Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/EA19E5B02CD811F08A3B9716C4F9AE02.roa
File: EA19E5B02CD811F08A3B9716C4F9AE02.roa (raw, json)
Hash identifier: u53oIYUiMJ0rA4gbsghNJqDgBzEHQAy6nZ7IeXXZIck=
Subject key identifier: 72:4A:EF:0D:0C:65:54:30:FC:8D:3E:3E:00:6E:F9:67:97:B1:80:BE
Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Certificate serial: 37EA
Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/EA19E5B02CD811F08A3B9716C4F9AE02.roa
Signing time: Fri 09 May 2025 13:24:20 +0000
ROA not before: Fri 09 May 2025 13:24:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 150382
IP address blocks: 111.88.76.0/24 maxlen: 24
111.88.77.0/24 maxlen: 24
111.88.79.0/24 maxlen: 24
111.88.138.0/24 maxlen: 24
111.88.139.0/24 maxlen: 24
111.88.184.0/24 maxlen: 24
111.88.185.0/24 maxlen: 24
111.88.186.0/24 maxlen: 24
111.88.187.0/24 maxlen: 24
111.88.188.0/24 maxlen: 24
111.88.189.0/24 maxlen: 24
111.88.190.0/24 maxlen: 24
111.88.191.0/24 maxlen: 24
111.88.232.0/24 maxlen: 24
111.88.234.0/24 maxlen: 24
111.88.235.0/24 maxlen: 24
111.88.236.0/24 maxlen: 24
111.88.237.0/24 maxlen: 24
115.186.1.0/24 maxlen: 24
115.186.10.0/24 maxlen: 24
115.186.11.0/24 maxlen: 24
115.186.12.0/24 maxlen: 24
115.186.13.0/24 maxlen: 24
115.186.16.0/24 maxlen: 24
115.186.19.0/24 maxlen: 24
115.186.22.0/24 maxlen: 24
115.186.24.0/24 maxlen: 24
115.186.26.0/24 maxlen: 24
115.186.27.0/24 maxlen: 24
115.186.28.0/24 maxlen: 24
115.186.29.0/24 maxlen: 24
115.186.41.0/24 maxlen: 24
115.186.48.0/24 maxlen: 24
115.186.49.0/24 maxlen: 24
115.186.50.0/24 maxlen: 24
115.186.51.0/24 maxlen: 24
115.186.52.0/24 maxlen: 24
115.186.53.0/24 maxlen: 24
115.186.54.0/24 maxlen: 24
115.186.55.0/24 maxlen: 24
115.186.64.0/24 maxlen: 24
115.186.65.0/24 maxlen: 24
115.186.66.0/24 maxlen: 24
115.186.67.0/24 maxlen: 24
115.186.68.0/24 maxlen: 24
115.186.69.0/24 maxlen: 24
115.186.70.0/24 maxlen: 24
115.186.71.0/24 maxlen: 24
115.186.72.0/24 maxlen: 24
115.186.73.0/24 maxlen: 24
115.186.74.0/24 maxlen: 24
115.186.75.0/24 maxlen: 24
115.186.88.0/24 maxlen: 24
115.186.89.0/24 maxlen: 24
115.186.91.0/24 maxlen: 24
115.186.92.0/24 maxlen: 24
115.186.93.0/24 maxlen: 24
115.186.94.0/24 maxlen: 24
115.186.95.0/24 maxlen: 24
115.186.97.0/24 maxlen: 24
115.186.99.0/24 maxlen: 24
115.186.100.0/24 maxlen: 24
115.186.105.0/24 maxlen: 24
115.186.114.0/24 maxlen: 24
115.186.116.0/24 maxlen: 24
115.186.122.0/24 maxlen: 24
115.186.123.0/24 maxlen: 24
115.186.124.0/24 maxlen: 24
115.186.125.0/24 maxlen: 24
115.186.127.0/24 maxlen: 24
117.102.10.0/24 maxlen: 24
117.102.11.0/24 maxlen: 24
117.102.13.0/24 maxlen: 24
117.102.14.0/24 maxlen: 24
117.102.15.0/24 maxlen: 24
117.102.20.0/24 maxlen: 24
117.102.21.0/24 maxlen: 24
117.102.22.0/24 maxlen: 24
117.102.23.0/24 maxlen: 24
117.102.27.0/24 maxlen: 24
117.102.29.0/24 maxlen: 24
117.102.30.0/24 maxlen: 24
117.102.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl
rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 20 May 2025 15:54:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14314 (0x37ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C83B, serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Validity
Not Before: May 9 13:24:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=681e0204-a152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e7:05:52:b2:26:a0:fa:4d:50:57:60:3c:aa:
7e:fc:de:0c:1d:85:20:ae:6c:ac:84:c9:3d:c2:4e:
ff:80:2c:13:67:5c:f1:f2:0c:07:e3:42:47:74:36:
1f:75:f0:1c:c6:56:1f:a0:e2:11:73:2f:ac:2a:ec:
39:33:a0:54:cb:19:2a:08:bc:52:08:f4:31:12:67:
99:7e:f4:24:4f:03:53:b9:8f:eb:d6:bc:2d:ed:a3:
bf:7a:25:8f:f4:af:2b:a8:2c:ef:d1:2e:16:53:85:
1d:2a:5e:9c:54:46:93:79:e5:38:a8:6d:17:76:59:
0a:6d:b0:9e:8e:b9:70:b7:c2:3f:35:3c:28:3a:e4:
19:67:d2:c6:b1:52:97:1a:d9:51:5c:13:d3:90:68:
c8:36:a2:46:1c:19:5e:75:21:c8:e0:43:49:c4:4f:
51:c8:19:b7:62:45:34:b6:96:fb:7f:74:38:99:dd:
10:15:9f:aa:30:70:cf:8a:a6:5c:dc:d9:41:b6:c8:
4d:bd:4d:28:18:89:ed:07:94:41:9b:d5:70:0f:df:
ea:3f:06:24:7b:ad:99:ec:db:68:c6:07:fd:c0:f8:
d7:6d:84:0d:59:9d:83:7d:92:bc:c4:2c:68:1b:56:
51:14:cc:06:89:5b:3f:85:a0:fc:4a:b7:e7:a2:17:
33:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:4A:EF:0D:0C:65:54:30:FC:8D:3E:3E:00:6E:F9:67:97:B1:80:BE
X509v3 Authority Key Identifier:
keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/EA19E5B02CD811F08A3B9716C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.88.76.0/23
111.88.79.0/24
111.88.138.0/23
111.88.184.0/21
111.88.232.0/24
111.88.234.0-111.88.237.255
115.186.1.0/24
115.186.10.0-115.186.13.255
115.186.16.0/24
115.186.19.0/24
115.186.22.0/24
115.186.24.0/24
115.186.26.0-115.186.29.255
115.186.41.0/24
115.186.48.0/21
115.186.64.0-115.186.75.255
115.186.88.0/23
115.186.91.0-115.186.95.255
115.186.97.0/24
115.186.99.0-115.186.100.255
115.186.105.0/24
115.186.114.0/24
115.186.116.0/24
115.186.122.0-115.186.125.255
115.186.127.0/24
117.102.10.0/23
117.102.13.0-117.102.15.255
117.102.20.0/22
117.102.27.0/24
117.102.29.0-117.102.31.255
Signature Algorithm: sha256WithRSAEncryption
71:a1:97:6e:32:ac:5d:2a:2d:ad:65:60:28:c5:38:e5:7f:81:
65:c3:36:bf:a1:f4:5e:91:fd:08:0d:ff:5c:c4:56:22:8e:26:
c5:fd:cb:dd:e0:01:f4:b5:26:d0:8d:db:48:59:89:11:ba:36:
d1:6e:41:22:1c:20:6c:7a:cc:80:88:e2:bf:b3:f4:2a:c3:d9:
23:41:f2:82:22:91:10:c3:8f:f2:41:ce:97:14:96:a0:64:2f:
95:d3:4a:59:31:8c:e1:a2:c0:53:cc:c5:4a:ec:73:ab:45:ee:
29:26:86:43:8c:49:25:33:d3:ff:bd:6c:45:60:93:df:c8:bb:
a8:ef:e4:3f:75:80:7d:ba:92:5b:6e:ae:34:bf:c5:a4:7c:3f:
45:6a:c2:88:ed:0e:10:ba:ad:71:67:57:be:d8:4c:07:47:0b:
e3:ec:c9:65:72:77:11:15:c6:56:e6:1f:0b:a2:94:a7:85:56:
1c:c5:e8:47:98:c8:57:35:e2:6a:de:a7:39:17:cf:f2:14:92:
dc:dc:7b:a5:9c:79:ea:71:a4:17:ce:a4:61:d8:9f:3b:16:94:
ec:5f:6b:d7:19:f0:ae:83:47:83:c6:a4:60:4e:72:89:c2:84:
c2:0e:f5:47:c5:84:e0:60:5f:24:4b:3c:7a:c3:48:af:79:bb:
f1:f3:10:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 11:49:27 2025 by rpki-client