ef:be:f5:d6:
7e:de:a2:80:70:f4:88:da:96:41:c9:1a:23:dd:56:89:f0:f2:
40:27:d1:07:bc:5c:b6:eb:33:0d:5c:7f:7d:ed:73:d8:37:45:
f8:9b:5b:65:6a:f3:d2:ca:bc:9c:54:c8:f3:c3:83:4d:f6:1e:
31:db:e0:f2:3c:13:e0:76:c5:e8:c4:a8:1b:c3:de:e8:a5:fc:
46:5a:bb:7b:04:12:a5:8c:ff:0c:2c:15:4b:0c:e7:e4:24:95:
3d:20:b4:55:a7:3b:44:39:82:21:a0:b3:d8:fa:e6:39:e9:f6:
2f:f6:73:3c:34:21:3b:1a:a5:e7:21:72:48:74:a0:5a:0d:bd:
a0:5d:cb:96:b0:62:3b:ba:20:df:7a:fb:2b:9e:c5:62:b4:40:
8d:ac:32:8a:b7:5e:78:23:f4:bf:59:e8:47:d4:8a:ed:f2:15:
2f:de:0a:f8:bf:3e:f5:73:fa:67:b4:af:5b:3d:9c:42:42:c1:
ee:49:c4:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 10:27:44 2025 by rpki-client