Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/46948AC87B8511EDB9E3E055C4F9AE02.roa
File: 46948AC87B8511EDB9E3E055C4F9AE02.roa (raw, json)
Hash identifier: ZxtXXsjPmgBn3QuaEolbOSfh14MSz6fJKNljAALoKTY=
Subject key identifier: 9F:3D:E8:41:5D:D8:3D:B8:4D:B9:55:66:78:28:C1:04:D4:9E:8C:54
Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420
Certificate serial: 08BC
Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/46948AC87B8511EDB9E3E055C4F9AE02.roa
Signing time: Sun 22 Dec 2024 20:28:33 +0000
ROA not before: Sun 22 Dec 2024 20:28:33 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 10207
IP address blocks: 101.234.128.0/23 maxlen: 23
101.234.128.0/23 maxlen: 24
101.234.130.0/23 maxlen: 23
101.234.130.0/23 maxlen: 24
101.234.135.0/24 maxlen: 24
101.234.138.0/23 maxlen: 23
101.234.138.0/23 maxlen: 24
101.234.155.0/24 maxlen: 24
101.234.159.0/24 maxlen: 24
101.234.160.0/24 maxlen: 24
101.234.170.0/24 maxlen: 24
101.234.171.0/24 maxlen: 24
114.111.152.0/23 maxlen: 24
114.111.154.0/23 maxlen: 23
114.111.154.0/23 maxlen: 24
122.100.5.0/24 maxlen: 24
122.100.12.0/23 maxlen: 24
2406:5800:1000::/40 maxlen: 48
2406:5800:1100::/40 maxlen: 48
2406:5800:1200::/40 maxlen: 48
2406:5800:1300::/40 maxlen: 48
2406:5800:ff00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2236 (0x8bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A546E
Validity
Not Before: Dec 22 20:28:33 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67687671-e016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:31:50:63:55:c8:22:14:13:68:8d:7e:f4:45:
5d:31:61:ba:70:a2:fa:66:0c:dc:f9:53:69:8c:57:
c3:cb:d2:4f:ff:8e:e1:76:53:51:0c:64:29:a9:04:
a2:e8:a7:b0:29:bb:34:3b:16:71:26:14:51:cf:d3:
4f:0a:a3:15:c1:99:62:e6:84:98:ff:10:c0:b7:2f:
d8:35:aa:09:8f:5d:49:86:06:36:ad:37:00:a6:f9:
b8:53:c2:54:b3:74:93:52:50:5d:22:c1:f2:93:4b:
57:0d:9c:7c:70:f0:99:22:98:92:1c:54:cb:8f:f9:
09:b2:51:1c:a5:f5:f9:9e:41:c7:7d:0b:ce:42:45:
f7:2c:58:ac:13:39:03:05:7d:aa:2c:2e:b6:80:56:
03:59:67:81:dc:07:b7:a5:44:7e:99:01:bd:d2:b5:
96:7d:66:9c:0e:f0:87:71:c0:ca:2a:15:36:96:a7:
f8:3a:86:b1:64:28:e5:62:35:45:11:e8:c7:61:a1:
9b:b9:35:a2:11:8d:76:12:21:ad:b0:29:c7:d1:35:
04:b6:d8:8e:e8:e0:ef:11:8e:41:4d:db:bf:df:a3:
a9:23:bf:34:e8:e5:ea:f6:ac:68:8d:27:48:92:a9:
40:61:03:9d:ed:82:29:32:59:32:30:9c:a3:6b:91:
d8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:3D:E8:41:5D:D8:3D:B8:4D:B9:55:66:78:28:C1:04:D4:9E:8C:54
X509v3 Authority Key Identifier:
keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/46948AC87B8511EDB9E3E055C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
101.234.128.0/22
101.234.135.0/24
101.234.138.0/23
101.234.155.0/24
101.234.159.0-101.234.160.255
101.234.170.0/23
114.111.152.0/22
122.100.5.0/24
122.100.12.0/23
IPv6:
2406:5800:1000::/38
2406:5800:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
55:81:dc:9d:b2:7a:94:11:08:56:2c:2d:4a:1c:a8:f3:b1:a4:
7c:89:8e:81:e1:7e:27:43:ca:d9:f4:e7:fc:63:7a:82:8d:5c:
eb:cc:b1:ab:e0:1f:56:f0:b3:01:43:7f:ba:ed:04:69:68:0f:
f1:9e:84:d9:57:d3:8a:79:a6:bc:1d:c6:63:e1:a6:ef:fb:98:
94:98:93:03:22:33:41:c4:38:86:e1:69:c0:67:c0:ab:77:fa:
17:75:d9:d8:df:2e:b0:32:37:59:c7:1b:ad:a8:a8:28:bc:49:
46:db:98:d9:8f:df:1e:de:4e:8e:60:77:61:92:d4:a2:2a:15:
23:5a:07:f9:50:8c:89:c0:5d:9b:2a:7b:87:d1:5b:41:d6:c7:
76:4a:7a:15:4b:6d:ae:b4:74:6a:ed:68:41:21:16:fc:5f:ef:
88:4e:ee:52:4b:61:63:4f:1d:31:f0:e7:1b:a3:08:26:a3:f6:
f1:80:72:26:f0:7d:5e:3d:d6:bf:2d:8e:3a:4d:69:a0:3a:ae:
78:e7:41:6d:fc:3e:c6:39:2c:11:80:a4:61:f1:6b:a0:c7:46:
9d:41:3b:95:cf:9e:99:1e:17:2d:f0:16:de:bc:4f:79:f9:ea:
50:98:8c:74:27:89:cb:4e:64:0e:73:4f:99:c0:71:0e:b1:4d:
e7:71:35:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:55:08 2025 by rpki-client