Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/5725C1363AB711EDBB6FC759C4F9AE02.roa
File: 5725C1363AB711EDBB6FC759C4F9AE02.roa (raw, json)
Hash identifier: L1bCR75Hue0TXTuaR9phNFwMeS+w2BZBYMYdoH99/Js=
Subject key identifier: EF:91:C2:15:94:89:A6:DC:D9:CB:AD:7E:55:78:C3:1B:06:96:59:4F
Certificate issuer: /CN=A91E6304/serialNumber=2596AED0C0CB3BCFE31804B239CF4657712E276A
Certificate serial: 02E1
Authority key identifier: 25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/5725C1363AB711EDBB6FC759C4F9AE02.roa
Signing time: Thu 07 Nov 2024 01:14:39 +0000
ROA not before: Thu 07 Nov 2024 01:14:39 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 209242
IP address blocks: 2407:30c0:182::/48 maxlen: 48
2407:30c0:183::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl
rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 01:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 737 (0x2e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6304
Validity
Not Before: Nov 7 01:14:39 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=672c147f-a231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bd:55:9e:3e:73:e7:73:11:60:be:4c:05:b6:
3c:8d:6e:0f:ac:d8:33:79:9d:49:ff:64:2c:94:2b:
74:2a:3e:27:42:90:f0:cf:27:92:27:21:78:d6:92:
3e:42:ae:0f:ca:46:21:7d:58:ad:f0:65:37:0b:57:
57:f6:1d:1b:5e:d1:03:41:41:94:3b:07:7f:63:43:
cc:a1:25:87:06:f8:95:6d:81:4a:8d:e0:72:27:b6:
7a:4f:c3:01:ab:ee:02:09:a1:c9:a4:5c:ed:20:51:
51:ae:1a:e0:f0:4e:c4:4d:4f:c3:45:0f:e9:d6:a8:
f4:1e:01:42:36:4b:28:37:23:f7:2e:13:d6:ae:87:
a0:8a:2d:d8:47:0f:db:10:8e:a9:02:b3:87:0e:1d:
a3:ab:13:b3:79:e0:de:ed:69:f4:60:b4:32:0e:10:
bf:cc:29:19:99:5b:35:01:0e:b9:4e:3c:df:14:5d:
65:55:02:13:63:aa:8f:38:f3:1e:70:b1:ae:65:b4:
c6:ed:26:c6:23:86:8a:97:49:23:2e:7b:2d:9d:23:
67:8d:a2:a0:62:85:40:0d:78:63:ab:56:72:b0:c6:
4c:20:bc:4e:cd:37:44:9a:a6:d7:bd:05:4f:41:c9:
f6:68:ff:d0:a3:6c:43:50:50:8c:88:66:5f:77:cc:
43:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:91:C2:15:94:89:A6:DC:D9:CB:AD:7E:55:78:C3:1B:06:96:59:4F
X509v3 Authority Key Identifier:
keyid:25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/5725C1363AB711EDBB6FC759C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:30c0:182::/47
Signature Algorithm: sha256WithRSAEncryption
ad:b2:fb:ff:f1:94:98:8d:0e:28:e4:25:72:c6:cb:3d:fd:37:
d3:d0:1c:e8:36:dd:67:9f:dc:93:d8:84:c6:37:18:74:d3:5c:
ed:3e:c0:4a:23:1d:23:ac:62:c0:f6:99:31:b1:52:fd:32:9c:
7b:2f:8d:7f:52:fd:01:a9:9e:7a:26:a1:09:ed:02:67:81:18:
20:a0:d7:13:6e:18:26:78:36:dd:7d:ea:4b:66:52:93:94:d8:
b9:ed:85:3e:4c:22:74:e9:ae:39:0a:74:e7:1c:2f:17:89:c2:
88:48:cc:7a:e9:3d:db:c1:c7:b9:34:64:4c:c3:0a:91:e7:81:
85:2f:32:a5:30:2a:81:0f:a8:a4:a7:cd:48:e8:9b:ff:db:46:
45:4d:2e:a9:32:43:1b:c0:74:0a:63:69:19:73:6a:00:8f:69:
4a:e8:8a:ee:1d:a4:1b:ee:8b:4f:19:61:9e:d2:31:29:53:9a:
c1:1c:da:11:7e:a0:9a:6c:23:3a:14:4a:fe:fe:9c:ee:c6:e0:
be:fb:1f:b1:60:92:e9:e1:79:a2:ec:b3:f2:85:63:a9:dc:fd:
7f:7b:a4:a7:f7:f8:48:c3:23:19:e7:df:68:7f:1f:d8:64:d7:
a4:4e:a6:13:76:b2:7a:76:4a:29:45:d4:6d:8e:40:cd:ee:ae:
66:06:7c:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 19:53:01 2025 by rpki-client