Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/3AFA35E04B2E11EEA07FEE34C4F9AE02.roa
File: 3AFA35E04B2E11EEA07FEE34C4F9AE02.roa (raw, json)
Hash identifier: rhIhi3I6SpyrkjjQ3cL8Mw2vXOogWSjfaZP+3P/2bFk=
Subject key identifier: 78:5E:03:18:BC:42:26:60:C8:4A:05:D4:9B:9C:FC:08:06:08:C5:7A
Certificate issuer: /CN=A91B5D92/serialNumber=6111807E828AC4F9842693D38611952DF03D7247
Certificate serial: F1
Authority key identifier: 61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/3AFA35E04B2E11EEA07FEE34C4F9AE02.roa
Signing time: Fri 25 Oct 2024 04:18:41 +0000
ROA not before: Fri 25 Oct 2024 04:18:41 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 24424
IP address blocks: 113.197.104.0/22 maxlen: 22
113.197.104.0/23 maxlen: 23
113.197.104.0/24 maxlen: 24
113.197.105.0/24 maxlen: 24
113.197.106.0/23 maxlen: 23
113.197.106.0/24 maxlen: 24
113.197.107.0/24 maxlen: 24
2401:fa00:40::/43 maxlen: 43
2401:fa00:40::/44 maxlen: 44
2401:fa00:40::/45 maxlen: 45
2401:fa00:40::/46 maxlen: 46
2401:fa00:40::/47 maxlen: 47
2401:fa00:40::/48 maxlen: 48
2401:fa00:41::/48 maxlen: 48
2401:fa00:42::/47 maxlen: 47
2401:fa00:42::/48 maxlen: 48
2401:fa00:43::/48 maxlen: 48
2401:fa00:44::/46 maxlen: 46
2401:fa00:44::/47 maxlen: 47
2401:fa00:44::/48 maxlen: 48
2401:fa00:45::/48 maxlen: 48
2401:fa00:46::/47 maxlen: 47
2401:fa00:46::/48 maxlen: 48
2401:fa00:47::/48 maxlen: 48
2401:fa00:48::/45 maxlen: 45
2401:fa00:48::/46 maxlen: 46
2401:fa00:48::/47 maxlen: 47
2401:fa00:48::/48 maxlen: 48
2401:fa00:49::/48 maxlen: 48
2401:fa00:4a::/47 maxlen: 47
2401:fa00:4a::/48 maxlen: 48
2401:fa00:4b::/48 maxlen: 48
2401:fa00:4c::/46 maxlen: 46
2401:fa00:4c::/47 maxlen: 47
2401:fa00:4c::/48 maxlen: 48
2401:fa00:4d::/48 maxlen: 48
2401:fa00:4e::/47 maxlen: 47
2401:fa00:4e::/48 maxlen: 48
2401:fa00:4f::/48 maxlen: 48
2401:fa00:50::/44 maxlen: 44
2401:fa00:50::/45 maxlen: 45
2401:fa00:50::/46 maxlen: 46
2401:fa00:50::/47 maxlen: 47
2401:fa00:50::/48 maxlen: 48
2401:fa00:51::/48 maxlen: 48
2401:fa00:52::/47 maxlen: 47
2401:fa00:52::/48 maxlen: 48
2401:fa00:53::/48 maxlen: 48
2401:fa00:54::/46 maxlen: 46
2401:fa00:54::/47 maxlen: 47
2401:fa00:54::/48 maxlen: 48
2401:fa00:55::/48 maxlen: 48
2401:fa00:56::/47 maxlen: 47
2401:fa00:56::/48 maxlen: 48
2401:fa00:57::/48 maxlen: 48
2401:fa00:58::/45 maxlen: 45
2401:fa00:58::/46 maxlen: 46
2401:fa00:58::/47 maxlen: 47
2401:fa00:58::/48 maxlen: 48
2401:fa00:59::/48 maxlen: 48
2401:fa00:5a::/47 maxlen: 47
2401:fa00:5a::/48 maxlen: 48
2401:fa00:5b::/48 maxlen: 48
2401:fa00:5c::/46 maxlen: 46
2401:fa00:5c::/47 maxlen: 47
2401:fa00:5c::/48 maxlen: 48
2401:fa00:5d::/48 maxlen: 48
2401:fa00:5e::/47 maxlen: 47
2401:fa00:5e::/48 maxlen: 48
2401:fa00:5f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl
rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241 (0xf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5D92/serialNumber=6111807E828AC4F9842693D38611952DF03D7247
Validity
Not Before: Oct 25 04:18:41 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=671b1c21-4b3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ee:1c:63:33:97:be:20:3a:1e:ef:24:1b:b8:
f1:f7:31:97:3b:ca:9f:e8:34:93:45:52:67:6a:57:
5d:a2:8d:d1:cb:f7:a8:ac:a2:cd:46:7b:c0:28:51:
25:d9:5c:c5:b6:c9:8f:d2:e3:5b:a5:7e:ad:bf:45:
25:92:42:50:1e:24:67:9b:26:71:b0:fe:b4:84:a7:
4f:d8:47:c9:16:b4:e2:65:7d:96:c8:85:ee:4e:5b:
86:ec:8c:d3:b2:db:df:3a:6e:a1:1d:2f:fe:c2:32:
10:de:c0:e9:3a:1b:61:13:46:9f:60:2a:e2:f3:69:
08:cf:c8:8d:42:b5:f0:94:d8:f2:41:c4:95:97:bb:
36:03:a3:9f:3b:98:25:f6:c6:29:79:4e:24:e6:49:
5a:7b:a9:f7:11:be:60:3a:fa:ea:fd:3d:b5:35:2f:
e2:d4:85:bb:0f:84:54:ab:a0:b3:07:dc:f9:33:3c:
01:44:36:d2:d4:69:99:e9:f4:0f:25:06:7f:00:f7:
4f:8f:7c:e8:b0:f6:73:ef:62:73:6a:ef:0b:de:9c:
cd:62:eb:1f:53:d4:9e:c9:36:6b:a9:bf:87:96:e6:
0f:d1:bb:aa:65:ee:a6:25:8f:7c:74:96:98:c9:bb:
2e:4c:ac:3d:7b:6f:b7:19:89:7d:4c:be:2f:4c:ea:
71:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:5E:03:18:BC:42:26:60:C8:4A:05:D4:9B:9C:FC:08:06:08:C5:7A
X509v3 Authority Key Identifier:
keyid:61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/3AFA35E04B2E11EEA07FEE34C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.197.104.0/22
IPv6:
2401:fa00:40::/43
Signature Algorithm: sha256WithRSAEncryption
15:28:27:31:da:8d:cd:1c:5b:89:84:0e:06:ab:c1:d1:65:8d:
76:6e:ba:58:1f:5e:ab:0d:8f:a8:b4:f7:f6:87:e3:fc:7c:7f:
aa:fd:b1:09:72:d5:0b:e0:a6:73:8b:b4:c4:61:85:7c:42:d5:
9a:0e:16:63:09:1e:9e:be:d5:7e:37:0d:3a:69:9b:09:41:ab:
d4:44:28:41:88:4f:57:7a:6c:37:37:83:f9:95:05:d8:ac:3c:
f5:a6:84:e0:0e:3d:53:09:8c:7b:6a:63:b1:07:01:59:ea:02:
0b:e7:f2:74:1e:4a:27:0c:74:85:a7:ed:8c:78:89:8f:4b:b8:
5c:af:89:0f:05:76:08:d9:e3:c9:99:75:6f:dd:bf:31:13:c6:
8c:e9:8d:79:53:bb:e8:4f:07:d6:c8:88:2c:48:94:0a:22:81:
e7:0a:a4:e8:e6:42:98:79:32:ad:03:00:ab:fe:8f:5f:03:63:
5a:cc:d2:4a:e3:79:72:c4:e5:6d:4b:83:f7:b0:46:71:d8:31:
f0:49:1d:a4:91:d1:af:0d:b7:f6:a3:ae:15:e4:a0:59:f5:9b:
0d:17:91:c9:f4:e8:dc:d6:37:07:4b:fc:5e:8f:93:f7:0e:7c:
1d:3f:0d:fa:b1:15:f3:6a:01:05:f6:ae:f5:31:6b:02:ff:1c:
94:a0:41:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:02:55 2024 by rpki-client on console-fra.rpki-client.org