Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/98B7195CADF611EEB609DC1FC4F9AE02.roa
File: 98B7195CADF611EEB609DC1FC4F9AE02.roa (raw, json)
Hash identifier: 5V2/20I7uAofI89JkoVB6qPd/XDFEboYpR2Y2DzUFz0=
Subject key identifier: D0:1E:05:EE:C1:35:CD:9F:76:9F:44:A0:28:4E:08:1B:D9:A3:C0:7E
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0F23
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/98B7195CADF611EEB609DC1FC4F9AE02.roa
Signing time: Mon 08 Jan 2024 07:21:53 +0000
ROA not before: Mon 08 Jan 2024 07:21:53 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.249.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.179.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 22:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3875 (0xf23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jan 8 07:21:53 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=659ba291-5fab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c4:fa:83:78:fc:aa:94:09:57:6f:01:9b:79:
f6:ee:4b:98:9f:d3:7c:76:03:a9:6f:02:56:40:97:
c7:93:b4:ec:eb:f6:86:54:c1:20:c5:35:9d:ba:ca:
e2:e7:e0:2a:bf:0e:a8:d9:97:0d:3d:f9:1d:0e:9a:
fb:1e:cf:c0:4d:e1:49:ba:dc:ef:75:53:2d:c5:da:
c4:7b:c2:90:d7:b3:c2:5d:fc:60:1a:93:3d:68:67:
56:a2:64:25:f5:59:8a:e9:00:d3:09:13:bd:82:2f:
c9:38:87:1b:03:69:22:0c:2e:41:fc:17:85:ec:3d:
6c:89:b7:85:84:54:9b:e0:c5:a6:d6:c4:25:4b:19:
78:4f:92:14:f5:1c:a7:01:c5:f8:12:7c:a9:b1:dc:
a5:db:85:70:6d:2b:91:d9:01:98:38:e0:44:87:49:
75:d2:66:47:06:5b:dc:d5:0c:26:8c:48:35:c2:71:
f6:73:ce:f7:3a:f5:ac:73:8b:9b:cd:51:b2:14:11:
62:4c:ee:fc:10:07:1f:24:fc:5d:00:f0:a1:8c:e1:
87:d2:e8:6d:2d:00:a1:99:fe:ea:24:ce:ff:e3:cc:
29:05:c0:6a:8d:17:ef:91:d2:92:5f:03:4d:67:0b:
e3:c8:62:e9:82:3f:02:fb:ba:44:f7:79:5f:5f:95:
fa:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:1E:05:EE:C1:35:CD:9F:76:9F:44:A0:28:4E:08:1B:D9:A3:C0:7E
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/98B7195CADF611EEB609DC1FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.218.0/24
113.203.220.0/24
113.203.224.0/24
113.203.230.0/24
113.203.234.0-113.203.240.255
113.203.245.0/24
113.203.249.0/24
113.203.253.0/24
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.147.0/24
180.178.149.0/24
180.178.160.0/24
180.178.166.0/24
180.178.170.0/24
180.178.172.0/24
180.178.174.0-180.178.176.255
180.178.179.0-180.178.184.255
180.178.191.0/24
223.29.226.0/24
223.29.228.0/24
223.29.231.0/24
223.29.237.0/24
Signature Algorithm: sha256WithRSAEncryption
99:dc:d7:57:18:7d:bc:01:ff:95:d8:07:6d:46:12:37:e3:9c:
d6:a0:91:0d:cc:00:c6:af:13:ef:2d:fc:d3:12:7c:77:0e:3e:
c6:71:9e:6a:29:e5:f8:56:1c:a5:a2:33:17:6c:ac:b0:e5:e6:
72:ea:7d:1d:16:01:95:60:ae:1e:f0:d3:17:8f:f4:22:e4:b4:
80:9e:0d:37:35:7a:d7:f0:51:fa:14:af:d8:12:a5:84:c9:59:
a0:ec:86:6e:1a:85:f8:87:97:77:09:65:4e:15:68:08:fa:73:
58:d9:04:8f:84:ae:72:83:fd:53:5a:7e:2a:6d:63:01:20:17:
97:ad:01:51:5a:c0:19:e0:dd:d9:f5:5d:af:e1:87:ca:12:9b:
7b:fa:7f:b4:56:0f:9b:16:07:17:96:6a:b5:3b:0c:21:fa:2c:
25:26:38:da:87:d3:f5:a0:6f:73:b3:98:63:36:60:ed:87:06:
2a:3d:fc:ff:23:41:49:a8:6c:7c:8f:03:4f:04:e1:ca:6a:97:
4c:db:5f:52:e2:24:59:11:14:49:6f:ee:92:4d:5f:01:e2:8a:
f4:92:46:29:92:cc:27:bd:05:fc:4b:0e:0b:ac:72:1f:63:9d:
b2:ef:05:2b:57:be:38:2c:23:29:53:0d:1b:16:f9:63:d1:a2:
d8:de:fa:39
-----BEGIN CERTIFICATE-----
MIIGIDCCBQigAwIBAgICDyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQwMTA4MDcyMTUzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTliYTI5MS01ZmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA08T6g3j8qpQJV28Bm3n27kuYn9N8dgOpbwJWQJfHk7Ts6/aGVMEgxTWdusri
5+Aqvw6o2ZcNPfkdDpr7Hs/ATeFJutzvdVMtxdrEe8KQ17PCXfxgGpM9aGdWomQl
9VmK6QDTCRO9gi/JOIcbA2kiDC5B/BeF7D1sibeFhFSb4MWm1sQlSxl4T5IU9Ryn
AcX4Enypsdyl24VwbSuR2QGYOOBEh0l10mZHBlvc1QwmjEg1wnH2c873OvWsc4ub
zVGyFBFiTO78EAcfJPxdAPChjOGH0uhtLQChmf7qJM7/48wpBcBqjRfvkdKSXwNN
ZwvjyGLpgj8C+7pE93lfX5X6qwIDAQABo4IDRDCCA0AwHQYDVR0OBBYEFNAeBe7B
Nc2fdp9EoChOCBvZo8B+MB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvOThCNzE5NUNB
REY2MTFFRUI2MDlEQzFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgc0GCCsGAQUFBwEHAQH/
BIG9MIG6MIG3BAIAATCBsAMEAGcLPAMEAHHL2gMEAHHL3AMEAHHL4AMEAHHL5jAM
AwQBccvqAwQAccvwAwQAccv1AwQAccv5AwQAccv9AwQBtLKAMAwDBAK0soQDBAK0
sogDBAC0spMDBAC0spUDBAC0sqADBAC0sqYDBAC0sqoDBAC0sqwwDAMEAbSyrgME
ALSysDAMAwQAtLKzAwQAtLK4AwQAtLK/AwQA3x3iAwQA3x3kAwQA3x3nAwQA3x3t
MA0GCSqGSIb3DQEBCwUAA4IBAQCZ3NdXGH28Af+V2AdtRhI345zWoJENzADGrxPv
LfzTEnx3Dj7GcZ5qKeX4VhylojMXbKyw5eZy6n0dFgGVYK4e8NMXj/Qi5LSAng03
NXrX8FH6FK/YEqWEyVmg7IZuGoX4h5d3CWVOFWgI+nNY2QSPhK5yg/1TWn4qbWMB
IBeXrQFRWsAZ4N3Z9V2v4YfKEpt7+n+0Vg+bFgcXlmq1Owwh+iwlJjjah9P1oG9z
s5hjNmDthwYqPfz/I0FJqGx8jwNPBOHKapdM219S4iRZERRJb+6STV8B4or0kkYp
kswnvQX8Sw4LrHIfY52y7wUrV744LCMpUw0bFvlj0aLY3vo5
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:31:04 2024 by rpki-client on console-fra.rpki-client.org