Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/818F58F0EAF411EC9A14E22EC4F9AE02.roa
File: 818F58F0EAF411EC9A14E22EC4F9AE02.roa (raw, json)
Hash identifier: rr7JwL3aP2xt22xpI8m2scwwvBMRgYndiZXBSENrUYA=
Subject key identifier: 76:A5:00:D0:C9:22:FB:49:7D:57:61:CE:37:32:3C:61:1C:EC:39:05
Certificate issuer: /CN=A9112DB1/serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5
Certificate serial: 0422
Authority key identifier: 22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/818F58F0EAF411EC9A14E22EC4F9AE02.roa
Signing time: Sat 15 Mar 2025 00:45:55 +0000
ROA not before: Sat 15 Mar 2025 00:45:55 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 51847
IP address blocks: 103.181.12.0/24 maxlen: 24
103.181.13.0/24 maxlen: 24
2400:8a20:100::/44 maxlen: 48
2400:8a20:110::/44 maxlen: 48
2400:8a20:121::/48 maxlen: 48
2400:8a20:130::/48 maxlen: 48
2400:8a20:140::/44 maxlen: 44
2400:8a20:150::/48 maxlen: 48
2400:8a20:151::/48 maxlen: 48
2400:8a20:160::/48 maxlen: 48
2400:8a20:170::/44 maxlen: 44
2400:8a20:180::/44 maxlen: 44
2400:8a20:190::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1058 (0x422)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9112DB1
Validity
Not Before: Mar 15 00:45:55 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67d4cdc3-627c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0a:54:25:36:39:2e:18:3f:9b:b0:b5:ad:c5:
73:9d:46:a8:e2:f8:92:f3:69:c8:0f:96:39:8b:31:
ea:e4:fd:62:6a:56:7a:1d:57:4e:3a:be:af:bf:64:
48:25:f8:aa:15:89:7f:ef:43:bb:1d:2a:14:7c:ba:
74:d0:ca:72:cc:0c:76:15:fb:b5:3a:eb:87:56:ae:
2c:98:a4:25:bd:08:6a:1a:53:51:bd:08:bb:5b:96:
5e:c2:b2:aa:2a:e8:90:d6:46:0e:a5:36:b0:e5:8e:
22:1c:67:03:98:d4:e1:22:0a:91:35:07:89:23:6f:
5b:1f:b9:2d:e3:ce:73:e4:3d:58:51:fe:bf:81:21:
6d:64:db:28:cb:7d:3f:70:33:e2:df:cc:e4:11:ff:
a4:3d:10:ac:9a:73:a6:e4:64:3e:64:9a:e9:a6:83:
3e:f4:05:bb:6d:8b:9f:d9:f8:59:f2:f5:df:7f:a7:
55:00:cd:50:60:89:52:cf:03:8e:5b:b0:97:57:48:
dc:a3:f1:a9:0e:69:2c:58:89:f1:85:aa:bd:0a:9f:
4a:b0:b5:6b:53:8d:10:d2:e7:21:94:1d:8f:28:a3:
55:ec:94:1a:07:a6:9d:e6:64:1d:cf:0c:83:68:86:
bb:c7:69:60:ab:18:a7:0d:74:67:8b:c1:d5:9a:0f:
23:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A5:00:D0:C9:22:FB:49:7D:57:61:CE:37:32:3C:61:1C:EC:39:05
X509v3 Authority Key Identifier:
keyid:22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/818F58F0EAF411EC9A14E22EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.181.12.0/23
IPv6:
2400:8a20:100::/43
2400:8a20:121::/48
2400:8a20:130::/48
2400:8a20:140::-2400:8a20:151:ffff:ffff:ffff:ffff:ffff
2400:8a20:160::/48
2400:8a20:170::-2400:8a20:19f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
8f:59:22:c7:56:83:53:f5:af:42:71:9e:0a:ac:12:63:28:4e:
fa:77:d7:ae:06:a5:a5:0f:e6:13:ec:11:1b:52:2b:3a:bb:df:
6b:59:bd:9e:8d:28:ac:bb:31:49:f6:1b:6c:24:f0:12:b0:63:
9b:67:6a:82:d0:30:5e:99:36:44:98:3c:f0:8d:c6:70:dd:8b:
65:cf:27:ef:08:16:66:e9:a2:56:e5:fe:98:32:98:70:3a:b1:
dc:d4:c0:69:1a:30:3a:40:21:08:d7:68:08:5a:4b:1d:58:d1:
aa:5d:8a:d0:a0:16:93:c5:5d:8f:c6:4d:69:5b:73:65:cf:79:
6a:6a:ef:fe:a0:5b:ab:95:09:68:81:91:53:45:93:9c:6c:b6:
51:8d:d7:a0:70:7f:c3:07:38:b0:8c:da:8b:c8:09:9b:58:28:
41:74:ae:fd:f4:3b:db:cc:1d:35:a6:f2:1e:93:0c:6e:4a:13:
f5:de:3e:7a:d4:ca:e6:8e:2b:80:06:cf:e2:28:7e:70:91:e3:
1b:75:6f:83:e1:81:06:98:48:03:32:3e:d3:26:f1:9d:f6:ba:
97:c3:d0:f6:54:fb:e9:b1:9b:ba:4f:a3:b9:d3:78:97:e5:66:
55:ca:0c:ce:8d:84:52:4b:46:68:db:83:9d:a4:9b:29:e1:44:
c3:53:ee:dc
-----BEGIN CERTIFICATE-----
MIIFxTCCBK2gAwIBAgICBCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTJEQjExMTAvBgNVBAUTKDIyRURGOUVCNjYwODdGRDBFOTgxN0FFNzM2QzAwMzlE
MTg4MDg4RDUwHhcNMjUwMzE1MDA0NTU1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2Q0Y2RjMy02MjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0QpUJTY5Lhg/m7C1rcVznUao4viS82nID5Y5izHq5P1ialZ6HVdOOr6vv2RI
JfiqFYl/70O7HSoUfLp00MpyzAx2Ffu1OuuHVq4smKQlvQhqGlNRvQi7W5ZewrKq
KuiQ1kYOpTaw5Y4iHGcDmNThIgqRNQeJI29bH7kt485z5D1YUf6/gSFtZNsoy30/
cDPi38zkEf+kPRCsmnOm5GQ+ZJrppoM+9AW7bYuf2fhZ8vXff6dVAM1QYIlSzwOO
W7CXV0jco/GpDmksWInxhaq9Cp9KsLVrU40Q0uchlB2PKKNV7JQaB6ad5mQdzwyD
aIa7x2lgqxinDXRni8HVmg8jFQIDAQABo4IC6TCCAuUwHQYDVR0OBBYEFHalANDJ
IvtJfVdhzjcyPGEc7DkFMB8GA1UdIwQYMBaAFCLt+etmCH/Q6YF65zbAA50YgIjV
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkRCMS8zRkE2OTIwMDgz
QzAxMUVDQjU0QjM5N0ZDNEY5QUUwMi9JdTM1NjJZSWY5RHBnWHJuTnNBRG5SaUFp
TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0l1MzU2MllJZjlEcGdYcm5Oc0FEblJpQWlOVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MTJEQjEvM0ZBNjkyMDA4M0MwMTFFQ0I1NEIzOTdGQzRGOUFFMDIvODE4RjU4RjBF
QUY0MTFFQzlBMTRFMjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwcwYIKwYBBQUHAQcBAf8E
ZDBiMAwEAgABMAYDBAFntQwwUgQCAAIwTAMHBSQAiiABAAMHACQAiiABIQMHACQA
iiABMDASAwcGJACKIAFAAwcBJACKIAFQAwcAJACKIAFgMBIDBwQkAIogAXADBwUk
AIogAYAwDQYJKoZIhvcNAQELBQADggEBAI9ZIsdWg1P1r0JxngqsEmMoTvp3164G
paUP5hPsERtSKzq732tZvZ6NKKy7MUn2G2wk8BKwY5tnaoLQMF6ZNkSYPPCNxnDd
i2XPJ+8IFmbpolbl/pgymHA6sdzUwGkaMDpAIQjXaAhaSx1Y0apditCgFpPFXY/G
TWlbc2XPeWpq7/6gW6uVCWiBkVNFk5xstlGN16Bwf8MHOLCM2ovICZtYKEF0rv30
O9vMHTWm8h6TDG5KE/XePnrUyuaOK4AGz+IofnCR4xt1b4PhgQaYSAMyPtMm8Z32
upfD0PZU++mxm7pPo7nTeJflZlXKDM6NhFJLRmjbg52kmynhRMNT7tw=
-----END CERTIFICATE-----
Generated at Sun Apr 6 02:34:08 2025 by rpki-client