Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/D277F83CD3A411ED8C51160FC4F9AE02.roa
File: D277F83CD3A411ED8C51160FC4F9AE02.roa (raw, json)
Hash identifier: xeDK9WlWOxddaeQUzhh0jJMfgRYN6KWkgPqKssZPync=
Subject key identifier: 72:DE:29:80:62:32:B2:67:60:FE:40:19:8A:B0:65:24:BA:6C:4D:9B
Certificate issuer: /CN=A919676F/serialNumber=EBBA143B28663718CD8C7DA3F631009A9804EE5F
Certificate serial: 013D
Authority key identifier: EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/D277F83CD3A411ED8C51160FC4F9AE02.roa
Signing time: Sun 01 Dec 2024 03:25:52 +0000
ROA not before: Sun 01 Dec 2024 03:25:52 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 137880
IP address blocks: 103.157.90.0/23 maxlen: 23
103.157.90.0/24 maxlen: 24
103.157.91.0/24 maxlen: 24
2406:9cc0::/32 maxlen: 32
2406:9cc0:1::/48 maxlen: 48
2406:9cc0:5::/48 maxlen: 48
2406:9cc0:100::/48 maxlen: 48
2406:9cc0:200::/48 maxlen: 48
2406:9cc0:fce::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 317 (0x13d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919676F
Validity
Not Before: Dec 1 03:25:52 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=674bd740-a39a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d0:01:98:75:e1:cd:59:6b:ee:6a:c0:9a:32:
b0:97:30:76:13:6f:97:83:d7:54:f5:5c:b1:69:55:
10:86:43:6d:3a:c8:d9:7e:06:c3:11:a3:6b:7f:62:
90:4d:95:62:95:c9:9f:b0:f5:3b:8c:88:78:eb:00:
4c:7c:ce:fa:e8:7c:7b:7f:66:5b:3a:a6:80:d5:c5:
e2:f8:88:e7:26:c4:46:4e:6d:bb:53:e3:fd:c7:1a:
dd:78:7e:6a:4e:40:8a:7a:54:c1:13:2f:e2:90:23:
a6:df:fe:13:3c:22:95:6c:87:56:52:f9:df:cc:e4:
c9:75:68:83:c4:b9:b5:44:fd:60:0d:b8:8f:e4:be:
0a:06:ad:07:fd:bd:e5:d2:86:7c:2e:92:85:bf:fe:
d2:f6:a2:6a:74:77:98:62:23:25:32:53:42:70:f0:
1e:fc:4c:97:4d:40:fe:15:d8:06:99:5a:5e:72:e0:
9f:c4:46:c5:91:02:fd:68:ed:37:0e:f1:b6:ff:dc:
e9:3b:18:81:5a:cc:48:8e:9a:d7:cc:f6:6e:87:f8:
2b:b2:ea:42:01:14:a6:1a:60:a1:c1:f8:08:c9:44:
f0:63:68:44:f1:05:a5:a3:2d:2c:45:89:51:50:0d:
46:fa:91:21:2c:6d:86:2c:a8:41:34:77:e6:03:95:
69:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:DE:29:80:62:32:B2:67:60:FE:40:19:8A:B0:65:24:BA:6C:4D:9B
X509v3 Authority Key Identifier:
keyid:EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/D277F83CD3A411ED8C51160FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.90.0/23
IPv6:
2406:9cc0::/32
Signature Algorithm: sha256WithRSAEncryption
bb:f3:42:cd:b7:1f:e8:e7:b3:e0:fb:c6:73:50:b0:ad:6d:b0:
c3:80:46:ed:25:ec:0f:35:ff:09:ff:0f:f7:a4:3c:91:99:60:
55:0b:fb:3d:59:04:d9:96:92:ea:ad:6d:7a:cd:d7:39:7a:0b:
25:3d:19:58:50:9c:0a:84:50:5c:1d:7b:3b:36:59:7e:49:d6:
ea:14:b9:66:c7:1b:e6:b5:e5:af:5b:2a:61:79:a7:ab:5c:35:
a2:f7:81:c3:f0:2a:e0:13:da:ad:ee:01:1b:e5:64:50:ea:0b:
ca:68:94:31:ef:b7:ff:fd:76:c0:8e:41:a0:4b:55:8d:51:51:
0f:e0:17:46:26:b6:76:c6:1c:21:00:94:b5:2e:d2:58:78:ab:
4f:b8:7a:8f:32:af:c5:17:04:0f:53:d5:a0:d3:a9:93:30:39:
3d:b6:59:62:18:56:c1:cc:eb:3d:c0:21:b5:62:98:0c:ae:f5:
89:ef:57:2b:c1:ef:4f:63:ec:d3:2b:32:fd:a4:5e:e6:28:98:
d1:ea:11:13:89:bb:79:b2:47:7a:a8:05:56:f1:37:b6:e1:d5:
3e:fb:5d:ce:7d:ea:8e:93:f2:fd:e7:ac:d2:e3:b7:3d:aa:04:
b8:78:5f:e8:84:37:89:34:3c:7c:a8:e3:13:87:ef:87:57:55:
e7:23:43:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 04:08:31 2025 by rpki-client