Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5ADC170465DB11EDA2559051C4F9AE02.roa
File: 5ADC170465DB11EDA2559051C4F9AE02.roa (raw, json)
Hash identifier: 1hOuknx7UZXGokUvAyVZyz3zHyXAQNspMYywBc8wHSo=
Subject key identifier: DC:E1:EE:62:F0:EE:C2:64:AC:1D:E1:2A:30:99:21:7C:FB:D7:22:C6
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4946
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5ADC170465DB11EDA2559051C4F9AE02.roa
Signing time: Thu 09 Jan 2025 03:51:30 +0000
ROA not before: Thu 09 Jan 2025 03:51:30 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 149147
IP address blocks: 103.37.60.0/23 maxlen: 24
103.78.4.0/23 maxlen: 23
103.127.197.0/24 maxlen: 24
103.166.176.0/23 maxlen: 23
103.168.36.0/23 maxlen: 23
103.186.24.0/23 maxlen: 23
103.213.8.0/23 maxlen: 23
103.213.12.0/23 maxlen: 23
103.213.216.0/23 maxlen: 23
103.248.230.0/23 maxlen: 23
113.192.18.0/23 maxlen: 23
2001:df4:cfc0::/48 maxlen: 48
2401:2160::/48 maxlen: 48
2401:3820::/48 maxlen: 48
2401:3e20::/48 maxlen: 48
2401:3e60::/48 maxlen: 48
2401:3ee0::/48 maxlen: 48
2401:5820::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18758 (0x4946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Jan 9 03:51:30 2025 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=677f47c1-e20d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c7:4b:a0:9b:1e:ef:a9:9c:06:e4:6f:8d:2f:
6f:b3:61:3d:f1:38:34:83:8c:30:3c:41:6d:fc:cb:
b4:e4:ce:b9:fa:89:2f:a1:65:ac:3f:65:84:60:31:
49:e3:63:d0:58:9c:89:1b:89:f3:84:be:b2:1a:74:
ec:67:e0:a1:cb:42:54:68:a1:ee:f6:a9:77:68:c9:
31:28:7c:51:58:07:3c:21:0c:61:7a:e2:b2:03:21:
ea:df:20:d5:94:02:b6:24:83:5f:c9:44:08:c6:c5:
11:32:63:b2:1b:8b:9a:05:d6:1b:21:39:a1:8d:a4:
95:9b:8c:38:0b:d3:4c:b7:8f:f9:67:5a:3f:da:ef:
12:a2:58:35:0f:77:0a:44:ee:0a:ed:0b:ca:48:c4:
db:2d:a5:f9:79:ad:91:19:09:a5:0b:b2:12:30:02:
84:91:f0:82:6d:84:e3:1c:11:1f:9d:00:98:e2:21:
26:5d:d2:8f:a7:05:6f:b5:54:05:15:0a:79:4c:a4:
d4:d5:03:70:e1:35:99:b5:65:e5:49:8f:19:82:e3:
b2:dd:18:2b:fa:53:a9:6a:48:ec:34:64:08:68:8e:
d1:46:42:9d:f4:4a:69:85:1c:64:c9:4d:31:d1:6d:
b9:ef:6d:b9:8b:10:4b:8a:dd:7f:5d:d8:97:41:01:
df:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E1:EE:62:F0:EE:C2:64:AC:1D:E1:2A:30:99:21:7C:FB:D7:22:C6
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5ADC170465DB11EDA2559051C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.37.60.0/23
103.78.4.0/23
103.127.197.0/24
103.166.176.0/23
103.168.36.0/23
103.186.24.0/23
103.213.8.0/23
103.213.12.0/23
103.213.216.0/23
103.248.230.0/23
113.192.18.0/23
IPv6:
2001:df4:cfc0::/48
2401:2160::/48
2401:3820::/48
2401:3e20::/48
2401:3e60::/48
2401:3ee0::/48
2401:5820::/48
Signature Algorithm: sha256WithRSAEncryption
55:f6:a4:5a:e3:41:08:27:14:0e:a6:e6:35:aa:f9:6f:24:3a:
96:b5:af:cc:78:70:48:27:96:e3:cf:6e:82:a8:a3:91:70:93:
33:ea:9e:19:98:dc:32:ac:a6:f4:05:0a:67:1c:08:6d:f4:57:
aa:a2:ef:d3:45:9e:85:ac:98:e5:68:50:0b:ea:4d:7a:5d:70:
9b:1b:f8:bb:1f:02:f4:92:29:9a:6e:eb:88:1c:9f:d3:08:3c:
7b:2e:db:a0:69:a9:f5:97:ee:c8:1f:55:3e:1f:d4:63:22:31:
74:d4:2e:d1:40:52:1c:ad:d4:02:70:4b:df:a2:5f:e1:bc:87:
71:b3:f9:79:7d:f7:e1:c6:4f:6c:21:45:c3:0a:e9:9b:bf:1d:
4f:3c:69:c9:28:63:2d:82:94:8f:66:90:af:33:b3:26:cd:4d:
b9:ed:86:23:c5:5c:f6:84:78:89:b5:a4:3d:07:1b:c3:2d:43:
94:c4:36:e6:60:bd:1f:d2:41:03:6c:c8:e3:d2:ea:52:3b:c1:
37:0c:15:11:cc:66:f8:a1:63:89:21:ba:c4:93:12:0c:3b:44:
2b:29:99:1c:c4:48:e5:c6:ad:7d:bd:a9:ad:0b:6b:96:63:af:
4f:36:d4:bd:78:bc:d1:88:b0:bc:8d:94:16:e9:3d:6e:54:5e:
10:12:76:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:27:53 2025 by rpki-client