Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/EC5F4898014A11EF98FBF05BC4F9AE02.roa
File: EC5F4898014A11EF98FBF05BC4F9AE02.roa (raw, json)
Hash identifier: UqUdl5Fx4cnRxAQY3AuLLKCpiM4H34nkzfMVmdKS8MY=
Subject key identifier: 51:1F:80:AC:CE:CA:18:3B:20:DD:64:64:22:5A:73:D4:DD:2E:D4:50
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1101
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/EC5F4898014A11EF98FBF05BC4F9AE02.roa
Signing time: Fri 26 Apr 2024 07:26:30 +0000
ROA not before: Fri 26 Apr 2024 07:26:30 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 138241
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.67.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.68.0/22 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.110.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.152.0/21 maxlen: 21
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.224.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4353 (0x1101)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Apr 26 07:26:30 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=662b5726-151b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8a:b5:71:ae:c0:32:2f:3f:2e:55:83:9a:36:
ea:92:9c:ae:f1:d4:0c:53:68:fe:bc:1f:bd:d6:6a:
80:9c:8f:65:76:08:a1:02:7a:ca:ca:c8:3f:ec:f4:
15:48:05:c7:a6:5c:9d:10:18:fb:ec:7c:a5:6f:6a:
0a:50:d0:43:07:6f:64:76:a3:b8:39:55:54:0e:68:
91:ce:a1:cd:82:40:4f:67:5e:ed:2c:1c:f7:ef:93:
e3:bc:83:e4:e3:41:44:17:48:80:85:c6:6e:23:6e:
79:ab:a8:b4:e0:8a:e1:54:06:86:67:68:c2:a6:2c:
66:de:17:35:ac:1a:77:5d:58:82:99:78:52:46:9c:
0b:9c:a5:16:70:4a:fc:bc:a9:0c:ad:c1:1d:f9:ad:
f0:86:8e:70:d3:64:36:f4:cf:5f:19:5c:68:6c:05:
64:69:25:a9:4c:d2:30:ce:ce:1d:b5:f8:a7:73:36:
6f:d0:e1:3c:48:04:27:9d:d6:db:86:31:8a:ec:63:
0a:1a:d0:57:ba:36:c6:a3:19:db:fd:27:80:a4:ef:
87:ba:f0:d5:4b:33:4c:47:b3:79:4c:ed:22:7c:20:
e8:06:4b:00:00:81:69:81:81:c2:ea:ec:d6:75:b4:
95:46:44:4f:db:f0:38:56:70:05:75:8a:ef:bb:27:
a9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:1F:80:AC:CE:CA:18:3B:20:DD:64:64:22:5A:73:D4:DD:2E:D4:50
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/EC5F4898014A11EF98FBF05BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.208.0/24
113.203.216.0/23
113.203.231.0/24
113.203.250.0/24
115.167.49.0/24
115.167.67.0/24
115.167.78.0/24
115.167.125.0/24
175.110.68.0/22
175.110.80.0/22
175.110.88.0/22
175.110.97.0/24
175.110.104.0/22
175.110.109.0-175.110.111.255
180.178.142.0/24
180.178.152.0/21
202.92.18.0/24
202.92.20.0/24
223.29.224.0/24
223.29.227.0/24
223.29.235.0-223.29.236.255
223.29.238.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:18:57:59:14:a2:de:d7:f4:c8:a3:c7:05:f1:4c:bf:0a:5a:
79:f4:e2:e2:cb:ca:db:ec:a2:5a:fa:f7:7e:65:d0:b3:c8:37:
1d:7c:a2:8f:c9:4e:63:c1:2f:a8:d1:95:6a:53:a5:f5:09:48:
2b:67:2f:0d:b6:4d:7a:24:1b:71:3b:67:e0:ea:31:9c:21:0b:
3b:75:99:27:31:3d:1c:95:33:fb:78:f1:20:c0:a9:ca:c2:86:
3f:69:6b:69:cc:aa:0d:21:df:bb:f3:a9:b4:3a:0d:41:f2:11:
df:ee:f6:cc:dd:43:a9:5b:0f:51:36:8e:91:64:6f:8c:ca:88:
56:e9:a3:78:df:36:cf:31:df:ec:c1:d4:0d:fb:f8:40:6e:8c:
5c:de:a2:51:b8:96:4a:e1:ab:19:7a:64:51:33:9d:f5:d6:bb:
99:24:17:af:a7:b0:ab:9f:a4:b0:bf:b7:4e:bf:d5:89:50:42:
f7:a8:e2:bb:b3:26:03:d7:d8:6a:24:d3:08:81:75:47:a0:4c:
6a:ea:77:80:d7:d5:3a:55:f0:77:43:58:1e:8f:04:34:a5:95:
3d:5f:9d:5d:09:f6:d5:cc:42:65:c0:3c:18:9a:da:1d:9c:7f:
b4:8b:db:5e:c8:55:66:54:2a:8f:cd:72:c0:17:49:a9:0c:6e:
e7:3c:be:0c
-----BEGIN CERTIFICATE-----
MIIGCjCCBPKgAwIBAgICEQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQwNDI2MDcyNjMwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjJiNTcyNi0xNTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1Iq1ca7AMi8/LlWDmjbqkpyu8dQMU2j+vB+91mqAnI9ldgihAnrKysg/7PQV
SAXHplydEBj77Hylb2oKUNBDB29kdqO4OVVUDmiRzqHNgkBPZ17tLBz375PjvIPk
40FEF0iAhcZuI255q6i04IrhVAaGZ2jCpixm3hc1rBp3XViCmXhSRpwLnKUWcEr8
vKkMrcEd+a3who5w02Q29M9fGVxobAVkaSWpTNIwzs4dtfinczZv0OE8SAQnndbb
hjGK7GMKGtBXujbGoxnb/SeApO+HuvDVSzNMR7N5TO0ifCDoBksAAIFpgYHC6uzW
dbSVRkRP2/A4VnAFdYrvuyep4wIDAQABo4IDLjCCAyowHQYDVR0OBBYEFFEfgKzO
yhg7IN1kZCJac9TdLtRQMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvRUM1RjQ4OTgw
MTRBMTFFRjk4RkJGMDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgbcGCCsGAQUFBwEHAQH/
BIGnMIGkMIGhBAIAATCBmgMEAGeXGwMEAHHL0AMEAXHL2AMEAHHL5wMEAHHL+gME
AHOnMQMEAHOnQwMEAHOnTgMEAHOnfQMEAq9uRAMEAq9uUAMEAq9uWAMEAK9uYQME
Aq9uaDAMAwQAr25tAwQEr25gAwQAtLKOAwQDtLKYAwQAylwSAwQAylwUAwQA3x3g
AwQA3x3jMAwDBADfHesDBADfHewDBAHfHe4wDQYJKoZIhvcNAQELBQADggEBAGwY
V1kUot7X9MijxwXxTL8KWnn04uLLytvsolr6935l0LPINx18oo/JTmPBL6jRlWpT
pfUJSCtnLw22TXokG3E7Z+DqMZwhCzt1mScxPRyVM/t48SDAqcrChj9pa2nMqg0h
37vzqbQ6DUHyEd/u9szdQ6lbD1E2jpFkb4zKiFbpo3jfNs8x3+zB1A37+EBujFze
olG4lkrhqxl6ZFEznfXWu5kkF6+nsKufpLC/t06/1YlQQveo4ruzJgPX2Gok0wiB
dUegTGrqd4DX1TpV8HdDWB6PBDSllT1fnV0J9tXMQmXAPBia2h2cf7SL217IVWZU
Ko/NcsAXSakMbuc8vgw=
-----END CERTIFICATE-----
Generated at Fri Apr 26 08:28:09 2024 by rpki-client on console-ams.rpki-client.org