Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/9F12E3A025A511EE87132E45C4F9AE02.roa
File: 9F12E3A025A511EE87132E45C4F9AE02.roa (raw, json)
Hash identifier: bGVPdIvZlYGFNzxT3y5YSA5PehaGI7Seiy7YCZdX9Sg=
Subject key identifier: 1A:EC:0C:6E:21:31:60:4F:E6:E6:62:51:BF:19:E8:D7:79:4C:04:B0
Certificate issuer: /CN=A91A495C/serialNumber=78BEDBEDC0459B900C282892F13B1782A9560429
Certificate serial: 0D08
Authority key identifier: 78:BE:DB:ED:C0:45:9B:90:0C:28:28:92:F1:3B:17:82:A9:56:04:29
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eL7b7cBFm5AMKCiS8TsXgqlWBCk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/9F12E3A025A511EE87132E45C4F9AE02.roa
Signing time: Sun 09 Feb 2025 08:06:33 +0000
ROA not before: Sun 09 Feb 2025 08:06:33 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 137967
IP address blocks: 103.117.192.0/22 maxlen: 22
103.117.192.0/23 maxlen: 23
103.117.192.0/24 maxlen: 24
103.117.193.0/24 maxlen: 24
103.117.194.0/23 maxlen: 23
103.117.194.0/24 maxlen: 24
103.117.195.0/24 maxlen: 24
2403:1e40::/32 maxlen: 36
2403:1e40::/48 maxlen: 48
2403:1e40:100::/48 maxlen: 48
2403:1e40:150::/48 maxlen: 48
2403:1e40:151::/48 maxlen: 48
2403:1e40:152::/48 maxlen: 48
2403:1e40:153::/48 maxlen: 48
2403:1e40:154::/48 maxlen: 48
2403:1e40:168::/48 maxlen: 48
2403:1e40:169::/48 maxlen: 48
2403:1e40:207::/48 maxlen: 48
2403:1e40:1000::/37 maxlen: 40
2403:1e40:1000::/41 maxlen: 48
2403:1e40:1080::/41 maxlen: 48
2403:1e40:1100::/41 maxlen: 48
2403:1e40:1180::/41 maxlen: 48
2403:1e40:1200::/41 maxlen: 48
2403:1e40:1280::/41 maxlen: 48
2403:1e40:1300::/41 maxlen: 48
2403:1e40:1380::/41 maxlen: 48
2403:1e40:1400::/41 maxlen: 48
2403:1e40:1800::/37 maxlen: 40
2403:1e40:1800::/41 maxlen: 48
2403:1e40:1880::/41 maxlen: 45
2403:1e40:1880::/42 maxlen: 48
2403:1e40:18c0::/43 maxlen: 48
2403:1e40:18e0::/44 maxlen: 48
2403:1e40:18f0::/45 maxlen: 48
2403:1e40:18f8::/46 maxlen: 46
2403:1e40:18f8::/47 maxlen: 48
2403:1e40:1a00::/41 maxlen: 48
2403:1e40:1a80::/41 maxlen: 48
2403:1e40:70ff::/48 maxlen: 48
2403:1e40:80ff::/48 maxlen: 48
2403:1e40:90ff::/48 maxlen: 48
2403:1e40:97ff::/48 maxlen: 48
2403:1e40:fffd::/48 maxlen: 48
2403:1e40:fffe::/48 maxlen: 48
2403:1e40:ffff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3336 (0xd08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A495C
Validity
Not Before: Feb 9 08:06:33 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=67a86209-8c26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:03:34:d5:bb:57:87:1c:13:19:77:e2:6b:2e:
6a:87:a0:16:09:27:64:4c:ff:f6:c0:c8:99:8a:7a:
dc:aa:25:75:cd:7b:ce:0e:f9:c7:ed:2f:09:df:b3:
78:ba:e9:5c:16:cb:c5:5d:5e:e0:3e:78:58:8a:4e:
b9:9e:8f:c0:e2:91:b8:ad:79:30:91:60:2a:bd:81:
fc:03:2f:2e:7b:07:5f:29:d1:ae:b9:af:2a:60:91:
5c:07:e6:11:12:46:ba:14:ca:e9:36:d6:28:37:85:
59:26:77:7b:2c:ba:62:de:74:a7:8e:02:86:99:10:
0f:9d:55:1c:ef:0c:90:44:37:a2:05:42:8a:11:79:
44:bf:0e:4f:7c:8d:3a:23:97:0b:25:91:7a:3e:b1:
a0:19:67:c1:e1:3a:80:76:f3:f8:ae:9a:35:27:32:
b4:51:3d:26:72:12:91:2a:1c:b1:49:07:c1:71:94:
57:f3:bc:d8:1b:7e:75:88:75:ea:78:70:1b:9e:db:
95:fc:3d:1c:f7:06:93:10:62:68:ff:c3:8a:b7:44:
bc:50:f2:a8:3b:f8:e5:ee:fb:b9:6c:e3:8f:a7:51:
b9:f4:52:bb:df:8a:7c:37:df:6e:6e:17:da:24:94:
ba:c5:f6:c4:04:e4:53:7a:33:2c:75:d3:94:d2:c1:
6e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:EC:0C:6E:21:31:60:4F:E6:E6:62:51:BF:19:E8:D7:79:4C:04:B0
X509v3 Authority Key Identifier:
keyid:78:BE:DB:ED:C0:45:9B:90:0C:28:28:92:F1:3B:17:82:A9:56:04:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/eL7b7cBFm5AMKCiS8TsXgqlWBCk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eL7b7cBFm5AMKCiS8TsXgqlWBCk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/9F12E3A025A511EE87132E45C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.117.192.0/22
IPv6:
2403:1e40::/32
Signature Algorithm: sha256WithRSAEncryption
0e:74:48:15:f8:56:7c:c5:70:f6:6b:b2:f2:f0:32:59:24:2e:
b3:fe:d9:f4:b4:a1:97:7f:d8:31:b0:7e:c0:53:c8:52:57:bd:
04:36:a4:f9:97:32:08:97:5b:ff:e8:c2:3b:a8:64:90:90:31:
16:d4:c9:7d:5c:75:d6:ff:59:b5:9f:24:f2:8b:a6:ea:42:12:
7e:d4:7c:cc:e8:5b:f8:e3:9a:aa:61:c8:00:ea:bf:82:5b:47:
c4:80:05:72:2f:a4:ed:00:5e:b5:0d:61:75:d8:e9:3c:ab:41:
0d:c8:a7:ea:ad:cc:c1:71:44:1e:07:64:cf:a1:ae:bd:5b:b4:
ba:89:82:29:bd:b1:6a:df:2f:9c:06:69:4c:1a:83:ce:50:59:
0a:67:6c:d7:48:46:79:c3:14:25:be:07:e9:64:ae:b1:b4:de:
72:7c:fd:c1:de:46:59:23:7a:bd:85:8e:bd:7e:21:a1:03:d9:
6c:33:cb:67:c8:e9:da:dd:7a:d0:44:89:65:d5:8e:9f:11:4f:
f9:1a:fc:5e:11:70:65:50:65:05:88:8c:8f:4e:f0:9d:cb:fd:
5a:36:98:ae:12:5b:51:ba:08:39:30:4b:a0:46:f7:95:04:22:
ca:47:15:56:67:a2:d6:6d:1e:d9:76:ed:4a:f7:ab:29:e4:7a:
00:99:1b:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:03:21 2025 by rpki-client