Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6D85ABAE02D311EF9BD03F1EC4F9AE02.roa
File: 6D85ABAE02D311EF9BD03F1EC4F9AE02.roa (raw, json)
Hash identifier: DrM9lnwEhg/xUBKiqLEGU5kdA+GA5S0rXTxWOlDzWZE=
Subject key identifier: 98:0C:1A:B3:2E:FC:2B:B0:13:51:E1:79:FD:B1:F7:60:F3:05:FD:95
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1129
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6D85ABAE02D311EF9BD03F1EC4F9AE02.roa
Signing time: Fri 26 Apr 2024 11:33:05 +0000
ROA not before: Fri 26 Apr 2024 11:33:05 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.249.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.179.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 08:56:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4393 (0x1129)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Apr 26 11:33:05 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=662b90f1-b30c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:69:e1:4f:a4:46:80:65:e6:5c:ae:8c:86:04:
b0:54:29:96:78:af:98:fa:97:43:d2:bc:1a:78:89:
95:16:23:81:46:b9:ac:bb:85:03:50:3d:2b:c1:49:
74:af:1c:e2:98:2b:fc:f4:31:65:5b:dc:ad:de:61:
f3:bc:a6:83:1f:f4:c4:07:83:96:cc:2e:fa:a8:9e:
99:90:69:1b:2d:59:59:54:e0:21:54:e8:bf:39:2d:
96:09:a8:dd:a1:5c:4c:97:c5:a7:66:b8:13:c8:d8:
4d:ba:c9:14:3b:61:10:68:75:bf:5f:09:9e:5d:7a:
5b:51:00:ad:08:83:ce:53:6a:74:b5:68:68:a7:f8:
a5:42:17:01:e3:15:3d:ec:a4:b1:3e:04:33:7a:1a:
36:23:c4:2c:9c:c4:2d:1d:d3:30:d4:00:9e:3d:6b:
0d:f2:7e:0d:e0:16:a5:6b:1d:59:a2:54:ec:bd:2c:
19:65:fb:26:6e:cd:2b:ee:1a:5c:6c:21:41:95:ac:
22:db:04:71:33:68:72:86:0a:ba:fd:54:84:a1:aa:
3c:f9:07:9d:ef:8c:b2:6b:94:90:fd:fb:3e:fc:fd:
a3:17:c8:c2:30:bc:a4:1c:8e:3d:26:6b:fa:01:52:
91:b4:4f:d9:c0:15:d4:6f:af:1f:b7:d2:6f:83:7f:
3f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:0C:1A:B3:2E:FC:2B:B0:13:51:E1:79:FD:B1:F7:60:F3:05:FD:95
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6D85ABAE02D311EF9BD03F1EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.218.0/24
113.203.220.0/24
113.203.224.0/24
113.203.230.0/24
113.203.234.0-113.203.240.255
113.203.245.0/24
113.203.249.0/24
113.203.253.0/24
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.147.0/24
180.178.149.0/24
180.178.160.0/24
180.178.166.0/24
180.178.170.0/24
180.178.172.0/24
180.178.174.0-180.178.176.255
180.178.179.0-180.178.184.255
180.178.191.0/24
223.29.226.0/24
223.29.228.0/24
223.29.231.0/24
223.29.237.0/24
Signature Algorithm: sha256WithRSAEncryption
44:05:20:67:10:4b:00:a3:eb:17:d1:1f:09:08:08:0f:a4:c5:
da:e2:0f:96:d9:3a:6b:89:65:7d:be:cf:39:16:ca:c6:cf:fb:
ee:93:64:9e:f6:92:5e:a9:a6:46:45:ff:6a:79:da:78:7e:db:
07:51:af:a1:1b:3f:9f:11:4d:ab:d2:01:d6:f0:8d:c9:c1:7d:
5f:01:8d:c2:c3:12:64:db:da:fe:6b:c6:f7:ac:bc:2d:9f:a3:
92:8b:80:f2:96:6e:fa:16:f4:9d:2d:9c:62:b5:99:5b:e7:47:
cf:2e:c0:51:b1:de:90:60:76:62:17:8c:ee:e3:fa:2f:46:b8:
b8:db:36:72:32:14:53:31:cb:28:2d:81:e3:cc:ae:e6:d2:0b:
c4:6d:c3:71:cd:ca:f2:05:b5:5d:50:ab:25:d9:1b:a8:72:3d:
28:dc:fa:5a:50:11:ea:2e:ed:fc:39:b9:13:d8:31:de:d5:1e:
a1:9f:05:ae:6f:72:cf:1c:0c:33:ff:2c:87:17:df:1e:ba:91:
aa:68:3e:36:97:06:cb:68:0f:42:0f:f6:c6:51:bb:f5:5c:35:
da:b2:7f:7d:7e:e3:ec:e4:6e:27:0b:68:c6:01:cb:e9:a7:ee:
b4:1c:e5:10:d0:8c:bd:b2:9d:f9:50:fd:f3:16:7d:1a:72:8f:
51:c8:79:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 12:59:52 2024 by rpki-client on console-ams.rpki-client.org