Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/75A75BEA797E11EEB4FD0975C4F9AE02.roa
File: 75A75BEA797E11EEB4FD0975C4F9AE02.roa (raw, json)
Hash identifier: 0LWBCxoiuB94t1vbHK3zRQ+LzT33LDWUh9YN4pOeNrA=
Subject key identifier: AC:64:80:02:7C:0C:52:45:FE:18:2C:B3:31:B8:65:09:AB:A1:0B:5D
Certificate issuer: /CN=A91E3731/serialNumber=BC3A8BB0CDD08B6E3721B2C1D21A81714C3B2142
Certificate serial: 02A2
Authority key identifier: BC:3A:8B:B0:CD:D0:8B:6E:37:21:B2:C1:D2:1A:81:71:4C:3B:21:42
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDqLsM3Qi243IbLB0hqBcUw7IUI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/75A75BEA797E11EEB4FD0975C4F9AE02.roa
Signing time: Fri 03 May 2024 04:16:59 +0000
ROA not before: Fri 03 May 2024 04:16:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 151636
IP address blocks: 103.184.92.0/24 maxlen: 24
2400:a560::/32 maxlen: 39
2400:a560:c000::/40 maxlen: 48
2400:a560:c100::/40 maxlen: 48
2400:a560:c200::/40 maxlen: 48
2400:a560:c300::/40 maxlen: 48
2400:a560:c400::/40 maxlen: 48
2400:a560:c500::/40 maxlen: 48
2400:a560:c600::/40 maxlen: 48
2400:a560:c700::/40 maxlen: 48
2400:a560:c800::/40 maxlen: 48
2400:a560:c900::/40 maxlen: 48
2400:a560:ca00::/40 maxlen: 48
2400:a560:cb00::/40 maxlen: 48
2400:a560:cc00::/40 maxlen: 48
2400:a560:cd00::/40 maxlen: 48
2400:a560:ce00::/40 maxlen: 48
2400:a560:cf00::/40 maxlen: 48
2400:a560:d000::/40 maxlen: 48
2400:a560:d100::/40 maxlen: 48
2400:a560:d200::/40 maxlen: 48
2400:a560:d300::/40 maxlen: 48
2400:a560:d400::/40 maxlen: 48
2400:a560:d500::/40 maxlen: 48
2400:a560:d600::/40 maxlen: 48
2400:a560:d700::/40 maxlen: 48
2400:a560:d800::/40 maxlen: 48
2400:a560:d900::/40 maxlen: 48
2400:a560:da00::/40 maxlen: 48
2400:a560:db00::/40 maxlen: 48
2400:a560:dc00::/40 maxlen: 48
2400:a560:dd00::/40 maxlen: 48
2400:a560:de00::/40 maxlen: 48
2400:a560:df00::/40 maxlen: 48
2400:a560:e000::/40 maxlen: 48
2400:a560:e100::/40 maxlen: 48
2400:a560:e200::/40 maxlen: 48
2400:a560:e300::/40 maxlen: 48
2400:a560:e400::/40 maxlen: 48
2400:a560:e500::/40 maxlen: 48
2400:a560:e600::/40 maxlen: 48
2400:a560:e700::/40 maxlen: 48
2400:a560:e800::/40 maxlen: 48
2400:a560:e900::/40 maxlen: 48
2400:a560:ea00::/40 maxlen: 48
2400:a560:eb00::/40 maxlen: 48
2400:a560:ec00::/40 maxlen: 48
2400:a560:ed00::/40 maxlen: 48
2400:a560:ee00::/40 maxlen: 48
2400:a560:ef00::/40 maxlen: 48
2400:a560:f000::/40 maxlen: 48
2400:a560:f100::/40 maxlen: 48
2400:a560:f200::/40 maxlen: 48
2400:a560:f300::/40 maxlen: 48
2400:a560:f400::/40 maxlen: 48
2400:a560:f500::/40 maxlen: 48
2400:a560:f600::/40 maxlen: 48
2400:a560:f700::/40 maxlen: 48
2400:a560:f800::/40 maxlen: 48
2400:a560:f900::/40 maxlen: 48
2400:a560:fa00::/40 maxlen: 48
2400:a560:fb00::/40 maxlen: 48
2400:a560:fc00::/40 maxlen: 48
2400:a560:fd00::/40 maxlen: 48
2400:a560:fe00::/40 maxlen: 48
2400:a560:ff00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/vDqLsM3Qi243IbLB0hqBcUw7IUI.crl
rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/vDqLsM3Qi243IbLB0hqBcUw7IUI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDqLsM3Qi243IbLB0hqBcUw7IUI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 22 May 2024 02:50:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 674 (0x2a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E3731/serialNumber=BC3A8BB0CDD08B6E3721B2C1D21A81714C3B2142
Validity
Not Before: May 3 04:16:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6634653a-4d38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:18:e8:30:7c:53:c4:d9:8f:af:48:c1:a6:97:
6f:5c:2b:89:16:0e:b2:8e:6d:a4:38:56:f8:ee:67:
86:fd:ff:33:22:a0:6b:1a:45:bd:66:ec:93:57:52:
ad:9c:a2:84:15:bb:dc:24:bf:8c:5f:22:1c:b4:02:
b5:c3:8f:cf:cb:55:ed:3f:f2:af:d7:ba:37:0c:e4:
9c:a9:30:4b:9e:d4:ed:d7:3d:f3:74:81:c8:e0:67:
6b:a5:26:0f:63:3c:d0:9d:ca:04:88:81:e3:ea:d4:
73:89:35:95:33:ce:82:2c:42:82:76:86:a4:93:13:
7a:34:88:95:8b:81:ed:42:0f:2e:b6:7f:29:f2:e4:
28:a0:4b:ca:95:5b:72:aa:83:cd:0e:f9:8b:a0:65:
69:66:31:ba:0b:ac:78:3e:dd:2c:4a:74:bc:15:99:
72:64:81:93:f9:a1:c6:fd:a6:22:c7:3d:29:80:dd:
be:66:cd:e8:7f:82:df:ab:ac:ef:c9:15:40:c0:ca:
03:af:99:a3:50:09:cb:06:52:f4:91:a9:b9:85:5a:
fe:72:9c:89:26:2f:86:bf:84:de:c4:0c:88:e8:ab:
6e:ec:d8:55:c2:10:60:df:2c:d0:56:56:66:d0:21:
e8:45:da:56:80:fa:46:e8:08:00:ad:62:b2:87:85:
24:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:64:80:02:7C:0C:52:45:FE:18:2C:B3:31:B8:65:09:AB:A1:0B:5D
X509v3 Authority Key Identifier:
keyid:BC:3A:8B:B0:CD:D0:8B:6E:37:21:B2:C1:D2:1A:81:71:4C:3B:21:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/vDqLsM3Qi243IbLB0hqBcUw7IUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDqLsM3Qi243IbLB0hqBcUw7IUI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/75A75BEA797E11EEB4FD0975C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.184.92.0/24
IPv6:
2400:a560::/32
Signature Algorithm: sha256WithRSAEncryption
62:3d:3b:aa:35:2c:a3:6e:b1:74:0d:dc:46:9d:27:d4:14:7a:
ee:c4:0b:f7:7a:42:85:07:06:e7:4a:1a:a2:7a:44:c5:d6:c0:
b1:96:a8:9c:90:98:af:a4:e6:a1:b3:d0:ae:ea:6f:ed:65:78:
21:4f:a9:47:ad:22:de:e4:2c:ce:44:11:e1:b6:e5:6c:60:60:
3d:11:c7:e8:d5:3e:16:c1:e2:b7:3f:29:5e:7a:c4:2e:23:e2:
5c:4b:ba:f5:15:65:a3:3e:7f:5e:a8:6b:38:48:c5:69:bd:93:
e3:7e:c8:e5:ab:99:70:19:04:b9:67:df:6b:fb:5d:75:e4:52:
3e:57:80:44:1b:69:4f:5d:02:5c:4b:f2:ed:0c:72:29:e1:f3:
43:c5:1b:04:19:3c:ec:e3:6c:07:2d:b3:e9:92:db:c5:37:fd:
86:2b:19:44:be:01:0c:b5:7f:15:ed:f7:89:f2:f7:3a:57:e5:
a9:bc:b4:a7:19:84:fe:83:ac:1c:a4:cf:69:e5:60:fd:94:ff:
b1:f6:8f:2c:9a:31:19:fe:99:5a:74:31:19:19:ce:23:0f:1a:
c9:fe:72:30:86:59:02:c6:8d:1c:ca:62:92:72:f5:31:22:87:
f7:ec:74:b7:5c:ba:1e:7d:ee:ae:11:b1:b5:cc:c8:0b:2c:80:
12:08:2f:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 04:38:28 2024 by rpki-client on console-ams.rpki-client.org