Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F33A5/11870972D4D811ECA4245F10C4F9AE02/A79DC338E2ED11EC92DF2511C4F9AE02.roa
File: A79DC338E2ED11EC92DF2511C4F9AE02.roa (raw, json)
Hash identifier: jWnPlqM2E3SOIYzt5WQ5+wk3HRS9QrsRW7iiYnWEKXc=
Subject key identifier: 9C:F8:39:F9:EC:A7:B4:33:B5:AD:BE:52:2C:55:4C:20:70:22:0D:FF
Certificate issuer: /CN=A91F33A5/serialNumber=4FF52847215C4A22E9F1149E6CBFEDF74D61CE8B
Certificate serial: 0215
Authority key identifier: 4F:F5:28:47:21:5C:4A:22:E9:F1:14:9E:6C:BF:ED:F7:4D:61:CE:8B
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T_UoRyFcSiLp8RSebL_t901hzos.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F33A5/11870972D4D811ECA4245F10C4F9AE02/A79DC338E2ED11EC92DF2511C4F9AE02.roa
Signing time: Fri 29 Sep 2023 02:44:32 +0000
ROA not before: Fri 29 Sep 2023 02:44:32 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 6262
IP address blocks: 130.116.0.0/16 maxlen: 24
130.155.0.0/16 maxlen: 24
138.194.0.0/16 maxlen: 24
140.79.0.0/16 maxlen: 24
140.253.0.0/16 maxlen: 24
144.110.0.0/16 maxlen: 24
146.118.0.0/16 maxlen: 24
152.83.0.0/16 maxlen: 24
192.16.180.0/24 maxlen: 24
192.41.146.0/24 maxlen: 24
192.42.60.0/23 maxlen: 24
192.42.62.0/24 maxlen: 24
192.54.105.0/24 maxlen: 24
192.54.106.0/24 maxlen: 24
192.55.219.0/24 maxlen: 24
192.55.232.0/24 maxlen: 24
192.65.130.0/24 maxlen: 24
192.67.12.0/24 maxlen: 24
192.67.171.0/24 maxlen: 24
192.68.132.0/24 maxlen: 24
192.82.140.0/24 maxlen: 24
192.83.238.0/24 maxlen: 24
192.84.237.0/24 maxlen: 24
192.84.238.0/24 maxlen: 24
192.94.62.0/23 maxlen: 24
192.94.64.0/24 maxlen: 24
192.94.209.0/24 maxlen: 24
192.102.250.0/23 maxlen: 24
192.107.9.0/24 maxlen: 24
192.111.32.0/24 maxlen: 24
192.122.176.0/24 maxlen: 24
192.124.117.0/24 maxlen: 24
192.124.152.0/24 maxlen: 24
192.138.100.0/24 maxlen: 24
192.149.36.0/24 maxlen: 24
192.150.202.0/24 maxlen: 24
192.160.16.0/24 maxlen: 24
192.188.115.0/24 maxlen: 24
192.188.186.0/24 maxlen: 24
192.203.235.0/24 maxlen: 24
192.207.33.0/24 maxlen: 24
192.207.113.0/24 maxlen: 24
192.207.156.0/23 maxlen: 24
192.207.158.0/24 maxlen: 24
192.207.161.0/24 maxlen: 24
192.207.197.0/24 maxlen: 24
192.207.198.0/24 maxlen: 24
192.231.212.0/24 maxlen: 24
192.245.210.0/23 maxlen: 24
192.245.212.0/22 maxlen: 24
192.245.216.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F33A5/11870972D4D811ECA4245F10C4F9AE02/T_UoRyFcSiLp8RSebL_t901hzos.crl
rsync://rpki.apnic.net/member_repository/A91F33A5/11870972D4D811ECA4245F10C4F9AE02/T_UoRyFcSiLp8RSebL_t901hzos.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T_UoRyFcSiLp8RSebL_t901hzos.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 30 May 2024 02:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 533 (0x215)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F33A5/serialNumber=4FF52847215C4A22E9F1149E6CBFEDF74D61CE8B
Validity
Not Before: Sep 29 02:44:32 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=65163a0f-fd72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:99:cc:b6:da:eb:09:b7:d0:83:f0:a5:04:a1:
e7:ba:f0:b4:4e:46:90:fe:c7:f0:ae:b2:80:09:e2:
b1:35:82:05:df:12:8e:c5:e8:97:20:5a:92:85:d4:
26:61:49:53:47:95:01:d7:ff:f8:cf:ce:33:f1:c3:
b5:a9:99:d8:86:93:c6:32:8b:e6:a1:70:4b:43:f7:
a4:10:fa:85:ca:96:29:69:14:94:87:f6:5f:b8:26:
bd:0b:15:7e:e2:1a:fe:c2:2b:2e:78:74:42:a4:6b:
08:2d:e0:d0:d7:57:5b:82:f9:b9:f3:8a:6e:99:7b:
a3:ee:ee:f3:5b:2f:cd:e9:b8:4a:c8:27:cf:a2:2a:
7c:fd:21:09:36:66:f5:33:87:17:e3:30:8c:40:aa:
43:4b:a8:e5:b6:5f:4f:74:ee:fc:61:d8:9b:9a:9a:
36:9c:dd:8f:74:d8:fa:26:df:ad:06:6f:7f:78:6e:
93:21:58:85:75:f9:fd:2a:ed:6f:97:62:41:e2:51:
9c:9b:81:5e:73:3b:7a:bd:1a:88:a3:8a:c5:b6:0d:
0b:3d:5c:a7:a2:f0:81:8e:0a:8a:d1:37:eb:e3:b8:
70:68:a6:ff:23:f8:4e:1e:80:13:63:82:12:8d:a2:
2b:ea:62:9d:88:eb:e6:a8:f4:06:8b:02:0d:3a:a5:
ec:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F8:39:F9:EC:A7:B4:33:B5:AD:BE:52:2C:55:4C:20:70:22:0D:FF
X509v3 Authority Key Identifier:
keyid:4F:F5:28:47:21:5C:4A:22:E9:F1:14:9E:6C:BF:ED:F7:4D:61:CE:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F33A5/11870972D4D811ECA4245F10C4F9AE02/T_UoRyFcSiLp8RSebL_t901hzos.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T_UoRyFcSiLp8RSebL_t901hzos.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F33A5/11870972D4D811ECA4245F10C4F9AE02/A79DC338E2ED11EC92DF2511C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
130.116.0.0/16
130.155.0.0/16
138.194.0.0/16
140.79.0.0/16
140.253.0.0/16
144.110.0.0/16
146.118.0.0/16
152.83.0.0/16
192.16.180.0/24
192.41.146.0/24
192.42.60.0-192.42.62.255
192.54.105.0-192.54.106.255
192.55.219.0/24
192.55.232.0/24
192.65.130.0/24
192.67.12.0/24
192.67.171.0/24
192.68.132.0/24
192.82.140.0/24
192.83.238.0/24
192.84.237.0-192.84.238.255
192.94.62.0-192.94.64.255
192.94.209.0/24
192.102.250.0/23
192.107.9.0/24
192.111.32.0/24
192.122.176.0/24
192.124.117.0/24
192.124.152.0/24
192.138.100.0/24
192.149.36.0/24
192.150.202.0/24
192.160.16.0/24
192.188.115.0/24
192.188.186.0/24
192.203.235.0/24
192.207.33.0/24
192.207.113.0/24
192.207.156.0-192.207.158.255
192.207.161.0/24
192.207.197.0-192.207.198.255
192.231.212.0/24
192.245.210.0-192.245.217.255
Signature Algorithm: sha256WithRSAEncryption
79:e3:a8:23:be:ec:5b:fd:82:c1:b4:f3:36:f7:46:2f:01:eb:
8d:22:30:f2:70:28:ec:1f:70:70:a1:b6:7f:a5:6f:15:eb:84:
fb:4a:f6:2d:09:02:00:cc:98:54:34:da:6c:e1:3b:2a:19:d0:
10:a1:ae:97:15:7f:18:fe:a1:48:54:d4:2f:98:b0:4c:1d:30:
62:4b:a1:c9:62:90:3b:1e:18:49:c8:2a:71:7c:86:95:03:7a:
19:2f:51:52:6f:fe:b7:4c:89:a8:af:5d:ff:56:95:fa:c9:ba:
6f:26:3c:a4:73:8d:33:1c:41:5e:f6:04:e4:ac:26:63:46:f0:
dd:42:9b:8f:7e:11:5e:47:71:a9:68:ee:75:f2:48:96:34:a6:
15:07:57:c3:5c:c8:02:70:ca:57:3b:1d:a9:55:05:51:9a:02:
25:2e:60:16:fb:2b:0b:b3:fe:8b:71:d6:c3:33:89:17:e9:74:
66:11:56:53:f7:6f:fb:f8:55:ae:6a:af:ca:98:55:cf:ac:3c:
8a:e9:be:71:d7:0f:e1:51:e9:7b:f0:8f:53:aa:69:88:20:ff:
c5:d4:b8:c3:f4:2e:1c:7d:24:63:78:16:e1:26:f7:61:2e:6e:
ba:2d:23:e4:b2:12:58:04:e3:bd:7e:20:81:ab:96:1c:58:ee:
0a:7f:47:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 04:27:26 2024 by rpki-client on console-fra.rpki-client.org