Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/B2B2930C21C911EB991D562EC4F9AE02.roa
File: B2B2930C21C911EB991D562EC4F9AE02.roa (raw, json)
Hash identifier: Qy0DDR285MRVUCU2wSq2l1CDAExHpBwuWLjgKYsgDgk=
Subject key identifier: 5D:E5:C6:BD:95:BA:E6:D2:31:08:8A:21:7E:A6:FA:52:EA:B6:04:81
Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661
Certificate serial: 0EF9
Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/B2B2930C21C911EB991D562EC4F9AE02.roa
Signing time: Thu 20 Jun 2024 18:08:54 +0000
ROA not before: Thu 20 Jun 2024 18:08:54 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 135386
IP address blocks: 103.113.92.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl
rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 17:34:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3833 (0xef9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F3F02
Validity
Not Before: Jun 20 18:08:54 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66747036-9b4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:dc:ca:30:79:c2:a7:62:ce:ca:f1:ed:ad:ad:
9e:b1:c4:ea:10:b5:a3:86:2e:65:76:ad:4b:06:a1:
53:72:77:55:d0:27:f2:1b:a2:a5:9b:ed:1c:26:20:
f6:bf:31:ca:fd:43:6b:fc:61:62:d7:ea:4d:76:b4:
ed:7c:8d:7c:48:0c:2b:89:09:54:71:c7:10:a1:a8:
61:38:88:20:50:1d:93:bf:d0:ef:93:76:ff:64:26:
be:29:97:60:3d:e3:07:48:5d:0b:e5:03:9b:04:40:
5d:aa:8a:82:47:06:e8:4b:f0:7f:d8:9f:76:ac:53:
63:1f:e0:45:fa:8a:cb:b8:cc:38:c2:fd:9d:67:d1:
d6:ed:08:20:78:f0:6b:e1:9d:09:52:d2:bf:45:c1:
39:e6:ff:87:38:f5:05:ca:a4:3e:32:8f:16:1b:ba:
b7:8a:df:15:4c:e5:1c:26:58:9a:cd:9a:52:8b:db:
fe:20:9c:7d:55:f0:5e:89:a7:ff:7a:36:f9:55:0b:
5e:3d:7f:0f:a8:98:81:54:e6:49:6d:dd:ca:15:d0:
8c:c7:c9:78:f6:d6:c2:85:f2:d7:05:b8:f6:7d:10:
e7:54:b3:ef:e3:ea:76:56:0a:d5:06:8b:64:4f:0e:
3b:a6:9d:96:d7:45:a5:5b:1c:01:46:b8:85:dd:25:
d8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:E5:C6:BD:95:BA:E6:D2:31:08:8A:21:7E:A6:FA:52:EA:B6:04:81
X509v3 Authority Key Identifier:
keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/B2B2930C21C911EB991D562EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.113.92.0/22
Signature Algorithm: sha256WithRSAEncryption
18:64:eb:38:99:b9:d8:78:f0:d8:6b:31:e0:e8:d6:23:d0:d6:
84:6d:fa:ef:0d:47:1f:64:52:55:e5:c8:45:be:ff:61:c7:96:
d1:24:b4:a6:93:e4:09:16:52:38:52:ac:41:4d:9a:be:ae:30:
c1:ec:26:4d:e2:f9:c1:1b:d7:ca:b4:2c:80:c4:24:45:83:3a:
09:f9:aa:87:00:8b:a3:d8:ba:d4:ce:18:12:3b:08:86:6b:14:
0b:d1:9b:93:1a:fb:c4:d1:c5:0b:4e:a4:8a:8b:88:a9:42:51:
7e:cd:11:ba:06:8a:d5:06:2d:ce:83:8a:d3:f7:3f:67:3f:1c:
96:20:a2:01:b6:86:5d:a1:a3:27:1a:b3:e5:f2:8d:de:0f:b3:
83:c5:50:3c:a2:29:78:21:4e:4f:7b:4e:e1:9b:43:d8:d7:bb:
83:ba:24:bf:ff:71:b5:50:49:2b:9e:08:59:6b:cf:95:99:70:
87:f4:d2:04:6a:ff:b3:6e:1b:19:66:43:57:4b:2d:27:91:7e:
cb:60:3b:86:3e:4e:d5:63:ea:cc:56:cb:84:97:de:ae:3e:d3:
f4:f9:5c:0a:6b:03:4d:cc:4d:e4:07:aa:0d:1c:ac:fb:68:dc:
bd:1f:2e:65:40:e2:9f:86:0c:8c:ab:21:4b:22:8d:e0:63:65:
0b:e2:7a:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 16:42:19 2025 by rpki-client