Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/1E4EDD1A038411EF9EA1DE1DC4F9AE02.roa
File: 1E4EDD1A038411EF9EA1DE1DC4F9AE02.roa (raw, json)
Hash identifier: lirypQTU7kDVVj58KnxBcBQ+OawccN91dSGhn8RZ/7w=
Subject key identifier: B2:59:59:03:0E:1A:97:45:5F:98:B3:91:72:56:2C:EE:0E:5B:B7:96
Certificate issuer: /CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3
Certificate serial: 04F0
Authority key identifier: 56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/1E4EDD1A038411EF9EA1DE1DC4F9AE02.roa
Signing time: Sun 27 Oct 2024 00:36:20 +0000
ROA not before: Sun 27 Oct 2024 00:36:20 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 55410
IP address blocks: 42.104.64.0/21 maxlen: 24
42.104.72.0/21 maxlen: 24
42.104.80.0/21 maxlen: 24
42.104.88.0/21 maxlen: 24
42.104.96.0/21 maxlen: 24
42.104.104.0/21 maxlen: 24
42.104.112.0/21 maxlen: 24
42.104.120.0/21 maxlen: 24
42.105.253.0/24 maxlen: 24
43.245.88.0/22 maxlen: 24
103.29.44.0/22 maxlen: 24
118.185.0.0/16 maxlen: 16
118.185.0.0/21 maxlen: 24
118.185.8.0/21 maxlen: 24
118.185.16.0/21 maxlen: 24
118.185.24.0/21 maxlen: 21
118.185.24.0/24 maxlen: 24
118.185.25.0/24 maxlen: 24
118.185.26.0/24 maxlen: 24
118.185.27.0/24 maxlen: 24
118.185.28.0/24 maxlen: 24
118.185.29.0/24 maxlen: 24
118.185.30.0/24 maxlen: 24
118.185.31.0/24 maxlen: 24
118.185.32.0/21 maxlen: 24
118.185.40.0/21 maxlen: 24
118.185.48.0/21 maxlen: 24
118.185.56.0/21 maxlen: 24
118.185.64.0/21 maxlen: 24
118.185.72.0/21 maxlen: 24
118.185.80.0/21 maxlen: 24
118.185.88.0/21 maxlen: 24
118.185.96.0/21 maxlen: 21
118.185.97.0/24 maxlen: 24
118.185.98.0/24 maxlen: 24
118.185.99.0/24 maxlen: 24
118.185.100.0/24 maxlen: 24
118.185.101.0/24 maxlen: 24
118.185.102.0/24 maxlen: 24
118.185.103.0/24 maxlen: 24
118.185.104.0/21 maxlen: 24
118.185.112.0/21 maxlen: 24
118.185.120.0/21 maxlen: 24
118.185.128.0/20 maxlen: 21
118.185.128.0/24 maxlen: 24
118.185.129.0/24 maxlen: 24
118.185.130.0/24 maxlen: 24
118.185.131.0/24 maxlen: 24
118.185.132.0/24 maxlen: 24
118.185.133.0/24 maxlen: 24
118.185.134.0/24 maxlen: 24
118.185.135.0/24 maxlen: 24
118.185.136.0/24 maxlen: 24
118.185.137.0/24 maxlen: 24
118.185.138.0/24 maxlen: 24
118.185.139.0/24 maxlen: 24
118.185.140.0/24 maxlen: 24
118.185.141.0/24 maxlen: 24
118.185.142.0/24 maxlen: 24
118.185.143.0/24 maxlen: 24
118.185.144.0/21 maxlen: 24
118.185.152.0/21 maxlen: 24
118.185.160.0/21 maxlen: 24
118.185.168.0/21 maxlen: 24
118.185.176.0/21 maxlen: 24
118.185.184.0/21 maxlen: 24
118.185.192.0/21 maxlen: 24
118.185.200.0/21 maxlen: 24
118.185.208.0/21 maxlen: 24
118.185.216.0/21 maxlen: 24
118.185.224.0/21 maxlen: 24
118.185.232.0/21 maxlen: 24
118.185.240.0/21 maxlen: 24
118.185.248.0/21 maxlen: 24
122.15.0.0/16 maxlen: 16
122.15.0.0/21 maxlen: 24
122.15.8.0/21 maxlen: 24
122.15.16.0/21 maxlen: 24
122.15.24.0/21 maxlen: 24
122.15.32.0/21 maxlen: 24
122.15.40.0/21 maxlen: 24
122.15.48.0/21 maxlen: 24
122.15.56.0/21 maxlen: 24
122.15.64.0/21 maxlen: 24
122.15.72.0/21 maxlen: 24
122.15.80.0/21 maxlen: 24
122.15.88.0/21 maxlen: 24
122.15.96.0/21 maxlen: 24
122.15.104.0/21 maxlen: 24
122.15.112.0/21 maxlen: 24
122.15.120.0/21 maxlen: 24
122.15.128.0/21 maxlen: 24
122.15.136.0/21 maxlen: 24
122.15.144.0/21 maxlen: 24
122.15.152.0/21 maxlen: 24
122.15.160.0/21 maxlen: 24
122.15.168.0/21 maxlen: 24
122.15.176.0/21 maxlen: 24
122.15.184.0/21 maxlen: 24
122.15.192.0/21 maxlen: 24
122.15.200.0/21 maxlen: 24
122.15.208.0/21 maxlen: 24
122.15.216.0/21 maxlen: 24
122.15.224.0/21 maxlen: 24
122.15.232.0/21 maxlen: 24
122.15.240.0/21 maxlen: 24
122.15.248.0/21 maxlen: 24
123.63.0.0/16 maxlen: 16
123.63.0.0/21 maxlen: 24
123.63.8.0/21 maxlen: 24
123.63.16.0/21 maxlen: 24
123.63.24.0/21 maxlen: 24
123.63.32.0/21 maxlen: 24
123.63.40.0/21 maxlen: 24
123.63.48.0/21 maxlen: 24
123.63.56.0/21 maxlen: 24
123.63.64.0/21 maxlen: 24
123.63.72.0/21 maxlen: 24
123.63.80.0/21 maxlen: 24
123.63.88.0/21 maxlen: 24
123.63.96.0/21 maxlen: 24
123.63.104.0/21 maxlen: 24
123.63.112.0/21 maxlen: 24
123.63.120.0/21 maxlen: 24
123.63.128.0/18 maxlen: 18
123.63.128.0/20 maxlen: 24
123.63.144.0/21 maxlen: 24
123.63.152.0/21 maxlen: 24
123.63.160.0/19 maxlen: 19
123.63.160.0/21 maxlen: 24
123.63.168.0/21 maxlen: 24
123.63.176.0/21 maxlen: 24
123.63.184.0/21 maxlen: 24
123.63.192.0/18 maxlen: 18
123.63.192.0/21 maxlen: 24
123.63.200.0/21 maxlen: 24
123.63.208.0/21 maxlen: 24
123.63.216.0/21 maxlen: 24
123.63.224.0/19 maxlen: 19
123.63.224.0/21 maxlen: 24
123.63.232.0/21 maxlen: 24
123.63.240.0/21 maxlen: 24
123.63.248.0/21 maxlen: 24
124.247.192.0/24 maxlen: 24
124.247.193.0/24 maxlen: 24
124.247.194.0/24 maxlen: 24
124.247.198.0/24 maxlen: 24
124.247.199.0/24 maxlen: 24
124.247.201.0/24 maxlen: 24
124.247.203.0/24 maxlen: 24
124.247.204.0/24 maxlen: 24
124.247.205.0/24 maxlen: 24
124.247.224.0/24 maxlen: 24
124.247.228.0/24 maxlen: 24
124.247.229.0/24 maxlen: 24
124.247.230.0/24 maxlen: 24
124.247.231.0/24 maxlen: 24
124.247.232.0/24 maxlen: 24
124.247.233.0/24 maxlen: 24
124.247.234.0/24 maxlen: 24
124.247.235.0/24 maxlen: 24
124.247.236.0/24 maxlen: 24
182.19.0.0/19 maxlen: 19
182.19.0.0/20 maxlen: 24
182.19.16.0/20 maxlen: 24
182.19.32.0/19 maxlen: 19
182.19.32.0/20 maxlen: 24
182.19.48.0/20 maxlen: 24
182.19.64.0/20 maxlen: 24
182.19.80.0/21 maxlen: 24
182.19.88.0/21 maxlen: 24
182.19.96.0/19 maxlen: 24
2400:5200:401::/48 maxlen: 48
2400:5200:402::/48 maxlen: 48
2400:5200:403::/48 maxlen: 48
2400:5200:404::/48 maxlen: 48
2400:5200:c00::/40 maxlen: 48
2400:5200:1000::/40 maxlen: 48
2400:5200:1400::/40 maxlen: 48
2400:5200:1800::/40 maxlen: 48
2400:5200:1c00::/40 maxlen: 48
2400:5200:2000::/36 maxlen: 48
2400:5200:3000::/36 maxlen: 48
2400:5200:4000::/36 maxlen: 48
2400:5200:5000::/36 maxlen: 48
2400:5200:6000::/36 maxlen: 48
2400:5200:7000::/36 maxlen: 48
2400:5200:8000::/36 maxlen: 48
2400:5200:9000::/36 maxlen: 48
2400:5200:a000::/36 maxlen: 48
2400:5200:b000::/36 maxlen: 48
2400:5200:c000::/36 maxlen: 48
2400:5200:d000::/36 maxlen: 48
2400:5200:e000::/36 maxlen: 48
2400:5200:f000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl
rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 27 Nov 2024 20:33:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1264 (0x4f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3
Validity
Not Before: Oct 27 00:36:20 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=671d8b04-0164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:17:99:29:8d:f9:3a:d6:3f:73:eb:63:bf:54:
d8:0d:b9:c5:18:3a:83:e4:74:10:a0:ad:58:71:df:
fc:45:56:48:47:af:7b:de:83:46:a5:0e:24:79:c7:
17:40:bd:50:40:f2:40:e0:59:0b:ca:e0:f8:b8:ab:
86:02:b2:6a:94:1a:4f:21:4c:57:53:ac:50:9c:92:
e3:ee:00:f7:f4:12:2a:b1:72:d1:fa:9d:be:d7:67:
a2:84:75:e5:da:da:c7:96:fc:36:1a:92:6a:0d:f3:
98:b7:f9:d2:64:0f:9c:ef:5f:da:c1:79:4d:7e:e2:
12:0d:c2:89:de:d3:28:31:49:cc:b4:ce:f8:f4:33:
6d:cb:19:0a:2b:c4:96:92:c9:9e:58:b6:31:17:04:
01:a5:dd:c0:eb:52:3f:55:2f:3f:0c:42:89:d0:0f:
fb:a7:60:9b:53:18:95:96:4e:74:10:54:33:32:59:
41:31:e6:39:e5:67:dd:a6:df:84:2d:f6:88:ee:da:
82:6f:5e:8c:79:c7:0e:52:7f:5f:cb:92:a5:f0:7a:
55:9f:36:c4:dd:22:c5:5e:06:a7:b5:12:69:0e:26:
aa:b8:49:4a:b1:6a:db:68:e9:13:b3:b5:e6:0b:3d:
f4:c8:6e:6e:93:b4:95:31:f2:ed:e5:aa:17:3e:1f:
4c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:59:59:03:0E:1A:97:45:5F:98:B3:91:72:56:2C:EE:0E:5B:B7:96
X509v3 Authority Key Identifier:
keyid:56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/1E4EDD1A038411EF9EA1DE1DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
42.104.64.0/18
42.105.253.0/24
43.245.88.0/22
103.29.44.0/22
118.185.0.0/16
122.15.0.0/16
123.63.0.0/16
124.247.192.0-124.247.194.255
124.247.198.0/23
124.247.201.0/24
124.247.203.0-124.247.205.255
124.247.224.0/24
124.247.228.0-124.247.236.255
182.19.0.0/17
IPv6:
2400:5200:401::-2400:5200:404:ffff:ffff:ffff:ffff:ffff
2400:5200:c00::/40
2400:5200:1000::/40
2400:5200:1400::/40
2400:5200:1800::/40
2400:5200:1c00::/40
2400:5200:2000::-2400:5200:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
9b:da:d3:8c:cb:70:43:06:c0:25:5e:73:2f:fd:cd:ca:5a:82:
f1:2d:6b:a3:26:a6:d7:bf:4b:4d:55:56:35:51:ef:af:06:80:
e5:fd:8e:c5:ef:6a:d4:a3:af:e2:97:4d:27:9e:39:ea:52:da:
02:ea:70:e3:e2:42:2b:27:39:30:75:ec:5a:f3:d0:cf:58:a0:
54:10:e5:66:20:2e:1d:e9:6e:16:df:84:bf:9b:1a:8b:9d:3e:
dc:ec:3a:9b:08:1d:a9:59:8a:a6:dd:68:71:53:73:2a:3a:2c:
3a:36:e1:3a:59:e6:f3:36:88:66:a2:20:83:f9:cc:52:f3:7d:
ff:d8:7d:09:6a:0c:3f:7e:e9:a8:bd:58:2c:fa:fe:c5:53:83:
82:cf:b3:63:c7:4a:b0:ca:e6:22:4f:ae:14:ba:fd:41:d3:91:
d3:9b:01:11:36:12:46:9c:fc:29:43:27:1f:ef:d3:df:a0:44:
f3:aa:f7:7b:4e:71:eb:15:43:22:78:56:a0:ee:06:2b:78:58:
24:b8:df:64:35:40:08:f2:37:d4:ff:87:dd:d8:b0:af:1e:16:
4a:ac:7d:05:91:c2:dc:cb:d0:4d:e1:82:c4:e8:23:e0:28:3e:
53:e2:4f:53:ef:3a:91:7c:d2:7f:f9:23:0a:05:9c:b4:75:7b:
4c:08:25:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 01:26:05 2024 by rpki-client on console-ams.rpki-client.org