Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9184359/335E6562E4C811EDBAABC55CC4F9AE02/F27BE0E2E4CC11EDBAFF045BC4F9AE02.roa
File: F27BE0E2E4CC11EDBAFF045BC4F9AE02.roa (raw, json)
Hash identifier: FcVq7MapsG0tiRr/INQ1mEf1XPC8HnzEbnMHkTHPq4w=
Subject key identifier: 0E:F1:EF:0F:32:00:C2:99:39:BD:EB:6F:2B:FE:8A:B4:7D:A6:CB:78
Certificate issuer: /CN=A9184359/serialNumber=999BA37411028A62FB515DCF028CDA2DC9ABC9D1
Certificate serial: 0132
Authority key identifier: 99:9B:A3:74:11:02:8A:62:FB:51:5D:CF:02:8C:DA:2D:C9:AB:C9:D1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZujdBECimL7UV3PAozaLcmrydE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9184359/335E6562E4C811EDBAABC55CC4F9AE02/F27BE0E2E4CC11EDBAFF045BC4F9AE02.roa
Signing time: Thu 05 Dec 2024 03:17:53 +0000
ROA not before: Thu 05 Dec 2024 03:17:53 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 38813
IP address blocks: 103.104.82.0/24 maxlen: 24
103.104.83.0/24 maxlen: 24
111.118.208.0/24 maxlen: 24
111.118.209.0/24 maxlen: 24
111.118.210.0/24 maxlen: 24
111.118.211.0/24 maxlen: 24
202.150.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 306 (0x132)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9184359
Validity
Not Before: Dec 5 03:17:53 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=67511b61-07d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b8:61:12:8e:46:44:35:1b:29:6d:01:7a:e0:
6a:bb:be:16:b5:8d:6a:f8:59:b1:ab:2e:20:df:46:
1a:dd:b2:e1:6a:86:6c:2a:af:f2:f8:b2:e3:61:ed:
31:a7:a9:78:56:f8:d2:b8:e2:f8:9a:58:ff:b9:d4:
4e:89:54:de:bd:0d:76:b9:d7:1d:66:2a:d1:ce:45:
1e:d2:14:b9:96:8c:f6:17:54:cb:e8:03:bc:13:56:
f3:29:7a:30:d4:06:ce:0a:2c:f9:0e:ce:bf:6d:08:
e8:3d:81:0e:c5:3c:2d:1f:a3:a9:7b:c3:14:33:c9:
62:2a:92:fe:0e:f5:46:ac:4d:14:9f:49:03:bb:f2:
c0:b3:34:d6:61:03:7f:99:9f:03:68:26:36:e7:e2:
1d:61:17:99:dc:e1:93:b2:80:67:89:0d:f2:70:38:
b8:72:cf:eb:d6:7e:d0:c4:4e:f2:30:98:ec:68:c5:
e5:c1:6c:b1:f9:d0:a9:9e:2d:39:1e:c8:13:43:1d:
d0:66:be:58:46:50:01:09:e9:db:0f:43:03:34:81:
52:4e:47:22:f5:2b:31:5b:f5:c1:7b:6e:19:a8:fa:
22:6d:34:0e:eb:40:0d:fe:8a:ad:85:d3:61:fe:28:
9a:d0:f0:4f:43:6f:8d:08:4b:e5:02:79:86:85:da:
bd:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F1:EF:0F:32:00:C2:99:39:BD:EB:6F:2B:FE:8A:B4:7D:A6:CB:78
X509v3 Authority Key Identifier:
keyid:99:9B:A3:74:11:02:8A:62:FB:51:5D:CF:02:8C:DA:2D:C9:AB:C9:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9184359/335E6562E4C811EDBAABC55CC4F9AE02/mZujdBECimL7UV3PAozaLcmrydE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZujdBECimL7UV3PAozaLcmrydE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184359/335E6562E4C811EDBAABC55CC4F9AE02/F27BE0E2E4CC11EDBAFF045BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.104.82.0/23
111.118.208.0/22
202.150.60.0/24
Signature Algorithm: sha256WithRSAEncryption
55:f3:da:19:db:ec:39:76:9f:55:19:0c:e0:58:6e:dc:66:a2:
bf:90:2f:d6:ca:24:8d:5f:ab:36:9f:12:e4:ab:54:ef:35:51:
e5:50:c0:6d:af:40:c7:30:ff:42:95:a6:59:a7:14:36:62:b9:
4c:1c:22:b9:84:e4:69:97:a5:42:76:68:8c:87:46:ac:76:15:
79:79:f4:d7:e8:ef:ba:ed:38:6b:6c:9e:56:65:dd:67:49:fb:
d1:c9:9e:df:23:4b:b9:ae:12:a1:94:d2:81:82:1f:d7:5c:7b:
56:f8:f4:21:74:b5:3b:79:48:7c:ac:4a:60:36:38:db:67:17:
b6:5a:c7:9d:62:75:82:29:9d:0e:94:e8:b2:91:e5:be:00:4d:
98:28:4a:82:79:c9:ac:fc:17:47:98:c7:67:84:92:93:27:19:
7d:50:c7:ce:f4:9b:88:55:b6:be:37:db:e3:89:d9:9b:8e:2e:
28:58:4d:7c:79:6d:96:38:ea:84:e9:4e:8e:1c:2d:13:45:7e:
ae:88:27:35:50:1b:9f:d5:d1:b3:c6:cf:1e:2c:df:af:f7:a9:
cc:8f:56:75:56:d9:16:5a:61:53:98:2b:58:ca:54:ae:54:72:
d5:16:7a:77:ff:05:d8:6b:62:16:79:3e:e5:1b:fa:16:46:3d:
c9:bd:c5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:44:01 2025 by rpki-client