Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/F648238E766911EC9EADC512C4F9AE02.roa
File: F648238E766911EC9EADC512C4F9AE02.roa (raw, json)
Hash identifier: cXtJZrxFT7iK9u3HHySRT4oRhzJJpyziBzdACacCcms=
Subject key identifier: FF:6B:68:15:AE:42:FF:BC:B3:10:4A:81:9D:8B:21:06:45:FA:E8:9D
Certificate issuer: /CN=A912147F/serialNumber=B6F797D84F2E49B8BB322206B7946D27918CA164
Certificate serial: 0B92
Authority key identifier: B6:F7:97:D8:4F:2E:49:B8:BB:32:22:06:B7:94:6D:27:91:8C:A1:64
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/F648238E766911EC9EADC512C4F9AE02.roa
Signing time: Fri 20 Dec 2024 19:07:35 +0000
ROA not before: Fri 20 Dec 2024 19:07:35 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 137048
IP address blocks: 103.103.32.0/24 maxlen: 24
103.103.33.0/24 maxlen: 24
103.103.34.0/24 maxlen: 24
103.103.35.0/24 maxlen: 24
2401:ee40::/32 maxlen: 32
2401:ee40::/48 maxlen: 48
2401:ee40:1::/48 maxlen: 48
2401:ee40:2::/48 maxlen: 48
2401:ee40:3::/48 maxlen: 48
2401:ee40:4::/48 maxlen: 48
2401:ee40:5::/48 maxlen: 48
2401:ee40:6::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2962 (0xb92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912147F
Validity
Not Before: Dec 20 19:07:35 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=6765c076-b132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ce:f6:b6:5f:be:60:08:35:2e:0f:9a:79:cc:
cb:54:4b:87:81:84:4a:cf:d7:f8:8d:69:24:6f:0e:
d6:94:3d:7f:0b:f9:3a:e0:47:e9:ac:e1:d0:60:ed:
a0:7c:4a:1e:c9:1f:a5:7d:2d:60:87:27:e6:2b:55:
61:84:d3:41:44:24:af:56:7e:68:e2:3c:42:d4:36:
49:8d:58:65:e7:cd:21:22:96:93:31:5b:fc:02:3d:
7c:f5:8d:9b:d7:b0:82:bd:97:1e:83:50:56:a6:05:
9b:a1:2e:b8:c3:e9:3b:61:cf:ee:46:0a:e2:67:67:
63:a9:5d:34:44:7a:5e:2c:9f:13:f0:32:1a:e9:85:
42:f8:fa:7d:44:27:f8:52:33:a2:57:b5:6e:07:43:
77:a2:de:7b:35:3e:66:58:4c:68:1c:4b:a6:a5:8a:
bb:27:17:34:37:13:24:66:12:79:c8:ab:1d:48:55:
71:7e:b9:de:4e:79:4b:df:19:47:79:1f:5d:11:ee:
87:c9:5d:b1:ff:72:4d:52:4b:45:34:31:4f:19:6b:
d6:83:26:ca:35:b5:9f:21:4b:37:2a:e2:8e:20:bf:
00:5c:1d:58:c6:71:41:f9:e6:70:f6:84:9e:d8:70:
a5:32:b1:96:22:60:5f:38:a3:cb:82:40:e7:80:41:
a0:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:6B:68:15:AE:42:FF:BC:B3:10:4A:81:9D:8B:21:06:45:FA:E8:9D
X509v3 Authority Key Identifier:
keyid:B6:F7:97:D8:4F:2E:49:B8:BB:32:22:06:B7:94:6D:27:91:8C:A1:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/F648238E766911EC9EADC512C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.103.32.0/22
IPv6:
2401:ee40::/32
Signature Algorithm: sha256WithRSAEncryption
12:7e:ce:00:bd:4a:f9:f8:fb:ce:8d:d9:62:d4:c2:5e:00:40:
4f:b0:e0:30:42:3e:77:83:a6:d4:89:3d:28:30:df:ac:37:5f:
c0:68:cd:85:08:cf:1c:92:db:3d:e2:80:bc:c4:13:9a:ea:27:
82:44:c3:52:48:6f:70:07:7f:c7:31:5e:89:49:5f:53:01:26:
a5:bc:4e:2e:65:ea:a7:b5:30:8e:eb:e8:4b:36:56:38:06:09:
66:0b:dd:e9:65:61:63:32:b6:ef:3d:b3:33:23:c2:b5:b6:3d:
16:ad:e6:e2:ca:be:a8:1c:26:82:b4:21:97:26:9a:01:74:e4:
24:a3:78:20:db:1d:d7:1e:ee:12:82:64:ca:39:dd:a3:16:de:
39:14:a4:bf:c3:8d:48:d1:31:68:f1:ed:49:23:90:1a:25:44:
f3:9a:f6:9f:52:14:58:20:5e:75:4e:53:bc:b1:cf:9f:00:ca:
f1:aa:99:e9:f0:d6:db:9a:3b:b4:95:fb:3c:17:95:02:59:94:
52:22:f3:e7:e6:c3:09:f7:0d:d7:3b:93:1a:2b:54:c9:68:98:
ee:f5:90:34:9b:b8:01:93:b0:56:2c:39:81:09:4e:17:f4:62:
db:17:02:05:66:e4:c6:c2:20:a1:a5:d9:10:ef:27:a4:97:cb:
f0:15:92:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:12:09 2025 by rpki-client