Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/75A75BEA797E11EEB4FD0975C4F9AE02.roa
File: 75A75BEA797E11EEB4FD0975C4F9AE02.roa (raw, json)
Hash identifier: HC3L7DwzvREUVNA/r5ctsM72LRWw4/Ml5kTbPPiUYrk=
Subject key identifier: 70:47:90:3F:07:6F:99:93:8C:01:33:B2:05:7E:AC:31:AC:E9:3F:27
Certificate issuer: /CN=A91E3731/serialNumber=BC3A8BB0CDD08B6E3721B2C1D21A81714C3B2142
Certificate serial: 02F4
Authority key identifier: BC:3A:8B:B0:CD:D0:8B:6E:37:21:B2:C1:D2:1A:81:71:4C:3B:21:42
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDqLsM3Qi243IbLB0hqBcUw7IUI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/75A75BEA797E11EEB4FD0975C4F9AE02.roa
Signing time: Tue 08 Oct 2024 14:55:49 +0000
ROA not before: Tue 08 Oct 2024 14:55:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 151636
IP address blocks: 103.184.92.0/24 maxlen: 24
103.184.93.0/24 maxlen: 24
2400:a560::/32 maxlen: 39
2400:a560:c000::/40 maxlen: 48
2400:a560:c100::/40 maxlen: 48
2400:a560:c200::/40 maxlen: 48
2400:a560:c300::/40 maxlen: 48
2400:a560:c400::/40 maxlen: 48
2400:a560:c500::/40 maxlen: 48
2400:a560:c600::/40 maxlen: 48
2400:a560:c700::/40 maxlen: 48
2400:a560:c800::/40 maxlen: 48
2400:a560:c900::/40 maxlen: 48
2400:a560:ca00::/40 maxlen: 48
2400:a560:cb00::/40 maxlen: 48
2400:a560:cc00::/40 maxlen: 48
2400:a560:cd00::/40 maxlen: 48
2400:a560:ce00::/40 maxlen: 48
2400:a560:cf00::/40 maxlen: 48
2400:a560:d000::/40 maxlen: 48
2400:a560:d100::/40 maxlen: 48
2400:a560:d200::/40 maxlen: 48
2400:a560:d300::/40 maxlen: 48
2400:a560:d400::/40 maxlen: 48
2400:a560:d500::/40 maxlen: 48
2400:a560:d600::/40 maxlen: 48
2400:a560:d700::/40 maxlen: 48
2400:a560:d800::/40 maxlen: 48
2400:a560:d900::/40 maxlen: 48
2400:a560:da00::/40 maxlen: 48
2400:a560:db00::/40 maxlen: 48
2400:a560:dc00::/40 maxlen: 48
2400:a560:dd00::/40 maxlen: 48
2400:a560:de00::/40 maxlen: 48
2400:a560:df00::/40 maxlen: 48
2400:a560:e000::/40 maxlen: 48
2400:a560:e100::/40 maxlen: 48
2400:a560:e200::/40 maxlen: 48
2400:a560:e300::/40 maxlen: 48
2400:a560:e400::/40 maxlen: 48
2400:a560:e500::/40 maxlen: 48
2400:a560:e600::/40 maxlen: 48
2400:a560:e700::/40 maxlen: 48
2400:a560:e800::/40 maxlen: 48
2400:a560:e900::/40 maxlen: 48
2400:a560:ea00::/40 maxlen: 48
2400:a560:eb00::/40 maxlen: 48
2400:a560:ec00::/40 maxlen: 48
2400:a560:ed00::/40 maxlen: 48
2400:a560:ee00::/40 maxlen: 48
2400:a560:ef00::/40 maxlen: 48
2400:a560:f000::/40 maxlen: 48
2400:a560:f100::/40 maxlen: 48
2400:a560:f200::/40 maxlen: 48
2400:a560:f300::/40 maxlen: 48
2400:a560:f400::/40 maxlen: 48
2400:a560:f500::/40 maxlen: 48
2400:a560:f600::/40 maxlen: 48
2400:a560:f700::/40 maxlen: 48
2400:a560:f800::/40 maxlen: 48
2400:a560:f900::/40 maxlen: 48
2400:a560:fa00::/40 maxlen: 48
2400:a560:fb00::/40 maxlen: 48
2400:a560:fc00::/40 maxlen: 48
2400:a560:fd00::/40 maxlen: 48
2400:a560:fe00::/40 maxlen: 48
2400:a560:ff00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/vDqLsM3Qi243IbLB0hqBcUw7IUI.crl
rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/vDqLsM3Qi243IbLB0hqBcUw7IUI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDqLsM3Qi243IbLB0hqBcUw7IUI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 00:53:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 756 (0x2f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E3731/serialNumber=BC3A8BB0CDD08B6E3721B2C1D21A81714C3B2142
Validity
Not Before: Oct 8 14:55:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=670547f5-8203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:35:9f:f7:12:43:84:c8:b2:f2:a3:45:81:c9:
68:37:48:ca:48:19:84:d6:5f:26:27:78:09:44:60:
b2:e3:a9:57:3d:93:40:12:82:8c:58:7e:03:72:f6:
0a:3a:c4:75:52:d8:53:76:78:69:cb:cd:aa:6a:46:
ef:dd:97:87:da:71:1b:64:7a:4d:94:1d:a2:8e:aa:
66:48:7c:fe:cd:fc:2f:5a:db:7c:6a:b7:a5:6c:3f:
2c:4b:44:81:d3:07:20:f8:bb:27:45:d9:01:68:99:
de:0a:0e:e1:54:3d:14:11:c0:bc:de:a2:21:dc:38:
ce:01:b9:5d:02:c1:6f:ed:dd:83:4e:a6:ca:44:6f:
46:57:25:3c:53:83:39:2a:b4:3a:b1:36:9b:2d:82:
fa:ae:2e:2a:b2:cc:12:9a:33:6d:15:a9:9c:af:2e:
49:33:ed:c4:dd:b2:87:e0:b0:69:70:53:9d:ed:e2:
66:0d:de:2b:80:64:2b:3a:fb:51:d1:06:3e:bd:ce:
9d:6a:ee:34:b3:a5:02:5e:9b:ca:25:f2:2e:13:24:
87:38:10:f8:ba:54:08:3f:d9:09:0a:57:60:a2:87:
ac:c7:22:07:51:92:dd:3d:f2:99:6e:f5:c3:14:46:
37:ed:5e:bc:79:3e:3c:af:d7:73:54:2e:89:1e:d9:
ff:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:47:90:3F:07:6F:99:93:8C:01:33:B2:05:7E:AC:31:AC:E9:3F:27
X509v3 Authority Key Identifier:
keyid:BC:3A:8B:B0:CD:D0:8B:6E:37:21:B2:C1:D2:1A:81:71:4C:3B:21:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/vDqLsM3Qi243IbLB0hqBcUw7IUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDqLsM3Qi243IbLB0hqBcUw7IUI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/75A75BEA797E11EEB4FD0975C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.184.92.0/23
IPv6:
2400:a560::/32
Signature Algorithm: sha256WithRSAEncryption
aa:d3:45:f4:10:59:bb:11:e9:c4:44:81:e1:d0:89:c2:70:b7:
4a:05:97:32:50:94:7c:a1:23:c0:1b:82:fa:6e:c2:b8:10:d9:
8e:91:1b:1d:db:a7:51:3c:81:d7:cf:71:6c:03:c2:d7:64:36:
1f:89:58:07:8b:dc:42:85:14:ef:dc:53:54:39:f5:aa:89:89:
eb:00:d5:f5:a7:10:8d:80:08:74:c2:88:31:1a:7f:33:2a:ef:
b7:f7:ba:30:59:21:33:30:9f:ec:d3:39:49:50:aa:a2:00:a4:
fd:8a:55:9d:16:f3:6a:19:09:7d:61:4a:a8:cb:51:b3:35:ab:
86:73:db:ec:18:40:89:9e:2d:78:88:54:fa:5f:43:e8:6b:4f:
c0:ac:4e:c8:52:ef:1f:9a:02:b6:d9:02:5d:47:c5:64:2c:2e:
de:19:43:0e:cc:e9:9e:ae:a9:32:39:25:ca:2a:bb:cf:5a:d8:
2d:82:32:33:78:ef:5d:33:8f:61:68:11:6a:b9:f4:dc:7f:01:
e1:ff:46:cb:4e:f1:77:9e:68:b1:c1:fb:b5:9a:56:93:e1:66:
c2:e7:a5:ad:40:f7:74:ec:7b:c5:cf:b0:d5:a6:b1:60:37:79:
f5:24:e5:eb:45:b5:21:9c:18:a1:e2:d6:19:77:8f:0a:56:08:
33:9b:31:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:58:54 2024 by rpki-client on console-ams.rpki-client.org