Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/F0C8DB1CA54E11EF8592FD66C4F9AE02.roa
File: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (raw, json)
Hash identifier: jKfefe498JUViLthlsH3WQDRzc9fBkLXEf9WqoDEonw=
Subject key identifier: 5F:C9:3E:8C:BA:B2:51:4D:D7:73:3F:AE:3B:87:A9:FC:65:D9:45:9B
Certificate issuer: /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E
Certificate serial: 3D
Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/F0C8DB1CA54E11EF8592FD66C4F9AE02.roa
Signing time: Wed 05 Feb 2025 06:08:58 +0000
ROA not before: Wed 05 Feb 2025 06:08:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9266
IP address blocks: 103.36.152.0/22 maxlen: 22
103.65.216.0/22 maxlen: 22
103.225.108.0/22 maxlen: 22
202.1.116.0/22 maxlen: 22
202.1.116.0/24 maxlen: 24
202.1.117.0/24 maxlen: 24
202.1.118.0/24 maxlen: 24
202.1.119.0/24 maxlen: 24
203.5.244.0/24 maxlen: 24
203.10.124.0/24 maxlen: 24
203.12.116.0/24 maxlen: 24
203.14.106.0/24 maxlen: 24
203.14.193.0/24 maxlen: 24
203.18.151.0/24 maxlen: 24
203.19.52.0/24 maxlen: 24
203.19.220.0/24 maxlen: 24
203.20.110.0/24 maxlen: 24
203.20.111.0/24 maxlen: 24
203.21.22.0/24 maxlen: 24
203.22.169.0/24 maxlen: 24
203.23.50.0/24 maxlen: 24
203.23.71.0/24 maxlen: 24
203.24.174.0/23 maxlen: 24
203.25.68.0/22 maxlen: 22
203.25.69.0/24 maxlen: 24
203.25.70.0/24 maxlen: 24
203.25.71.0/24 maxlen: 24
203.25.123.0/24 maxlen: 24
203.25.158.0/24 maxlen: 24
203.26.171.0/24 maxlen: 24
203.26.226.0/23 maxlen: 23
203.29.21.0/24 maxlen: 24
203.29.127.0/24 maxlen: 24
203.30.78.0/24 maxlen: 24
203.31.214.0/24 maxlen: 24
203.32.44.0/23 maxlen: 24
203.32.47.0/24 maxlen: 24
203.33.28.0/24 maxlen: 24
203.33.58.0/23 maxlen: 24
203.33.108.0/23 maxlen: 24
203.34.167.0/24 maxlen: 24
203.55.194.0/23 maxlen: 24
203.62.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61 (0x3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911D848
Validity
Not Before: Feb 5 06:08:58 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67a3007a-9899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6b:c7:82:d2:b3:03:83:c7:c3:49:21:ef:4d:
36:89:fa:8b:5b:4e:13:6f:39:23:49:58:6b:77:55:
c5:80:76:cb:65:c8:91:cd:ae:76:e9:12:78:5c:c0:
23:10:ae:02:a7:00:42:21:87:d9:45:19:87:a0:b8:
03:bc:11:fd:9e:73:c9:de:07:13:37:35:d4:a0:13:
ee:3a:75:26:24:bc:f8:90:91:8c:96:e9:c2:7d:55:
0c:43:36:bb:f6:99:d5:1e:fd:10:14:02:9d:98:00:
38:00:6a:a9:de:45:bc:51:c0:43:bc:67:02:0f:5d:
ba:a0:d2:c0:77:9f:6f:5c:87:4b:9b:ec:f3:38:d0:
cb:3b:8f:ce:a7:b6:ec:70:9f:cb:f5:46:ce:88:9a:
35:6d:7a:ea:86:84:3e:4a:77:e8:91:99:0e:42:28:
92:a6:79:86:f9:6c:b7:9d:47:62:70:36:9b:38:11:
41:47:06:aa:d0:ea:c8:a1:85:fa:51:ae:56:4f:28:
0d:f1:2a:9e:5e:7e:e9:06:92:84:19:6b:27:01:63:
71:e1:c0:ae:1b:bb:3b:f4:d9:ac:8f:17:ec:9c:ec:
ed:c4:07:c0:6b:19:d2:35:ab:8d:1b:73:21:b4:6c:
e0:3d:4a:7c:aa:af:13:8c:3a:f3:9d:a0:f6:8e:e0:
1c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C9:3E:8C:BA:B2:51:4D:D7:73:3F:AE:3B:87:A9:FC:65:D9:45:9B
X509v3 Authority Key Identifier:
keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/F0C8DB1CA54E11EF8592FD66C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.36.152.0/22
103.65.216.0/22
103.225.108.0/22
202.1.116.0/22
203.5.244.0/24
203.10.124.0/24
203.12.116.0/24
203.14.106.0/24
203.14.193.0/24
203.18.151.0/24
203.19.52.0/24
203.19.220.0/24
203.20.110.0/23
203.21.22.0/24
203.22.169.0/24
203.23.50.0/24
203.23.71.0/24
203.24.174.0/23
203.25.68.0/22
203.25.123.0/24
203.25.158.0/24
203.26.171.0/24
203.26.226.0/23
203.29.21.0/24
203.29.127.0/24
203.30.78.0/24
203.31.214.0/24
203.32.44.0/23
203.32.47.0/24
203.33.28.0/24
203.33.58.0/23
203.33.108.0/23
203.34.167.0/24
203.55.194.0/23
203.62.147.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:96:53:37:ed:48:65:cf:8e:0e:77:32:df:2b:7f:12:ad:5d:
47:30:d2:19:e6:c9:e1:04:22:80:95:53:87:40:51:81:7c:b7:
30:86:22:45:11:d9:ef:07:3b:cb:95:85:0c:c3:63:3d:ee:1f:
f5:f2:4b:ab:3e:85:b2:53:7d:fe:be:ef:f9:f1:74:4e:1f:cc:
44:fe:4d:67:95:02:e6:f6:ed:51:71:d2:fb:51:28:af:de:dc:
13:a3:f6:23:e2:53:3f:a5:79:70:8c:1d:7c:42:98:b4:2d:7d:
01:ca:e8:0e:80:bb:33:a0:48:fc:b0:54:e3:48:54:79:33:c5:
01:d8:93:92:cb:e0:8c:87:2b:54:c9:fd:f7:d1:7f:33:46:e4:
44:a5:5a:8d:2a:96:df:51:42:81:e8:a0:31:c2:2a:b4:3f:f7:
47:28:c9:bf:48:30:9d:8a:ea:dc:61:7d:5c:b5:a5:0f:bf:ff:
ac:d9:35:05:f1:e4:ea:24:a7:9d:b3:ba:9f:c8:c7:5f:f1:91:
84:75:c3:7f:4b:02:ec:bd:09:ad:1d:14:36:6a:e2:30:45:ce:
4e:1a:ad:5c:cf:f8:29:e5:a9:89:ed:ab:19:d3:ae:18:46:a9:
30:7d:ca:5e:83:b0:22:a4:90:d8:a9:da:29:29:c2:c7:b5:56:
c9:18:81:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:26:32 2025 by rpki-client