Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/9461B15C144611EBA5418244C4F9AE02.roa
File: 9461B15C144611EBA5418244C4F9AE02.roa (raw, json)
Hash identifier: f2BKC0SfvfCVZzewNCyKNQgaDwalvIHM6ibs4HCHEDg=
Subject key identifier: 9D:00:CB:4C:71:AD:B2:89:A6:EF:BE:92:C8:AD:A4:6D:5C:0A:9A:55
Certificate issuer: /CN=A91275FD/serialNumber=5EBDD4D5F36C6AA59B012C9E899AAD3C27EAD8ED
Certificate serial: 2527
Authority key identifier: 5E:BD:D4:D5:F3:6C:6A:A5:9B:01:2C:9E:89:9A:AD:3C:27:EA:D8:ED
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/9461B15C144611EBA5418244C4F9AE02.roa
Signing time: Thu 22 May 2025 15:52:30 +0000
ROA not before: Thu 22 May 2025 15:52:30 +0000
ROA not after: Thu 30 Jul 2026 00:00:00 +0000
asID: 23944
IP address blocks: 130.105.0.0/16 maxlen: 16
130.105.0.0/22 maxlen: 22
130.105.0.0/24 maxlen: 24
130.105.1.0/24 maxlen: 24
130.105.4.0/22 maxlen: 22
130.105.8.0/22 maxlen: 22
130.105.12.0/22 maxlen: 22
130.105.16.0/22 maxlen: 22
130.105.20.0/22 maxlen: 22
130.105.24.0/22 maxlen: 22
130.105.28.0/22 maxlen: 22
130.105.32.0/22 maxlen: 22
130.105.36.0/22 maxlen: 22
130.105.40.0/22 maxlen: 22
130.105.44.0/22 maxlen: 22
130.105.48.0/22 maxlen: 22
130.105.52.0/22 maxlen: 22
130.105.56.0/22 maxlen: 22
130.105.60.0/22 maxlen: 22
130.105.64.0/22 maxlen: 22
130.105.68.0/22 maxlen: 22
130.105.72.0/22 maxlen: 22
130.105.76.0/22 maxlen: 22
130.105.80.0/22 maxlen: 22
130.105.84.0/22 maxlen: 22
130.105.88.0/22 maxlen: 22
130.105.92.0/22 maxlen: 22
130.105.96.0/22 maxlen: 22
130.105.100.0/22 maxlen: 22
130.105.104.0/22 maxlen: 22
130.105.108.0/22 maxlen: 22
130.105.112.0/22 maxlen: 22
130.105.116.0/22 maxlen: 22
130.105.120.0/22 maxlen: 22
130.105.124.0/22 maxlen: 22
130.105.128.0/22 maxlen: 22
130.105.132.0/22 maxlen: 22
130.105.136.0/22 maxlen: 22
130.105.140.0/22 maxlen: 22
130.105.144.0/22 maxlen: 22
130.105.148.0/22 maxlen: 22
130.105.152.0/22 maxlen: 22
130.105.154.0/24 maxlen: 24
130.105.156.0/22 maxlen: 22
130.105.160.0/22 maxlen: 22
130.105.164.0/22 maxlen: 22
130.105.168.0/22 maxlen: 22
130.105.172.0/22 maxlen: 22
130.105.176.0/22 maxlen: 22
130.105.180.0/22 maxlen: 22
130.105.184.0/22 maxlen: 22
130.105.188.0/22 maxlen: 22
130.105.192.0/22 maxlen: 22
130.105.196.0/22 maxlen: 22
130.105.200.0/22 maxlen: 22
130.105.204.0/22 maxlen: 22
130.105.208.0/22 maxlen: 22
130.105.212.0/22 maxlen: 22
130.105.216.0/22 maxlen: 22
130.105.220.0/22 maxlen: 22
130.105.224.0/22 maxlen: 22
130.105.228.0/22 maxlen: 22
130.105.232.0/22 maxlen: 22
130.105.236.0/22 maxlen: 22
130.105.240.0/22 maxlen: 22
130.105.244.0/22 maxlen: 22
130.105.248.0/22 maxlen: 22
130.105.252.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.crl
rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 25 Jun 2025 15:41:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9511 (0x2527)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91275FD, serialNumber=5EBDD4D5F36C6AA59B012C9E899AAD3C27EAD8ED
Validity
Not Before: May 22 15:52:30 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=682f483e-ada1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f4:53:a9:76:83:ac:48:83:74:55:a6:83:0d:
cf:08:e7:43:92:70:f2:21:29:ed:e0:ac:8a:6a:e9:
93:c3:f2:ba:16:59:0d:b2:58:65:cf:10:4a:cb:07:
24:6b:25:a4:00:95:9b:ff:47:23:30:77:36:73:1e:
20:99:a0:0f:6c:2e:98:3a:28:cf:dc:b8:47:0d:ff:
f9:f8:3e:f1:b6:7d:56:e6:ae:52:95:aa:1f:1e:fb:
1c:c0:75:77:9b:09:30:54:27:4d:00:d6:8f:a3:0d:
7c:19:64:80:86:42:20:dc:d2:b7:10:c7:49:96:2f:
66:86:d4:f2:14:e3:74:9a:a0:46:d0:57:a5:a4:ff:
bd:80:44:db:51:c8:97:e8:89:dc:ed:17:d6:0b:2d:
af:97:67:c0:c5:4b:3e:9b:fd:91:e0:5a:3e:e0:fe:
ac:ad:86:76:07:d5:cf:84:dc:3f:d2:70:77:2c:11:
80:8e:f1:4f:a2:ea:a5:d1:9a:45:33:31:b3:13:44:
f9:e0:9e:dd:50:8e:52:2a:0e:9b:f4:89:9f:ac:b6:
cf:e7:eb:4c:0e:a8:d3:99:cf:fe:84:c2:8d:78:26:
26:99:fe:d2:c3:0f:c7:65:45:f7:3b:c3:cf:6a:aa:
fc:1a:38:40:7c:df:b5:1f:7b:14:fb:56:69:61:cf:
12:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:00:CB:4C:71:AD:B2:89:A6:EF:BE:92:C8:AD:A4:6D:5C:0A:9A:55
X509v3 Authority Key Identifier:
keyid:5E:BD:D4:D5:F3:6C:6A:A5:9B:01:2C:9E:89:9A:AD:3C:27:EA:D8:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/9461B15C144611EBA5418244C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
130.105.0.0/16
Signature Algorithm: sha256WithRSAEncryption
34:d1:5f:61:ab:ba:40:f8:76:af:4a:a7:2c:87:fe:23:1d:94:
90:e2:fa:6b:15:87:34:0e:ad:ea:05:e0:da:77:0e:a3:04:ed:
03:6f:0c:d4:26:18:90:42:b5:2e:cf:1a:85:bb:e4:89:56:3b:
b3:a5:18:fd:59:3c:5a:7f:f3:32:50:3c:60:59:fd:9b:c4:8d:
79:c0:ec:96:75:c6:d5:a0:e1:43:b1:35:9e:af:81:7f:93:77:
dd:a5:0e:cc:bf:94:e1:9f:1f:c3:96:00:bd:d0:91:d1:13:99:
68:f5:0d:86:b9:14:84:99:e9:f5:70:a9:0e:27:f4:c5:ed:fc:
f0:dd:e3:29:2d:eb:d8:5e:c9:95:f9:76:f4:57:e7:4f:35:96:
ae:d7:f2:a7:11:b3:40:31:36:c0:f5:43:33:34:90:f1:55:2b:
ba:cc:49:98:46:cd:16:b6:4a:f4:41:5b:c2:92:25:9d:19:69:
5a:c7:8b:c6:79:66:54:51:11:a3:65:f9:ab:99:7d:42:43:5c:
83:ac:c9:eb:37:fe:94:0d:2c:47:83:ce:a1:92:94:b9:7f:97:
b7:c7:15:d6:ef:57:03:1d:9d:cc:ca:b8:e2:6d:70:f1:e7:e9:
75:5f:09:c6:9c:e4:44:a1:21:29:f1:fa:fb:30:1b:e1:f8:9a:
17:da:2d:ad
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgICJScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Mjc1RkQxMTAvBgNVBAUTKDVFQkRENEQ1RjM2QzZBQTU5QjAxMkM5RTg5OUFBRDND
MjdFQUQ4RUQwHhcNMjUwNTIyMTU1MjMwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02ODJmNDgzZS1hZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAx/RTqXaDrEiDdFWmgw3PCOdDknDyISnt4KyKaumTw/K6FlkNslhlzxBKywck
ayWkAJWb/0cjMHc2cx4gmaAPbC6YOijP3LhHDf/5+D7xtn1W5q5SlaofHvscwHV3
mwkwVCdNANaPow18GWSAhkIg3NK3EMdJli9mhtTyFON0mqBG0FelpP+9gETbUciX
6Inc7RfWCy2vl2fAxUs+m/2R4Fo+4P6srYZ2B9XPhNw/0nB3LBGAjvFPouql0ZpF
MzGzE0T54J7dUI5SKg6b9ImfrLbP5+tMDqjTmc/+hMKNeCYmmf7Sww/HZUX3O8PP
aqr8GjhAfN+1H3sU+1ZpYc8SxQIDAQABo4IClDCCApAwHQYDVR0OBBYEFJ0Ay0xx
rbKJpu++ksitpG1cCppVMB8GA1UdIwQYMBaAFF691NXzbGqlmwEsnomarTwn6tjt
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVGRC9GNDhBRDEyMjI2
RDkxMUU1QjI0REE2MzNDNEY5QUUwMi9YcjNVMWZOc2FxV2JBU3llaVpxdFBDZnEy
TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL1hyM1UxZk5zYXFXYkFTeWVpWnF0UENmcTJPMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Mjc1RkQvRjQ4QUQxMjIyNkQ5MTFFNUIyNERBNjMzQzRGOUFFMDIvOTQ2MUIxNUMx
NDQ2MTFFQkE1NDE4MjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E
DzANMAsEAgABMAUDAwCCaTANBgkqhkiG9w0BAQsFAAOCAQEANNFfYau6QPh2r0qn
LIf+Ix2UkOL6axWHNA6t6gXg2ncOowTtA28M1CYYkEK1Ls8ahbvkiVY7s6UY/Vk8
Wn/zMlA8YFn9m8SNecDslnXG1aDhQ7E1nq+Bf5N33aUOzL+U4Z8fw5YAvdCR0ROZ
aPUNhrkUhJnp9XCpDif0xe388N3jKS3r2F7Jlfl29FfnTzWWrtfypxGzQDE2wPVD
MzSQ8VUrusxJmEbNFrZK9EFbwpIlnRlpWseLxnlmVFERo2X5q5l9QkNcg6zJ6zf+
lA0sR4POoZKUuX+Xt8cV1u9XAx2dzMq44m1w8efpdV8JxpzkRKEhKfH6+zAb4fia
F9otrQ==
-----END CERTIFICATE-----
Generated at Fri Jun 20 06:52:51 2025 by rpki-client