Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/0C77B118353C11EFB0FA2527C4F9AE02.roa
File: 0C77B118353C11EFB0FA2527C4F9AE02.roa (raw, json)
Hash identifier: QShpdlaH2JhmQM6vt0hL9sZUcnjmcz3jnc8IBdc2Z0E=
Subject key identifier: D7:3D:68:60:6D:60:FE:78:E8:87:7A:1A:43:01:1F:40:ED:43:70:0A
Certificate issuer: /CN=A9153646/serialNumber=3492EFFE9622B1FFF881597003763C1BA24A1E06
Certificate serial: 06EB
Authority key identifier: 34:92:EF:FE:96:22:B1:FF:F8:81:59:70:03:76:3C:1B:A2:4A:1E:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/0C77B118353C11EFB0FA2527C4F9AE02.roa
Signing time: Sun 22 Dec 2024 18:26:31 +0000
ROA not before: Sun 22 Dec 2024 18:26:31 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 64074
IP address blocks: 103.203.176.0/24 maxlen: 24
103.203.179.0/24 maxlen: 24
223.29.212.0/24 maxlen: 24
223.29.213.0/24 maxlen: 24
223.29.215.0/24 maxlen: 24
2401:b8c0::/32 maxlen: 32
2401:b8c0::/48 maxlen: 48
2401:b8c0:1::/48 maxlen: 48
2401:b8c0:2::/48 maxlen: 48
2401:b8c0:3::/48 maxlen: 48
2401:b8c0:4::/48 maxlen: 48
2401:b8c0:5::/48 maxlen: 48
2401:b8c0:6::/48 maxlen: 48
2401:b8c0:7::/48 maxlen: 48
2401:b8c0:8::/48 maxlen: 48
2401:b8c0:9::/48 maxlen: 48
2401:b8c0:b::/48 maxlen: 48
2401:b8c0:c::/48 maxlen: 48
2401:b8c0:e::/48 maxlen: 48
2401:b8c0:f::/48 maxlen: 48
2401:b8c0:8020::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1771 (0x6eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9153646
Validity
Not Before: Dec 22 18:26:31 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=676859d7-ebad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:89:f6:eb:ef:a9:ea:27:db:cd:2a:f2:31:88:
74:be:58:8b:7d:ca:a2:ed:e8:bf:73:a3:d4:81:eb:
36:07:af:7d:22:eb:b8:e3:30:f5:d1:96:76:44:2e:
2e:3c:76:84:da:6c:b8:4b:e3:52:2c:a4:37:48:fd:
38:4b:6a:3b:13:7b:eb:4d:a6:dc:f3:c4:f7:9e:f8:
2b:50:20:d1:2e:59:87:c9:e0:70:e4:26:97:49:66:
1e:e4:80:c3:25:42:5d:1e:dd:77:bc:83:94:7a:66:
75:02:e4:10:f1:70:72:88:ba:fe:9b:4d:22:69:34:
99:db:c6:0e:85:89:44:46:6f:ef:16:5d:cd:ae:6f:
b2:c6:7c:57:5b:98:3a:b9:03:5d:39:f6:30:06:9d:
6d:c7:87:be:9d:4f:c2:a5:ee:93:f0:98:49:27:74:
c0:a5:29:18:dc:1b:d0:6b:23:0d:15:4d:e4:61:87:
14:01:48:d5:c5:77:96:c5:ed:32:91:5b:9f:3f:23:
93:c5:80:7a:7b:49:84:bc:2b:26:32:7a:57:00:74:
6e:84:2d:38:26:33:6f:d7:89:f5:8a:c9:53:0b:8c:
ad:75:2e:4e:2e:2e:da:b1:f9:56:bf:58:3c:e7:08:
ec:b0:4a:db:9f:c7:49:b5:4f:08:df:37:06:ea:ae:
09:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:3D:68:60:6D:60:FE:78:E8:87:7A:1A:43:01:1F:40:ED:43:70:0A
X509v3 Authority Key Identifier:
keyid:34:92:EF:FE:96:22:B1:FF:F8:81:59:70:03:76:3C:1B:A2:4A:1E:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/NJLv_pYisf_4gVlwA3Y8G6JKHgY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/0C77B118353C11EFB0FA2527C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.203.176.0/24
103.203.179.0/24
223.29.212.0/23
223.29.215.0/24
IPv6:
2401:b8c0::/32
Signature Algorithm: sha256WithRSAEncryption
05:e8:8b:f2:5f:8c:d8:35:a3:1e:23:ed:45:90:8f:e4:ac:61:
50:aa:f6:f7:93:c3:55:00:27:04:09:28:6e:6e:be:8d:de:87:
f0:58:45:5d:ae:a2:89:f4:45:9b:66:15:0c:2c:4a:fc:f6:ba:
44:b0:a2:c5:71:dc:72:69:f6:ab:a5:25:a3:8a:1d:f2:c3:e7:
42:11:26:d5:6d:02:8b:42:20:af:e9:c5:31:bc:6c:96:d0:e2:
4e:b2:aa:19:67:71:80:66:36:70:a6:2d:ac:98:e4:06:80:5c:
07:a5:40:2f:06:01:fc:72:08:7c:82:05:16:f9:40:ee:25:59:
5f:90:da:dc:88:78:52:20:cb:0a:4c:d2:4b:bf:8f:d6:2d:57:
ab:e2:20:82:1b:a9:fc:b0:4f:f9:06:e0:da:97:80:61:2c:51:
e4:33:45:96:24:ef:75:f3:b5:aa:2e:5d:87:0b:8b:de:2c:4c:
fe:51:10:ed:03:5d:19:f8:67:1d:52:ea:9e:ba:52:2e:c4:f8:
dd:27:a2:9b:27:82:47:b4:75:0d:c3:a1:17:b6:d4:97:f0:86:
0a:ed:85:0f:2f:84:09:8d:0e:58:0c:67:5b:9a:95:aa:28:fa:
c7:6c:44:82:1e:1a:1e:15:99:97:46:00:2c:8a:ea:c1:3a:5e:
24:0d:d9:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:07:41 2025 by rpki-client