Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/1AC1982A8C6A11EB91832D52C4F9AE02.roa
File: 1AC1982A8C6A11EB91832D52C4F9AE02.roa (raw, json)
Hash identifier: fSfAPi/bUi9k15IOKds7b6yXEktxoZjFwfG44RAp5IM=
Subject key identifier: 07:A8:B9:F5:C2:86:95:7E:88:22:7F:35:71:16:27:DF:63:FC:8E:A1
Certificate issuer: /CN=A91293E9/serialNumber=D9C615D10B41E6E569865CCAA7FE280D128E311C
Certificate serial: 0602
Authority key identifier: D9:C6:15:D1:0B:41:E6:E5:69:86:5C:CA:A7:FE:28:0D:12:8E:31:1C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/1AC1982A8C6A11EB91832D52C4F9AE02.roa
Signing time: Mon 02 Dec 2024 22:32:50 +0000
ROA not before: Mon 02 Dec 2024 22:32:50 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 45499
IP address blocks: 103.5.60.0/22 maxlen: 22
103.5.60.0/24 maxlen: 24
103.5.61.0/24 maxlen: 24
103.5.62.0/24 maxlen: 24
103.5.63.0/24 maxlen: 24
110.5.64.0/21 maxlen: 21
110.5.64.0/24 maxlen: 24
110.5.65.0/24 maxlen: 24
110.5.66.0/24 maxlen: 24
110.5.67.0/24 maxlen: 24
110.5.68.0/24 maxlen: 24
110.5.69.0/24 maxlen: 24
110.5.70.0/24 maxlen: 24
110.5.71.0/24 maxlen: 24
111.235.80.0/20 maxlen: 20
111.235.80.0/24 maxlen: 24
111.235.81.0/24 maxlen: 24
111.235.82.0/24 maxlen: 24
111.235.83.0/24 maxlen: 24
111.235.84.0/24 maxlen: 24
111.235.85.0/24 maxlen: 24
111.235.86.0/24 maxlen: 24
111.235.87.0/24 maxlen: 24
111.235.88.0/24 maxlen: 24
111.235.89.0/24 maxlen: 24
111.235.90.0/24 maxlen: 24
111.235.91.0/24 maxlen: 24
111.235.92.0/24 maxlen: 24
111.235.93.0/24 maxlen: 24
111.235.94.0/24 maxlen: 24
111.235.95.0/24 maxlen: 24
116.206.224.0/22 maxlen: 22
116.206.224.0/24 maxlen: 24
116.206.225.0/24 maxlen: 24
116.206.226.0/24 maxlen: 24
116.206.227.0/24 maxlen: 24
203.118.244.0/22 maxlen: 22
203.118.244.0/24 maxlen: 24
203.118.245.0/24 maxlen: 24
203.118.246.0/24 maxlen: 24
203.118.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1538 (0x602)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91293E9
Validity
Not Before: Dec 2 22:32:50 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=674e3592-85f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8f:55:95:6c:e9:cb:37:e3:da:75:bc:ac:3a:
e0:70:3b:c8:34:f3:3c:e9:0c:64:85:38:c7:e9:cb:
d8:2d:64:a9:db:4c:fb:7f:7a:6d:5c:b1:69:88:fc:
1f:79:41:75:8e:1c:7e:57:77:30:8d:73:ac:68:cc:
2e:60:34:63:38:72:19:0d:3c:29:7d:ca:cc:53:f5:
3e:52:7e:10:d4:45:ef:00:91:ff:c8:73:26:5e:ca:
ec:75:29:a2:40:7b:71:48:57:00:89:20:18:89:8c:
33:a8:47:a0:e6:55:54:b2:2a:22:45:62:31:52:ef:
d8:16:da:33:ca:1d:90:d1:28:68:fd:5b:db:77:58:
0f:0c:59:bf:77:ae:0d:e9:1b:fd:db:c2:b9:69:4a:
bf:55:3b:f6:d5:6e:86:b8:d7:ff:db:77:73:02:ec:
42:6f:6c:a6:44:3c:bc:78:77:04:d0:fa:76:e9:cd:
6b:63:a3:cc:80:54:36:d0:03:0c:4d:44:c3:57:9c:
93:8a:6b:f2:f3:85:88:8c:f5:aa:80:1b:c5:86:7e:
c6:62:32:6a:20:58:58:54:85:6b:a2:d5:a3:43:ca:
f9:c8:e7:25:54:ee:1c:ba:cb:79:67:d8:05:49:31:
41:ec:41:7f:4f:18:dd:9a:7a:c2:ff:84:de:58:4b:
0a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A8:B9:F5:C2:86:95:7E:88:22:7F:35:71:16:27:DF:63:FC:8E:A1
X509v3 Authority Key Identifier:
keyid:D9:C6:15:D1:0B:41:E6:E5:69:86:5C:CA:A7:FE:28:0D:12:8E:31:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/1AC1982A8C6A11EB91832D52C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.5.60.0/22
110.5.64.0/21
111.235.80.0/20
116.206.224.0/22
203.118.244.0/22
Signature Algorithm: sha256WithRSAEncryption
77:96:f9:20:a2:3b:46:f3:82:01:6e:d7:df:3e:54:d5:22:74:
ef:5c:77:eb:3d:bd:78:32:8b:e0:a0:ab:8b:a0:51:12:e9:c5:
cc:5c:a0:bc:10:a8:aa:d8:44:77:fe:9e:49:2a:47:b1:3d:b1:
93:94:36:aa:d4:60:85:30:4b:35:9d:9c:51:72:0a:92:41:60:
4c:87:e0:18:85:3f:13:32:4b:a4:d1:19:0c:1d:c4:bc:1a:5c:
58:6c:9b:2d:76:64:7f:78:04:73:41:5f:21:96:15:59:7b:82:
d7:b6:d0:83:3d:e1:10:54:9c:97:bd:26:88:a8:f9:15:67:83:
dd:c8:b2:72:76:0a:c4:3c:71:7d:0b:5f:9d:d7:cf:c0:f9:e0:
92:7f:e2:49:a9:cc:d9:e9:5e:2a:20:2a:e2:1c:dc:d9:c8:a7:
bc:15:3b:de:87:8f:39:4a:57:c1:26:cf:25:2b:f7:87:55:0f:
7c:81:3b:87:9e:7f:aa:5d:0d:5e:64:53:82:82:0e:f0:a3:6e:
fb:9d:31:4f:b8:2e:48:b8:9a:fb:e8:73:92:eb:24:e9:5a:b9:
4a:a3:6e:a6:92:27:32:37:aa:4b:14:a7:58:e2:8e:2e:90:07:
bc:b9:bc:76:27:d3:3f:d2:af:85:4e:fd:48:27:1d:e5:60:81:
fe:d7:67:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 04:52:39 2025 by rpki-client