Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F33A5/11870972D4D811ECA4245F10C4F9AE02/A79DC338E2ED11EC92DF2511C4F9AE02.roa
File: A79DC338E2ED11EC92DF2511C4F9AE02.roa (raw, json)
Hash identifier: BCirF3lM/+JAqc91Bu6yGVIohDWL5e8UoGNwX4jiSVI=
Subject key identifier: CF:57:BF:04:36:A4:69:7C:BD:60:F1:2D:82:E7:26:C0:CB:D5:D9:F8
Certificate issuer: /CN=A91F33A5/serialNumber=4FF52847215C4A22E9F1149E6CBFEDF74D61CE8B
Certificate serial: 02C6
Authority key identifier: 4F:F5:28:47:21:5C:4A:22:E9:F1:14:9E:6C:BF:ED:F7:4D:61:CE:8B
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T_UoRyFcSiLp8RSebL_t901hzos.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F33A5/11870972D4D811ECA4245F10C4F9AE02/A79DC338E2ED11EC92DF2511C4F9AE02.roa
Signing time: Thu 05 Sep 2024 02:45:28 +0000
ROA not before: Thu 05 Sep 2024 02:45:28 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 6262
IP address blocks: 130.116.0.0/16 maxlen: 24
130.155.0.0/16 maxlen: 24
138.194.0.0/16 maxlen: 24
140.79.0.0/16 maxlen: 24
140.253.0.0/16 maxlen: 24
144.110.0.0/16 maxlen: 24
146.118.0.0/16 maxlen: 24
152.83.0.0/16 maxlen: 24
192.16.180.0/24 maxlen: 24
192.41.146.0/24 maxlen: 24
192.42.60.0/23 maxlen: 24
192.42.62.0/24 maxlen: 24
192.54.105.0/24 maxlen: 24
192.54.106.0/24 maxlen: 24
192.55.219.0/24 maxlen: 24
192.55.232.0/24 maxlen: 24
192.65.130.0/24 maxlen: 24
192.67.12.0/24 maxlen: 24
192.67.171.0/24 maxlen: 24
192.68.132.0/24 maxlen: 24
192.82.140.0/24 maxlen: 24
192.83.238.0/24 maxlen: 24
192.84.237.0/24 maxlen: 24
192.84.238.0/24 maxlen: 24
192.94.62.0/23 maxlen: 24
192.94.64.0/24 maxlen: 24
192.94.209.0/24 maxlen: 24
192.102.250.0/23 maxlen: 24
192.107.9.0/24 maxlen: 24
192.111.32.0/24 maxlen: 24
192.122.176.0/24 maxlen: 24
192.124.117.0/24 maxlen: 24
192.124.152.0/24 maxlen: 24
192.138.100.0/24 maxlen: 24
192.149.36.0/24 maxlen: 24
192.150.202.0/24 maxlen: 24
192.160.16.0/24 maxlen: 24
192.188.115.0/24 maxlen: 24
192.188.186.0/24 maxlen: 24
192.203.235.0/24 maxlen: 24
192.207.33.0/24 maxlen: 24
192.207.113.0/24 maxlen: 24
192.207.156.0/23 maxlen: 24
192.207.158.0/24 maxlen: 24
192.207.161.0/24 maxlen: 24
192.207.197.0/24 maxlen: 24
192.207.198.0/24 maxlen: 24
192.231.212.0/24 maxlen: 24
192.245.210.0/23 maxlen: 24
192.245.212.0/22 maxlen: 24
192.245.216.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F33A5/11870972D4D811ECA4245F10C4F9AE02/T_UoRyFcSiLp8RSebL_t901hzos.crl
rsync://rpki.apnic.net/member_repository/A91F33A5/11870972D4D811ECA4245F10C4F9AE02/T_UoRyFcSiLp8RSebL_t901hzos.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T_UoRyFcSiLp8RSebL_t901hzos.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 27 Nov 2024 19:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 710 (0x2c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F33A5/serialNumber=4FF52847215C4A22E9F1149E6CBFEDF74D61CE8B
Validity
Not Before: Sep 5 02:45:28 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66d91b48-43b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:69:48:96:94:d9:17:12:f7:01:db:bc:55:39:
6e:b7:29:1c:8d:c1:b2:b5:b3:5b:08:c7:87:c9:6e:
79:18:21:31:cc:ee:3d:5e:27:c5:ea:64:63:6e:01:
97:25:05:7c:13:b6:9d:6b:90:de:ad:32:1e:fc:d9:
35:a8:55:b2:86:55:c9:34:10:02:19:26:b1:e1:03:
0e:92:ce:cd:0c:ae:49:fa:8d:b0:d1:85:aa:8a:65:
b9:d9:37:73:50:92:07:b9:c7:8a:75:dc:97:de:50:
0b:f9:42:9d:5b:89:ee:f2:83:53:0e:0a:99:33:84:
d0:b5:ac:64:e9:db:26:3a:45:96:f9:1e:e0:ab:ca:
81:3d:5f:46:50:14:19:cc:c8:ba:8f:bd:4f:67:3b:
a0:8d:76:e0:b0:29:28:d4:0f:d3:ad:4c:e7:d2:10:
07:84:bf:dd:74:34:55:b5:8d:2d:37:38:fa:3a:b6:
8f:b3:c0:8b:fb:33:78:8b:ab:8d:bf:2c:70:d7:74:
d0:55:fb:de:67:01:87:db:d1:80:bd:43:ce:4e:d0:
e9:51:70:40:e3:34:32:fd:41:07:b3:ea:b3:7f:6e:
4c:5d:42:c2:73:db:3c:75:3d:b5:1a:8d:00:af:a7:
f4:2e:5e:ba:95:49:8d:bb:18:e1:e5:5e:18:47:be:
07:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:57:BF:04:36:A4:69:7C:BD:60:F1:2D:82:E7:26:C0:CB:D5:D9:F8
X509v3 Authority Key Identifier:
keyid:4F:F5:28:47:21:5C:4A:22:E9:F1:14:9E:6C:BF:ED:F7:4D:61:CE:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F33A5/11870972D4D811ECA4245F10C4F9AE02/T_UoRyFcSiLp8RSebL_t901hzos.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T_UoRyFcSiLp8RSebL_t901hzos.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F33A5/11870972D4D811ECA4245F10C4F9AE02/A79DC338E2ED11EC92DF2511C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
130.116.0.0/16
130.155.0.0/16
138.194.0.0/16
140.79.0.0/16
140.253.0.0/16
144.110.0.0/16
146.118.0.0/16
152.83.0.0/16
192.16.180.0/24
192.41.146.0/24
192.42.60.0-192.42.62.255
192.54.105.0-192.54.106.255
192.55.219.0/24
192.55.232.0/24
192.65.130.0/24
192.67.12.0/24
192.67.171.0/24
192.68.132.0/24
192.82.140.0/24
192.83.238.0/24
192.84.237.0-192.84.238.255
192.94.62.0-192.94.64.255
192.94.209.0/24
192.102.250.0/23
192.107.9.0/24
192.111.32.0/24
192.122.176.0/24
192.124.117.0/24
192.124.152.0/24
192.138.100.0/24
192.149.36.0/24
192.150.202.0/24
192.160.16.0/24
192.188.115.0/24
192.188.186.0/24
192.203.235.0/24
192.207.33.0/24
192.207.113.0/24
192.207.156.0-192.207.158.255
192.207.161.0/24
192.207.197.0-192.207.198.255
192.231.212.0/24
192.245.210.0-192.245.217.255
Signature Algorithm: sha256WithRSAEncryption
6a:79:cd:2a:dd:32:12:c7:48:3b:3c:86:f9:a0:40:72:38:2b:
eb:5d:06:65:0f:98:54:11:b8:06:af:d8:d0:18:b5:b3:7a:e4:
92:1a:37:32:44:61:27:6e:fd:cc:fc:a9:e9:d4:98:5f:37:4e:
c7:b1:a6:14:a6:3f:6e:2a:b5:2b:cc:d3:85:35:fc:ee:b8:ef:
6b:ae:d7:62:e3:ad:8a:17:77:78:3c:c8:8c:76:e7:00:68:cc:
69:fa:8e:b5:47:11:96:3d:31:09:e6:ba:04:21:4b:3d:80:9f:
bc:9d:7d:16:df:b7:d8:89:40:28:c6:2c:1a:7d:29:58:43:0c:
94:08:2b:f8:c9:4c:6e:cf:79:f2:8e:f1:5b:30:83:a0:78:1b:
ba:d5:a1:f1:52:4e:a3:3b:db:57:15:38:73:93:5f:f6:c9:6a:
bd:69:71:84:2f:8e:ce:83:ba:ca:8f:0b:de:96:c3:c5:7b:81:
dc:f7:0e:26:cb:58:a3:1b:ac:1a:68:79:59:3c:05:1c:ce:ac:
88:2a:22:43:c2:26:6c:9d:4e:32:55:a5:9d:05:84:87:61:9d:
ea:10:f9:7c:2b:50:93:d6:2f:01:14:09:c4:56:89:ba:0e:a6:
d7:db:37:31:31:ca:ae:4d:48:fc:0d:fa:c8:48:46:92:a4:e7:
06:2c:37:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 03:21:57 2024 by rpki-client on console-ams.rpki-client.org