Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/5113BF7CFE6011EA9D63505CC4F9AE02.roa
File: 5113BF7CFE6011EA9D63505CC4F9AE02.roa (raw, json)
Hash identifier: JniQZfUYA1R0heYuAv/OBIAjLQkkLelRqYJ3s0r+AnI=
Subject key identifier: F7:F5:FC:D3:32:6B:65:C3:9D:75:E4:80:DD:A7:07:C0:D0:46:B5:35
Certificate issuer: /CN=A919EFDE/serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2
Certificate serial: 34A4
Authority key identifier: 96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/5113BF7CFE6011EA9D63505CC4F9AE02.roa
Signing time: Thu 24 Oct 2024 14:30:37 +0000
ROA not before: Thu 24 Oct 2024 14:30:37 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 23956
IP address blocks: 118.179.32.0/19 maxlen: 24
118.179.64.0/18 maxlen: 24
118.179.128.0/18 maxlen: 22
118.179.128.0/21 maxlen: 24
118.179.136.0/23 maxlen: 24
118.179.140.0/22 maxlen: 24
118.179.144.0/20 maxlen: 24
118.179.160.0/19 maxlen: 24
118.179.192.0/19 maxlen: 24
202.4.96.0/19 maxlen: 24
2405:7600::/32 maxlen: 36
2405:7600::/48 maxlen: 48
2405:7600:1::/48 maxlen: 48
2405:7600:2::/48 maxlen: 48
2405:7600:7::/48 maxlen: 48
2405:7600:9::/48 maxlen: 48
2405:7600:a::/48 maxlen: 48
2405:7600:b::/48 maxlen: 48
2405:7600:c::/48 maxlen: 48
2405:7600:d::/48 maxlen: 48
2405:7600:e::/48 maxlen: 48
2405:7600:f::/48 maxlen: 48
2405:7600:10::/48 maxlen: 48
2405:7600:11::/48 maxlen: 48
2405:7600:12::/48 maxlen: 48
2405:7600:13::/48 maxlen: 48
2405:7600:14::/48 maxlen: 48
2405:7600:15::/48 maxlen: 48
2405:7600:16::/48 maxlen: 48
2405:7600:17::/48 maxlen: 48
2405:7600:18::/48 maxlen: 48
2405:7600:19::/48 maxlen: 48
2405:7600:1a::/48 maxlen: 48
2405:7600:1b::/48 maxlen: 48
2405:7600:1c::/48 maxlen: 48
2405:7600:1d::/48 maxlen: 48
2405:7600:1e::/48 maxlen: 48
2405:7600:1f::/48 maxlen: 48
2405:7600:20::/48 maxlen: 48
2405:7600:21::/48 maxlen: 48
2405:7600:22::/48 maxlen: 48
2405:7600:23::/48 maxlen: 48
2405:7600:24::/48 maxlen: 48
2405:7600:25::/48 maxlen: 48
2405:7600:26::/48 maxlen: 48
2405:7600:27::/48 maxlen: 48
2405:7600:28::/48 maxlen: 48
2405:7600:29::/48 maxlen: 48
2405:7600:2a::/48 maxlen: 48
2405:7600:2b::/48 maxlen: 48
2405:7600:2c::/48 maxlen: 48
2405:7600:2d::/48 maxlen: 48
2405:7600:2e::/48 maxlen: 48
2405:7600:2f::/48 maxlen: 48
2405:7600:30::/48 maxlen: 48
2405:7600:31::/48 maxlen: 48
2405:7600:32::/48 maxlen: 48
2405:7600:33::/48 maxlen: 48
2405:7600:34::/48 maxlen: 48
2405:7600:35::/48 maxlen: 48
2405:7600:36::/48 maxlen: 48
2405:7600:37::/48 maxlen: 48
2405:7600:38::/48 maxlen: 48
2405:7600:39::/48 maxlen: 48
2405:7600:3a::/48 maxlen: 48
2405:7600:3b::/48 maxlen: 48
2405:7600:3c::/48 maxlen: 48
2405:7600:3d::/48 maxlen: 48
2405:7600:3e::/48 maxlen: 48
2405:7600:3f::/48 maxlen: 48
2405:7600:40::/48 maxlen: 48
2405:7600:41::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl
rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 14:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13476 (0x34a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919EFDE/serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2
Validity
Not Before: Oct 24 14:30:37 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=671a5a0d-314b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:39:d8:94:8e:20:7d:db:f0:e8:00:3c:1a:13:
19:55:20:c6:01:6e:00:87:5f:d7:de:aa:e9:f3:b7:
48:4a:69:76:b8:43:49:79:23:74:68:b8:01:cb:34:
4a:56:37:08:f9:a6:2c:1d:b9:1a:c5:4a:1b:73:88:
ab:e9:da:a6:7b:c6:44:5d:88:2c:41:b6:a6:c0:55:
69:00:f7:92:3e:db:1a:4d:4f:f4:83:51:9b:2b:fd:
a1:13:5e:ac:0c:04:92:05:41:0b:16:1b:fc:d5:0d:
ca:32:40:c5:32:84:d1:62:21:45:95:9c:17:55:02:
34:8c:08:f6:ea:bb:5a:98:55:05:b5:5e:be:cb:0e:
7d:f3:65:bf:e7:85:a6:81:bd:7c:af:78:1d:0a:8a:
de:ab:c7:74:6d:f3:dd:82:70:20:01:01:e8:b1:db:
85:39:a2:87:40:97:91:b6:6b:5d:30:30:b7:e1:81:
c1:bd:de:dc:9d:26:77:40:13:3f:f4:f6:e2:33:41:
db:66:da:31:32:f8:0d:cb:43:1a:bd:16:45:2a:00:
79:b3:ce:23:ff:b4:1c:22:83:6b:b0:19:1c:70:81:
19:e0:6d:f3:d8:4b:61:26:8d:60:a3:2d:ca:59:1b:
04:1e:22:53:1e:b7:6d:28:89:37:7b:93:26:94:bb:
10:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:F5:FC:D3:32:6B:65:C3:9D:75:E4:80:DD:A7:07:C0:D0:46:B5:35
X509v3 Authority Key Identifier:
keyid:96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/5113BF7CFE6011EA9D63505CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
118.179.32.0-118.179.223.255
202.4.96.0/19
IPv6:
2405:7600::/32
Signature Algorithm: sha256WithRSAEncryption
b1:d0:38:02:f1:52:85:3d:54:2e:ad:31:c8:2d:a2:55:1b:99:
22:69:86:f4:15:0c:9b:c3:c7:e3:d9:65:c3:df:e0:3c:40:18:
dc:65:08:0e:a1:0a:21:02:18:d1:0f:ec:56:5e:08:ba:a4:d6:
03:39:db:cd:dd:c5:a5:86:67:59:4b:a1:ed:cb:63:d6:55:43:
11:d9:b2:81:1f:8f:b9:1f:bb:6e:52:06:9f:d5:fb:56:06:b3:
7f:c6:a6:98:b4:a6:92:6f:ed:72:2c:48:8f:26:84:00:bd:22:
09:84:b8:f0:af:11:08:e1:37:b5:c9:e2:84:2a:17:42:d0:a4:
84:76:db:f3:76:93:d4:fd:c8:7c:6e:35:ef:7a:d2:e1:26:6a:
09:48:3d:2a:6a:9d:15:8f:7c:b8:25:90:93:af:27:d1:46:7f:
26:0a:7e:e0:03:85:20:bf:fa:24:3c:df:40:07:31:54:7a:57:
60:0b:b8:9c:52:dc:21:db:d2:db:7d:79:5f:99:91:82:21:08:
9d:50:15:db:d4:05:7c:6f:05:67:9d:5b:c8:f5:db:90:9c:42:
6f:ae:a8:99:d8:23:bf:bd:4a:f8:6a:6b:8d:14:6b:75:58:65:
54:aa:20:f3:44:64:ab:ff:a5:e0:6e:a0:12:78:c2:5b:e5:0a:
d4:c6:6c:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 15:25:39 2024 by rpki-client on console-fra.rpki-client.org