Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/8186EA3008A211EA83441161C4F9AE02.roa
File: 8186EA3008A211EA83441161C4F9AE02.roa (raw, json)
Hash identifier: EaF6+NcOizXvwczdPzpRgDNyRvgLSS+QrNc16c+K0fk=
Subject key identifier: CE:AC:39:D9:47:3C:09:BF:95:B6:50:E7:79:02:B5:FB:CB:EF:6D:7B
Certificate issuer: /CN=A911408F/serialNumber=340890FA2027C5469DA0C5FD83748F66A8892EB7
Certificate serial: 0C17
Authority key identifier: 34:08:90:FA:20:27:C5:46:9D:A0:C5:FD:83:74:8F:66:A8:89:2E:B7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAiQ-iAnxUadoMX9g3SPZqiJLrc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/8186EA3008A211EA83441161C4F9AE02.roa
Signing time: Fri 20 Dec 2024 18:37:29 +0000
ROA not before: Fri 20 Dec 2024 18:37:29 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 137385
IP address blocks: 103.106.240.0/22 maxlen: 24
2402:49c0::/32 maxlen: 32
2402:49c0::/48 maxlen: 48
2402:49c0:1::/48 maxlen: 48
2402:49c0:2::/48 maxlen: 48
2402:49c0:3::/48 maxlen: 48
2402:49c0:4::/48 maxlen: 48
2402:49c0:5::/48 maxlen: 48
2402:49c0:6::/48 maxlen: 48
2402:49c0:7::/48 maxlen: 48
2402:49c0:8::/48 maxlen: 48
2402:49c0:9::/48 maxlen: 48
2402:49c0:a::/48 maxlen: 48
2402:49c0:b::/48 maxlen: 48
2402:49c0:c::/48 maxlen: 48
2402:49c0:d::/48 maxlen: 48
2402:49c0:e::/48 maxlen: 48
2402:49c0:f::/48 maxlen: 48
2402:49c0:10::/48 maxlen: 48
2402:49c0:11::/48 maxlen: 48
2402:49c0:12::/48 maxlen: 48
2402:49c0:13::/48 maxlen: 48
2402:49c0:14::/48 maxlen: 48
2402:49c0:15::/48 maxlen: 48
2402:49c0:16::/48 maxlen: 48
2402:49c0:17::/48 maxlen: 48
2402:49c0:18::/48 maxlen: 48
2402:49c0:19::/48 maxlen: 48
2402:49c0:1a::/48 maxlen: 48
2402:49c0:1b::/48 maxlen: 48
2402:49c0:1c::/48 maxlen: 48
2402:49c0:1d::/48 maxlen: 48
2402:49c0:1e::/48 maxlen: 48
2402:49c0:1f::/48 maxlen: 48
2402:49c0:20::/48 maxlen: 48
2402:49c0:21::/48 maxlen: 48
2402:49c0:22::/48 maxlen: 48
2402:49c0:23::/48 maxlen: 48
2402:49c0:24::/48 maxlen: 48
2402:49c0:25::/48 maxlen: 48
2402:49c0:26::/48 maxlen: 48
2402:49c0:27::/48 maxlen: 48
2402:49c0:28::/48 maxlen: 48
2402:49c0:29::/48 maxlen: 48
2402:49c0:2a::/48 maxlen: 48
2402:49c0:2b::/48 maxlen: 48
2402:49c0:2c::/48 maxlen: 48
2402:49c0:2d::/48 maxlen: 48
2402:49c0:2e::/48 maxlen: 48
2402:49c0:2f::/48 maxlen: 48
2402:49c0:30::/48 maxlen: 48
2402:49c0:31::/48 maxlen: 48
2402:49c0:32::/48 maxlen: 48
2402:49c0:33::/48 maxlen: 48
2402:49c0:34::/48 maxlen: 48
2402:49c0:35::/48 maxlen: 48
2402:49c0:36::/48 maxlen: 48
2402:49c0:37::/48 maxlen: 48
2402:49c0:38::/48 maxlen: 48
2402:49c0:39::/48 maxlen: 48
2402:49c0:3a::/48 maxlen: 48
2402:49c0:3b::/48 maxlen: 48
2402:49c0:3c::/48 maxlen: 48
2402:49c0:3d::/48 maxlen: 48
2402:49c0:3e::/48 maxlen: 48
2402:49c0:3f::/48 maxlen: 48
2402:49c0:40::/48 maxlen: 48
2402:49c0:41::/48 maxlen: 48
2402:49c0:42::/48 maxlen: 48
2402:49c0:43::/48 maxlen: 48
2402:49c0:44::/48 maxlen: 48
2402:49c0:45::/48 maxlen: 48
2402:49c0:46::/48 maxlen: 48
2402:49c0:47::/48 maxlen: 48
2402:49c0:48::/48 maxlen: 48
2402:49c0:49::/48 maxlen: 48
2402:49c0:4a::/48 maxlen: 48
2402:49c0:4b::/48 maxlen: 48
2402:49c0:4c::/48 maxlen: 48
2402:49c0:4d::/48 maxlen: 48
2402:49c0:4e::/48 maxlen: 48
2402:49c0:4f::/48 maxlen: 48
2402:49c0:50::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3095 (0xc17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911408F
Validity
Not Before: Dec 20 18:37:29 2024 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=6765b969-d8e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:2b:48:ab:7b:80:d3:9b:08:50:a3:d8:23:70:
b6:f7:6a:6b:b4:12:3b:c0:8e:93:36:61:81:bf:d3:
8e:fd:35:aa:5b:b8:00:7a:00:45:f7:07:cd:5e:bf:
40:42:ad:9d:d0:c0:da:13:6a:b6:dc:f3:37:7f:45:
e2:d3:0f:18:1c:96:40:d5:43:da:4c:c2:1b:15:93:
4f:d8:ae:9b:f5:ff:5b:a3:50:e4:70:46:f6:ad:e8:
d3:b4:dd:14:99:f2:00:04:99:87:c3:40:5f:f2:5b:
eb:19:94:2f:3f:49:b6:5e:47:da:61:a7:a4:09:03:
5e:a4:d6:52:1f:5a:d6:8d:39:61:cd:18:d6:09:78:
de:94:ff:83:5c:45:96:4e:ab:92:99:90:f7:6f:9a:
37:db:e3:25:b3:07:3b:12:22:b5:52:5e:3c:d6:7e:
cc:28:77:b8:57:2d:25:38:0e:9e:83:1e:eb:42:2c:
12:09:b1:e1:6f:5c:d1:97:df:82:8e:4f:35:b8:0c:
c3:18:df:44:44:24:d3:15:c4:99:b3:49:5e:fc:75:
28:a0:0c:88:dc:64:15:46:57:b6:9a:b2:ee:fe:68:
0c:09:b9:f1:2c:17:cb:77:ff:09:96:ca:54:22:2d:
e4:10:9c:1a:89:68:c5:e0:6b:6e:3d:aa:59:e9:ff:
7b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:AC:39:D9:47:3C:09:BF:95:B6:50:E7:79:02:B5:FB:CB:EF:6D:7B
X509v3 Authority Key Identifier:
keyid:34:08:90:FA:20:27:C5:46:9D:A0:C5:FD:83:74:8F:66:A8:89:2E:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/NAiQ-iAnxUadoMX9g3SPZqiJLrc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAiQ-iAnxUadoMX9g3SPZqiJLrc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/8186EA3008A211EA83441161C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.106.240.0/22
IPv6:
2402:49c0::/32
Signature Algorithm: sha256WithRSAEncryption
86:e1:e2:9a:a7:3b:2a:74:19:3e:87:0b:91:74:80:06:f1:52:
23:1e:63:80:23:59:1a:4b:af:56:07:42:ba:62:18:6d:87:72:
d4:18:70:93:53:37:8f:bf:12:3f:98:e1:7c:95:95:44:8e:a8:
4d:53:9d:33:bf:0d:43:6a:8b:a7:f6:b4:b4:70:39:e2:1e:90:
35:ed:c0:23:52:e9:61:14:38:e4:aa:55:da:cb:6e:d0:b8:5c:
70:ac:c8:5c:10:62:ab:37:7e:75:bd:88:b8:84:ff:55:d2:fa:
6f:eb:58:95:58:a9:70:35:8f:93:0f:bd:08:3a:d5:d5:e8:7c:
13:6a:f2:2d:d0:57:c7:9a:21:c5:ae:64:32:5d:1a:de:97:9b:
85:03:5d:69:67:5f:c5:36:c6:6e:fe:8c:3b:d2:e5:50:1d:8a:
a7:f7:65:31:f6:e9:61:86:c4:f7:fc:e7:a1:a3:fe:19:10:04:
70:6c:9c:10:a5:19:a3:10:e3:5e:be:66:ef:8b:17:47:7d:67:
b3:eb:dd:b7:79:5c:9e:4c:19:c8:29:0c:1e:c7:1b:97:2c:a3:
6d:f2:7d:ea:13:23:3a:76:1a:19:e5:16:d3:73:e9:98:7c:22:
45:21:63:38:9f:56:7c:e1:c8:ae:1e:d3:22:86:2b:e8:1b:f6:
55:c4:be:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:43:40 2025 by rpki-client