Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/6BA10D8EAD9511EFAA7B4C1AC4F9AE02.roa
File: 6BA10D8EAD9511EFAA7B4C1AC4F9AE02.roa (raw, json)
Hash identifier: uNH21LRQ+JewOtlVWuPyuyGaCSI3PGZenOSMtffk8oE=
Subject key identifier: 66:52:AA:4D:50:7F:F3:EF:78:AC:3E:6D:B7:A5:11:EC:31:58:69:F5
Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934
Certificate serial: 0139
Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/6BA10D8EAD9511EFAA7B4C1AC4F9AE02.roa
Signing time: Thu 28 Nov 2024 14:31:14 +0000
ROA not before: Thu 28 Nov 2024 14:31:14 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 132280
IP address blocks: 83.118.0.0/17 maxlen: 18
83.118.0.0/21 maxlen: 23
83.118.8.0/21 maxlen: 23
83.118.16.0/21 maxlen: 23
83.118.24.0/21 maxlen: 23
83.118.26.0/23 maxlen: 24
83.118.32.0/21 maxlen: 23
83.118.32.0/24 maxlen: 24
83.118.35.0/24 maxlen: 24
83.118.36.0/24 maxlen: 24
83.118.40.0/21 maxlen: 23
83.118.45.0/24 maxlen: 24
83.118.48.0/21 maxlen: 23
83.118.52.0/24 maxlen: 24
83.118.55.0/24 maxlen: 24
83.118.56.0/21 maxlen: 23
83.118.56.0/23 maxlen: 24
83.118.61.0/24 maxlen: 24
83.118.64.0/21 maxlen: 23
83.118.65.0/24 maxlen: 24
83.118.72.0/21 maxlen: 23
83.118.75.0/24 maxlen: 24
83.118.80.0/21 maxlen: 23
83.118.88.0/21 maxlen: 23
83.118.92.0/24 maxlen: 24
83.118.96.0/21 maxlen: 23
83.118.98.0/24 maxlen: 24
83.118.104.0/21 maxlen: 23
83.118.105.0/24 maxlen: 24
83.118.109.0/24 maxlen: 24
83.118.111.0/24 maxlen: 24
83.118.112.0/21 maxlen: 23
83.118.112.0/24 maxlen: 24
83.118.114.0/24 maxlen: 24
83.118.118.0/24 maxlen: 24
83.118.120.0/21 maxlen: 23
83.118.120.0/23 maxlen: 24
83.118.124.0/24 maxlen: 24
83.118.126.0/24 maxlen: 24
87.124.0.0/17 maxlen: 23
87.124.1.0/24 maxlen: 24
87.124.2.0/23 maxlen: 24
87.124.4.0/22 maxlen: 24
87.124.8.0/21 maxlen: 24
87.124.16.0/20 maxlen: 24
87.124.32.0/19 maxlen: 24
87.124.64.0/20 maxlen: 24
87.124.80.0/21 maxlen: 24
87.124.88.0/23 maxlen: 24
87.124.90.0/24 maxlen: 24
87.124.94.0/23 maxlen: 24
87.124.96.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 313 (0x139)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919536C
Validity
Not Before: Nov 28 14:31:14 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=67487eb2-2c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:50:fb:6d:d5:58:ff:db:f7:44:90:c7:f3:ef:
f4:47:0e:4c:1e:d9:fd:22:66:1f:fb:df:d9:48:87:
3f:3b:ae:6a:a1:e7:cd:13:47:d2:27:81:63:e9:07:
6f:56:26:e7:79:0f:62:2f:8a:00:03:f4:bf:22:7c:
97:6f:fc:4a:68:93:8b:b8:47:0e:d9:44:11:6a:98:
6d:55:6c:8a:da:72:c4:a8:37:b8:67:a8:d8:ce:7d:
7f:cb:97:75:11:96:e5:d6:e9:ee:a9:ba:eb:dd:d1:
64:0a:92:61:c4:9c:2a:35:47:09:f4:d4:b4:ef:78:
0c:bc:c5:3d:3b:7c:96:d5:69:93:bb:73:7e:5f:45:
73:c2:ee:07:52:0c:c5:1a:32:c9:73:a0:03:fc:e5:
73:93:7a:cf:90:bb:cd:40:2f:6a:8b:58:19:10:9a:
ed:57:01:9d:16:d5:22:91:fe:da:97:2d:b6:01:aa:
21:3e:a8:fd:75:3e:bb:e4:fa:4a:27:25:92:1d:5a:
76:42:05:80:37:e7:e3:2a:e5:34:bd:b9:46:b0:ac:
49:cd:c7:86:c0:20:35:1b:cb:7f:14:84:ca:69:1e:
92:be:19:d3:58:c2:d4:ec:ac:5f:e4:2b:a5:d2:fe:
a0:18:2f:69:83:39:20:cb:30:e3:12:a0:43:c7:d5:
ef:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:52:AA:4D:50:7F:F3:EF:78:AC:3E:6D:B7:A5:11:EC:31:58:69:F5
X509v3 Authority Key Identifier:
keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/6BA10D8EAD9511EFAA7B4C1AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
83.118.0.0/17
87.124.0.0/17
Signature Algorithm: sha256WithRSAEncryption
98:a9:a2:58:d7:f3:d2:ee:82:4c:a3:12:f2:5f:cd:51:62:8c:
fe:40:6f:2d:0d:58:ec:95:ea:65:97:73:90:84:16:87:f4:2e:
16:1b:50:ca:7a:11:78:ef:bd:f2:a3:2c:eb:a4:2d:38:8c:ef:
87:09:07:5c:18:25:2a:cd:3c:58:d1:79:d1:3b:d6:31:4f:8f:
b5:fc:b6:53:aa:ae:b7:ec:d1:54:a4:53:f1:dd:6c:72:37:10:
1e:03:9e:14:ed:04:b0:3c:fc:8e:89:5a:64:3e:04:58:3d:dc:
94:64:74:46:2c:31:a9:09:52:87:6d:aa:a0:43:aa:ff:d5:50:
45:15:81:d9:e9:18:9e:73:b8:d4:32:10:80:3e:6d:84:78:98:
4b:44:cd:8f:12:9a:d4:ae:b1:aa:f8:a3:90:b3:3f:21:76:ea:
6e:b2:c2:73:df:9d:67:01:5e:37:56:78:eb:31:a0:bc:6a:ac:
2e:a4:20:79:92:53:2a:57:51:01:78:c5:e6:39:71:55:e7:18:
ae:3e:9d:f6:f6:9c:5c:45:65:f4:7a:2c:99:cc:32:af:8a:67:
23:2a:c4:53:36:ea:e4:78:fe:d7:03:b0:01:90:9c:ab:44:e9:
23:26:78:36:8e:ed:25:fb:16:fa:c8:14:e9:6d:ee:82:6d:5c:
29:83:24:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:56:36 2025 by rpki-client