Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/A6B5F55C23F911E79BE44454C4F9AE02.roa
File: A6B5F55C23F911E79BE44454C4F9AE02.roa (raw, json)
Hash identifier: F2ak73nonVZ20QRrcSfPPZHYy8EZQeLDHTDgpyvlwUk=
Subject key identifier: DC:6C:6A:05:63:29:80:26:86:80:0E:42:F8:C2:6A:A5:64:44:4E:E1
Certificate issuer: /CN=A919D3C2/serialNumber=E7061DB222838DE68A93CE21EF291B05542D8726
Certificate serial: 1AAC
Authority key identifier: E7:06:1D:B2:22:83:8D:E6:8A:93:CE:21:EF:29:1B:05:54:2D:87:26
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5wYdsiKDjeaKk84h7ykbBVQthyY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/A6B5F55C23F911E79BE44454C4F9AE02.roa
Signing time: Thu 02 Jan 2025 16:33:41 +0000
ROA not before: Thu 02 Jan 2025 16:33:41 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 38826
IP address blocks: 103.243.84.0/22 maxlen: 22
103.243.84.0/24 maxlen: 24
103.243.85.0/24 maxlen: 24
103.243.86.0/24 maxlen: 24
103.243.87.0/24 maxlen: 24
119.15.96.0/20 maxlen: 20
119.15.96.0/24 maxlen: 24
119.15.97.0/24 maxlen: 24
119.15.98.0/23 maxlen: 24
119.15.100.0/24 maxlen: 24
119.15.101.0/24 maxlen: 24
119.15.102.0/24 maxlen: 24
119.15.103.0/24 maxlen: 24
119.15.104.0/24 maxlen: 24
119.15.105.0/24 maxlen: 24
119.15.106.0/24 maxlen: 24
119.15.107.0/24 maxlen: 24
119.15.108.0/24 maxlen: 24
119.15.109.0/24 maxlen: 24
119.15.110.0/24 maxlen: 24
119.15.111.0/24 maxlen: 24
175.106.4.0/22 maxlen: 22
175.106.4.0/24 maxlen: 24
175.106.5.0/24 maxlen: 24
175.106.6.0/24 maxlen: 24
175.106.7.0/24 maxlen: 24
2400:5000::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6828 (0x1aac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919D3C2
Validity
Not Before: Jan 2 16:33:41 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=6776bfe4-8380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:83:d5:67:0f:f6:a4:ce:51:89:eb:df:e6:13:
c6:97:ba:53:54:35:41:4d:fc:bf:e9:d4:72:fa:8b:
7f:cd:8d:8d:66:5c:e0:56:3f:58:81:cf:05:49:71:
8d:5b:98:09:aa:7f:eb:9c:20:4e:76:c8:ed:31:3f:
70:a3:0d:64:93:ad:25:f8:b7:23:6a:27:85:17:34:
75:4c:fa:03:e6:70:b2:9e:a3:98:1e:f2:87:59:93:
1e:c1:9e:dd:33:fc:6d:86:99:ea:7a:98:9c:7f:3e:
7a:a1:b4:06:b1:a8:80:ab:9c:74:88:03:18:2c:b4:
a9:da:0e:ad:e3:b0:8a:9a:6c:df:8c:84:ea:b7:c8:
17:2a:3c:5b:7f:e7:2b:c1:97:40:57:ed:b8:44:52:
85:52:82:12:5f:29:cd:77:d3:ba:b1:24:d7:4d:06:
b1:82:2e:db:78:22:33:97:05:57:39:1d:24:2a:a3:
f9:41:ab:ac:69:ca:0d:8f:dd:7d:60:f8:19:3a:53:
b9:25:5a:0f:2e:d2:00:42:75:60:45:6e:ff:75:77:
23:43:19:92:1d:cf:f7:b5:29:01:63:6c:3b:bf:24:
8b:b7:7f:ad:ea:d2:1e:eb:3a:95:cd:fb:d9:a2:c1:
c8:6a:c6:18:cf:98:2d:cc:3b:fd:da:5a:aa:38:ef:
fd:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:6C:6A:05:63:29:80:26:86:80:0E:42:F8:C2:6A:A5:64:44:4E:E1
X509v3 Authority Key Identifier:
keyid:E7:06:1D:B2:22:83:8D:E6:8A:93:CE:21:EF:29:1B:05:54:2D:87:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5wYdsiKDjeaKk84h7ykbBVQthyY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/A6B5F55C23F911E79BE44454C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.243.84.0/22
119.15.96.0/20
175.106.4.0/22
IPv6:
2400:5000::/32
Signature Algorithm: sha256WithRSAEncryption
92:d5:03:71:d0:00:b8:6e:4c:ac:4c:cb:41:f6:00:ca:53:c3:
80:aa:08:d6:bc:cd:4e:4e:28:d9:5b:d1:14:29:e0:34:4e:89:
46:3e:7e:77:9e:c5:e7:26:09:2b:66:9b:48:af:69:4d:9b:0d:
87:ac:2a:85:51:11:08:95:c8:3f:ba:bb:d9:c4:0f:df:6f:62:
d2:b9:d9:a6:67:4d:ea:cb:1b:29:55:12:8e:a6:b1:73:dd:c2:
63:59:f2:05:a8:ee:66:e8:8d:dc:32:14:33:0f:de:73:e4:ff:
89:96:6a:27:5d:d9:0f:4d:9f:91:67:3c:ad:c0:37:87:59:74:
64:9b:6d:66:e5:8a:cf:ab:e8:a2:28:ae:59:04:28:e6:5a:92:
c8:bb:c8:99:16:f2:b3:1c:98:c6:40:49:d6:5a:d9:dc:17:7c:
43:fd:15:e6:a3:bd:8d:a2:e9:ed:13:5f:d0:ea:50:57:aa:45:
ca:6b:1a:ca:50:c9:22:fa:c5:0c:82:74:99:55:00:3a:54:0c:
77:66:59:19:56:00:03:4e:ea:b5:b7:6e:05:bc:de:47:a3:da:
59:cb:82:ec:9e:2d:88:fe:74:9a:a1:9c:48:43:e9:df:89:88:
e1:04:7f:48:6b:93:06:0a:96:03:4b:69:88:1c:70:95:69:eb:
df:12:90:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:10:28 2025 by rpki-client