Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/DE0A75A605EB11EA94CD7287C4F9AE02.roa
File: DE0A75A605EB11EA94CD7287C4F9AE02.roa (raw, json)
Hash identifier: rQZ+LsPDuc4EXnC/GiBOmzFAxUE3pMz5tb4kdOhgWwA=
Subject key identifier: 24:65:91:1E:19:1F:04:71:87:4B:8E:49:07:35:E6:46:29:1D:46:54
Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452
Certificate serial: 106A
Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/DE0A75A605EB11EA94CD7287C4F9AE02.roa
Signing time: Mon 02 Dec 2024 17:05:16 +0000
ROA not before: Mon 02 Dec 2024 17:05:16 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 134812
IP address blocks: 103.16.24.0/23 maxlen: 24
103.137.80.0/23 maxlen: 23
103.137.80.0/24 maxlen: 24
103.137.81.0/24 maxlen: 24
2001:df5:7e00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4202 (0x106a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916022F
Validity
Not Before: Dec 2 17:05:16 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=674de8cc-436b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5f:29:45:0e:50:de:44:bb:78:2f:b6:02:af:
66:52:71:a5:8c:14:47:de:0a:3b:00:21:0b:e9:c3:
31:b7:61:1d:d4:fb:5b:dd:c5:ef:c4:49:24:69:c7:
cd:e0:91:22:64:60:24:6b:8e:d9:06:b2:7b:39:69:
f0:a3:c3:71:a6:ba:48:77:df:46:62:68:64:48:e0:
2b:05:a4:5d:b4:38:61:47:e4:29:5f:c2:e9:f1:4a:
8d:88:8e:eb:a2:d9:01:d3:56:24:da:72:5f:2b:38:
84:28:64:24:65:8d:73:30:f5:24:8d:a3:1c:03:8f:
04:a5:a2:33:4f:c1:88:99:41:26:de:81:e5:8c:98:
3a:69:b3:82:a7:4f:d9:89:e5:a9:16:b7:4e:d9:6a:
ed:18:ce:ed:8c:8e:09:88:a7:41:72:fb:c4:63:92:
d1:c9:79:9f:c4:55:82:68:75:c8:73:49:0a:af:2c:
9c:fb:e8:7d:1b:b8:b9:67:d8:d1:61:c7:f9:15:1f:
55:7d:49:68:34:b1:68:3a:c3:ae:fd:91:80:97:65:
a3:d4:93:a0:c8:6f:57:47:c9:36:64:b4:2c:97:73:
26:8e:4f:98:e4:8f:b7:1b:fc:39:07:66:93:e7:77:
24:57:1c:ec:55:50:33:b7:22:a3:1b:d1:89:13:e0:
80:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:65:91:1E:19:1F:04:71:87:4B:8E:49:07:35:E6:46:29:1D:46:54
X509v3 Authority Key Identifier:
keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/DE0A75A605EB11EA94CD7287C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.16.24.0/23
103.137.80.0/23
IPv6:
2001:df5:7e00::/48
Signature Algorithm: sha256WithRSAEncryption
2c:72:ab:35:f8:72:7b:a6:35:7f:4c:fe:f1:22:72:d5:b3:ca:
1e:1c:cc:26:bd:40:03:43:1a:92:b7:0c:36:fe:79:e5:83:7e:
1e:ef:ca:80:6a:3a:d1:c7:63:86:dd:3d:f0:39:1d:a2:d3:e6:
b4:aa:b0:9c:97:d5:6b:11:3a:e6:74:2e:16:3b:9e:25:37:25:
8e:15:b4:bd:72:56:5e:84:9f:85:c5:c5:67:b4:17:f2:3f:fb:
e4:4c:e1:d5:0b:7c:4a:da:a5:c5:e1:d3:6e:1f:c8:81:a6:33:
58:6e:6f:6f:9e:70:b0:f1:a6:d1:0f:f9:99:2c:85:91:06:89:
ea:35:a7:fa:4a:88:27:8e:26:c6:c3:55:dc:2d:14:55:69:7a:
ec:ff:29:a1:1f:59:76:75:ce:fe:bc:1a:f9:4a:08:a9:05:89:
32:c2:66:db:53:61:93:0a:ef:5d:b3:50:4a:70:08:0a:74:2b:
2a:6b:1a:c0:03:83:5a:a4:8b:ac:a9:39:49:9e:07:c1:4c:89:
61:8b:fa:cf:09:8d:1b:a4:fa:83:7c:30:91:17:88:42:33:3a:
b6:d7:5c:e7:46:d7:9d:e3:9c:41:df:b3:2c:d7:f7:c2:15:c7:
d9:71:1a:04:33:18:17:3c:6d:04:2a:d7:27:4a:64:d5:28:1d:
b5:01:1d:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:48:53 2025 by rpki-client