Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/2CDDCAB868AC11EDAA6C8F2AC4F9AE02.roa
File: 2CDDCAB868AC11EDAA6C8F2AC4F9AE02.roa (raw, json)
Hash identifier: snUS5Nz9OXbIohiNncX/rLVlHKKNwvL/WKysUwbCRFM=
Subject key identifier: 5E:4E:24:87:E8:3E:EA:EC:E4:1D:9F:CC:E7:EE:76:90:63:22:10:21
Certificate issuer: /CN=A91E7363/serialNumber=A897C04DE12F0A6F59C1AD1509F0B209FA5438B3
Certificate serial: 34B6
Authority key identifier: A8:97:C0:4D:E1:2F:0A:6F:59:C1:AD:15:09:F0:B2:09:FA:54:38:B3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/2CDDCAB868AC11EDAA6C8F2AC4F9AE02.roa
Signing time: Fri 31 Jan 2025 14:50:30 +0000
ROA not before: Fri 31 Jan 2025 14:50:30 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 9329
IP address blocks: 112.134.0.0/15 maxlen: 15
112.134.0.0/19 maxlen: 24
112.134.32.0/19 maxlen: 24
112.134.64.0/19 maxlen: 24
112.134.96.0/19 maxlen: 24
112.134.128.0/19 maxlen: 24
112.134.160.0/19 maxlen: 24
112.134.192.0/19 maxlen: 24
112.134.224.0/19 maxlen: 24
112.135.0.0/19 maxlen: 24
112.135.32.0/19 maxlen: 24
112.135.64.0/19 maxlen: 24
112.135.96.0/19 maxlen: 24
112.135.128.0/19 maxlen: 24
112.135.160.0/19 maxlen: 24
112.135.192.0/19 maxlen: 24
112.135.224.0/19 maxlen: 24
119.235.4.0/24 maxlen: 24
119.235.5.0/24 maxlen: 24
119.235.6.0/24 maxlen: 24
119.235.7.0/24 maxlen: 24
119.235.8.0/24 maxlen: 24
119.235.9.0/24 maxlen: 24
119.235.10.0/24 maxlen: 24
119.235.12.0/24 maxlen: 24
124.43.0.0/16 maxlen: 16
124.43.0.0/17 maxlen: 17
124.43.0.0/19 maxlen: 24
124.43.32.0/19 maxlen: 24
124.43.64.0/18 maxlen: 18
124.43.64.0/19 maxlen: 24
124.43.96.0/19 maxlen: 24
124.43.128.0/17 maxlen: 17
124.43.128.0/18 maxlen: 18
124.43.128.0/19 maxlen: 24
124.43.160.0/19 maxlen: 24
124.43.192.0/19 maxlen: 24
124.43.224.0/19 maxlen: 24
203.81.99.0/24 maxlen: 24
203.81.100.0/24 maxlen: 24
203.81.101.0/24 maxlen: 24
203.81.102.0/24 maxlen: 24
203.94.64.0/18 maxlen: 18
203.94.65.0/24 maxlen: 24
203.94.69.0/24 maxlen: 24
203.94.70.0/24 maxlen: 24
203.94.71.0/24 maxlen: 24
203.94.72.0/24 maxlen: 24
203.94.74.0/24 maxlen: 24
203.94.84.0/24 maxlen: 24
203.94.89.0/24 maxlen: 24
203.94.95.0/24 maxlen: 24
203.115.0.0/18 maxlen: 18
203.115.0.0/24 maxlen: 24
203.115.11.0/24 maxlen: 24
203.115.21.0/24 maxlen: 24
203.115.28.0/24 maxlen: 24
203.115.31.0/24 maxlen: 24
220.247.192.0/18 maxlen: 23
220.247.192.0/19 maxlen: 24
220.247.224.0/24 maxlen: 24
220.247.226.0/23 maxlen: 24
220.247.228.0/22 maxlen: 24
220.247.232.0/21 maxlen: 24
220.247.240.0/20 maxlen: 24
222.165.128.0/18 maxlen: 24
2402:d000::/32 maxlen: 40
2402:d000:20::/48 maxlen: 48
2402:d000:21::/48 maxlen: 48
2402:d000:140::/48 maxlen: 48
2402:d000:141::/48 maxlen: 48
2402:d000:142::/48 maxlen: 48
2402:d000:100c::/48 maxlen: 48
2402:d000:1060::/48 maxlen: 48
2402:d000:1064::/48 maxlen: 48
2402:d000:1068::/48 maxlen: 48
2402:d000:106c::/48 maxlen: 48
2402:d000:1074::/48 maxlen: 48
2402:d000:1088::/48 maxlen: 48
2402:d000:7000::/48 maxlen: 48
2402:d000:8100::/48 maxlen: 48
2402:d000:8104::/48 maxlen: 48
2402:d000:8108::/48 maxlen: 48
2402:d000:810c::/48 maxlen: 48
2402:d000:8110::/48 maxlen: 48
2402:d000:8114::/48 maxlen: 48
2402:d000:8118::/48 maxlen: 48
2402:d000:811c::/48 maxlen: 48
2402:d000:8120::/48 maxlen: 48
2402:d000:8124::/48 maxlen: 48
2402:d000:8128::/48 maxlen: 48
2402:d000:812c::/48 maxlen: 48
2402:d000:8130::/48 maxlen: 48
2402:d000:8134::/48 maxlen: 48
2402:d000:8138::/48 maxlen: 48
2402:d000:813c::/48 maxlen: 48
2402:d000:8140::/48 maxlen: 48
2402:d000:8f00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13494 (0x34b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E7363
Validity
Not Before: Jan 31 14:50:30 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=679ce336-e7d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5c:2a:c0:af:d6:0c:4b:81:44:c5:50:24:bf:
6f:fc:6b:82:c5:0d:65:6c:d0:bf:29:0e:32:cf:20:
0e:56:0e:1a:7b:14:12:c1:b5:e9:32:54:0b:9b:66:
b5:d3:eb:fe:ae:de:90:d7:db:bf:a1:65:32:c5:3e:
c1:29:68:81:8d:bf:5c:4e:79:49:11:cc:ab:ca:b5:
15:6e:a2:a1:d5:2f:5f:bf:09:4d:2c:86:ad:4b:c3:
e9:14:a9:7b:94:6c:9b:d5:cb:21:9d:42:42:1c:0b:
f2:cf:9d:3d:23:81:f7:da:54:50:4c:ca:4b:ac:96:
73:9f:ae:2c:99:d9:c2:fa:2e:04:f7:99:41:10:93:
c3:71:ba:11:07:fd:9f:68:e9:fd:60:d2:8f:8e:d6:
93:25:89:29:89:4c:8f:03:0d:97:5b:4a:68:e2:4a:
c6:6a:53:ca:f1:13:a9:3e:cf:69:e6:6b:38:30:c2:
ea:ff:54:e4:1b:a5:0d:bd:e2:30:f1:c6:50:16:02:
2f:dd:63:e6:cc:90:9d:07:5a:11:ee:ae:d3:bf:71:
62:79:44:8f:5a:94:50:98:98:fd:b0:89:79:75:f1:
e5:10:e0:78:e3:08:ef:1d:c7:bf:34:d8:f8:4f:53:
fb:1c:b6:46:3b:1d:d3:60:2c:dd:48:44:66:63:77:
0c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:4E:24:87:E8:3E:EA:EC:E4:1D:9F:CC:E7:EE:76:90:63:22:10:21
X509v3 Authority Key Identifier:
keyid:A8:97:C0:4D:E1:2F:0A:6F:59:C1:AD:15:09:F0:B2:09:FA:54:38:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/2CDDCAB868AC11EDAA6C8F2AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
112.134.0.0/15
119.235.4.0-119.235.10.255
119.235.12.0/24
124.43.0.0/16
203.81.99.0-203.81.102.255
203.94.64.0/18
203.115.0.0/18
220.247.192.0/18
222.165.128.0/18
IPv6:
2402:d000::/32
Signature Algorithm: sha256WithRSAEncryption
6e:f1:5c:c3:70:f7:47:8a:1c:6b:23:e6:05:a5:b3:37:88:77:
85:23:6f:c6:17:6e:21:3f:a7:dc:5f:b2:e8:f6:18:6a:c6:68:
3b:35:38:a9:33:7f:e0:ab:78:fc:32:91:96:f5:4a:f4:27:dd:
4e:e7:db:85:9d:32:68:1b:9b:c4:9c:3d:6f:46:2f:0c:f4:4d:
a8:b8:55:d0:e6:a7:e5:3d:de:ec:8d:47:4b:dd:55:8e:7d:a5:
0f:29:22:8f:68:0e:65:cb:cf:b2:a1:44:9e:a0:0e:d5:ed:68:
53:50:7a:cc:12:df:45:7f:d6:ff:3b:66:d3:49:ec:4c:ad:cb:
9f:7b:6d:d0:9d:9d:56:81:8c:52:78:b3:c7:3b:dd:3e:c5:79:
f6:11:72:53:21:53:a8:ac:0c:d7:06:82:a4:76:a1:ad:18:ce:
b8:6d:78:af:85:fc:e1:21:27:6a:0b:a7:df:b6:a0:92:a0:9f:
c5:a4:e2:06:db:71:de:68:63:12:be:ee:37:85:b9:f8:3b:fe:
f8:fb:cd:47:f1:82:93:86:b3:8e:a4:f6:7b:d0:d3:af:33:22:
ef:a5:a5:0b:03:1e:26:76:47:d2:9b:ee:f3:b0:4f:54:4e:d8:
34:6f:dd:fb:75:43:9c:ec:5b:59:22:76:40:00:f7:13:e4:a0:
37:a9:88:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:11:57 2025 by rpki-client