Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/6E274D16DDD611ECA03EBA36C4F9AE02.roa
File: 6E274D16DDD611ECA03EBA36C4F9AE02.roa (raw, json)
Hash identifier: FZKq/BMQA7DTUcdtm6Hi8/Vki/AO+Fad+3qTfQuhVi8=
Subject key identifier: 43:A3:61:58:26:CF:3E:05:F7:D6:4F:91:C4:74:A2:F7:4D:96:47:2E
Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19
Certificate serial: 05E0
Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/6E274D16DDD611ECA03EBA36C4F9AE02.roa
Signing time: Thu 13 Mar 2025 03:08:51 +0000
ROA not before: Thu 13 Mar 2025 03:08:51 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 9891
IP address blocks: 27.254.26.0/24 maxlen: 24
27.254.32.0/21 maxlen: 21
27.254.35.0/24 maxlen: 24
27.254.40.0/21 maxlen: 21
27.254.43.0/24 maxlen: 24
27.254.48.0/22 maxlen: 22
27.254.48.0/23 maxlen: 23
27.254.52.0/22 maxlen: 22
27.254.56.0/22 maxlen: 22
27.254.56.0/24 maxlen: 24
27.254.58.0/24 maxlen: 24
27.254.60.0/22 maxlen: 22
27.254.60.0/24 maxlen: 24
27.254.61.0/24 maxlen: 24
27.254.62.0/23 maxlen: 23
27.254.63.0/24 maxlen: 24
27.254.64.0/22 maxlen: 22
27.254.64.0/23 maxlen: 23
27.254.64.0/24 maxlen: 24
27.254.68.0/22 maxlen: 22
27.254.70.0/24 maxlen: 24
27.254.80.0/22 maxlen: 22
27.254.82.0/24 maxlen: 24
27.254.84.0/22 maxlen: 22
27.254.92.0/22 maxlen: 22
27.254.96.0/22 maxlen: 22
27.254.97.0/24 maxlen: 24
27.254.108.0/22 maxlen: 22
27.254.128.0/19 maxlen: 19
27.254.160.0/22 maxlen: 22
27.254.168.0/22 maxlen: 22
27.254.172.0/22 maxlen: 22
27.254.208.0/22 maxlen: 22
27.254.210.0/24 maxlen: 24
27.254.211.0/24 maxlen: 24
27.254.212.0/23 maxlen: 23
27.254.216.0/22 maxlen: 22
27.254.216.0/24 maxlen: 24
27.254.219.0/24 maxlen: 24
202.183.164.0/22 maxlen: 22
202.183.192.0/23 maxlen: 23
202.183.198.0/24 maxlen: 24
202.183.247.0/24 maxlen: 24
203.146.21.0/24 maxlen: 24
203.146.26.0/24 maxlen: 24
203.146.43.0/24 maxlen: 24
203.146.61.0/24 maxlen: 24
203.146.101.0/24 maxlen: 24
203.146.102.0/24 maxlen: 24
203.146.111.0/24 maxlen: 24
203.146.117.0/24 maxlen: 24
203.146.127.0/24 maxlen: 24
203.146.129.0/24 maxlen: 24
203.146.140.0/24 maxlen: 24
203.146.151.0/24 maxlen: 24
203.146.161.0/24 maxlen: 24
203.146.170.0/24 maxlen: 24
203.146.180.0/24 maxlen: 24
203.146.215.0/24 maxlen: 24
203.146.248.0/22 maxlen: 22
203.146.253.0/24 maxlen: 24
203.170.129.0/24 maxlen: 24
203.170.145.0/24 maxlen: 24
203.170.160.0/23 maxlen: 23
203.170.190.0/24 maxlen: 24
203.170.192.0/23 maxlen: 23
203.170.203.0/24 maxlen: 24
203.170.204.0/24 maxlen: 24
203.172.40.0/22 maxlen: 22
210.1.11.0/24 maxlen: 24
210.1.31.0/24 maxlen: 24
210.1.51.0/24 maxlen: 24
210.1.52.0/24 maxlen: 24
210.1.58.0/24 maxlen: 24
210.1.59.0/24 maxlen: 24
210.1.60.0/23 maxlen: 23
2404:b0:2000::/48 maxlen: 48
2404:b0:2001::/48 maxlen: 48
2404:b1::/32 maxlen: 32
2404:b1::/36 maxlen: 36
2404:b1:1000::/36 maxlen: 36
2404:b1:4000::/36 maxlen: 36
2404:b1:8000::/36 maxlen: 36
2404:b1:a000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1504 (0x5e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91262CA
Validity
Not Before: Mar 13 03:08:51 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=67d24c43-1d47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:22:e4:2f:b7:15:5b:0a:71:6f:a4:08:74:3b:
6d:6f:96:e3:ea:f6:a5:b4:37:ef:31:49:71:d3:00:
48:4e:94:16:61:e5:28:29:12:de:a4:dd:71:17:a1:
e8:8d:21:e2:5e:66:43:27:88:06:81:b7:86:f9:13:
bc:80:8f:f4:64:e9:24:dd:a4:b9:3f:e3:07:91:cf:
f7:01:16:ea:65:3c:8f:2c:9d:70:dd:ab:be:d2:4c:
ac:bf:84:89:15:a8:e0:7b:b6:36:8d:a9:29:5a:fb:
16:16:62:94:3c:4d:bc:e4:84:3c:a5:d0:e9:e6:8c:
12:59:14:29:2f:b9:29:40:96:bf:51:27:d9:5e:cf:
2c:49:59:c8:29:7c:7a:28:e9:b7:51:4b:d2:98:f4:
d6:a7:f1:0a:dc:6e:39:04:30:80:bb:07:24:10:0f:
ce:27:94:29:63:e0:b0:7a:cd:bc:ea:dd:3c:38:50:
0d:3b:3b:3e:1a:c1:28:b2:1b:a7:58:f9:f4:63:c1:
6f:53:e5:8e:95:f2:b1:f6:4b:b0:26:b2:36:3d:e4:
cf:e8:f2:11:d0:9e:b0:7f:6c:ff:af:ec:c9:98:c6:
e7:26:9d:a5:71:ff:0a:a0:48:fe:4c:d0:8c:22:7d:
c0:9f:3b:00:e0:b5:fc:c4:bb:df:9c:b1:22:d9:b7:
aa:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:A3:61:58:26:CF:3E:05:F7:D6:4F:91:C4:74:A2:F7:4D:96:47:2E
X509v3 Authority Key Identifier:
keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/6E274D16DDD611ECA03EBA36C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.254.26.0/24
27.254.32.0-27.254.71.255
27.254.80.0/21
27.254.92.0-27.254.99.255
27.254.108.0/22
27.254.128.0-27.254.163.255
27.254.168.0/21
27.254.208.0-27.254.213.255
27.254.216.0/22
202.183.164.0/22
202.183.192.0/23
202.183.198.0/24
202.183.247.0/24
203.146.21.0/24
203.146.26.0/24
203.146.43.0/24
203.146.61.0/24
203.146.101.0-203.146.102.255
203.146.111.0/24
203.146.117.0/24
203.146.127.0/24
203.146.129.0/24
203.146.140.0/24
203.146.151.0/24
203.146.161.0/24
203.146.170.0/24
203.146.180.0/24
203.146.215.0/24
203.146.248.0/22
203.146.253.0/24
203.170.129.0/24
203.170.145.0/24
203.170.160.0/23
203.170.190.0/24
203.170.192.0/23
203.170.203.0-203.170.204.255
203.172.40.0/22
210.1.11.0/24
210.1.31.0/24
210.1.51.0-210.1.52.255
210.1.58.0-210.1.61.255
IPv6:
2404:b0:2000::/47
2404:b1::/32
Signature Algorithm: sha256WithRSAEncryption
a7:ac:12:b8:5c:1a:a1:69:d6:b8:db:d8:0d:a8:30:e7:4a:c3:
e8:f8:a5:72:c4:ca:c1:eb:f0:e2:92:46:0d:07:f5:13:ac:08:
af:7d:95:ca:2b:c0:5d:f3:bb:de:a1:9b:7e:1c:6e:92:33:e4:
01:8d:76:a4:27:46:31:4d:5d:d8:a1:a4:06:85:10:93:ee:5a:
44:bd:1a:9e:c5:5a:e3:7a:9f:80:a3:4b:e5:69:53:5a:6b:1c:
c7:d9:c7:e1:44:63:61:79:ae:93:bb:51:3b:a4:f6:3f:ac:6e:
76:72:c8:08:79:5c:13:43:55:eb:c2:61:ba:9d:24:a0:2c:64:
ad:d9:0d:0f:ac:36:1c:be:b7:e1:9a:af:80:f1:4b:ae:74:9c:
fd:2a:81:c9:26:68:a5:11:8c:51:e3:4e:25:21:ee:d9:ea:ba:
f8:d7:03:1a:88:be:1e:d2:fd:87:c4:06:53:4b:ec:8d:84:3d:
f9:f1:6b:08:ea:76:27:b7:1b:bd:85:01:da:a0:b6:e2:53:e5:
2d:9d:7d:93:18:e0:f3:88:d0:8e:9b:7a:b6:3d:7b:ee:3a:27:
24:e8:e8:b6:c6:98:97:04:47:50:97:e2:06:ae:94:ac:4a:94:
9e:50:10:99:ba:c0:92:87:52:10:a0:b1:89:43:a8:67:fa:7d:
85:a8:9b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:44:26 2025 by rpki-client