Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/811F1218B13011EDB2ACC00CC4F9AE02.roa
File: 811F1218B13011EDB2ACC00CC4F9AE02.roa (raw, json)
Hash identifier: Z7huRd1xA82S0Q5qDvMOqn0rkcGVTbdFeHwDbVme7bA=
Subject key identifier: C2:44:1C:6F:C8:C2:6D:E2:3B:CD:4C:5E:D2:9D:C6:12:02:F2:0F:CF
Certificate issuer: /CN=A91F69E7/serialNumber=5E105E0EF90D18B9FA4B88FAE3410C6A1DEF7190
Certificate serial: 098B
Authority key identifier: 5E:10:5E:0E:F9:0D:18:B9:FA:4B:88:FA:E3:41:0C:6A:1D:EF:71:90
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XhBeDvkNGLn6S4j640EMah3vcZA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/811F1218B13011EDB2ACC00CC4F9AE02.roa
Signing time: Mon 20 Feb 2023 15:09:01 +0000
ROA not before: Mon 20 Feb 2023 15:09:00 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
103.11.61.0/24 maxlen: 24
103.11.62.0/24 maxlen: 24
113.203.209.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.214.0/23 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.218.0/23 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
113.203.252.0/22 maxlen: 22
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.173.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.179.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/22 maxlen: 22
223.29.224.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
2401:4100::/33 maxlen: 33
2401:4100:8000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2443 (0x98b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F69E7
Validity
Not Before: Feb 20 15:09:00 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=63f38d0c-b16b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c3:a0:aa:0b:3a:5b:fc:8c:f5:08:df:a1:e3:
5b:4f:c6:8a:34:1e:d1:41:c4:49:02:9c:89:c6:af:
33:ab:61:ed:3d:11:2b:e9:fc:e4:6e:91:4f:cf:f5:
aa:b0:de:db:4f:cc:74:65:ef:8b:9d:bc:4f:55:a4:
36:43:cb:05:f7:df:07:c0:b7:79:71:81:83:e8:62:
b0:b5:2e:77:bb:5a:e9:32:b1:db:96:06:79:38:10:
2d:8e:bc:9a:fc:a0:6c:03:35:b4:e8:58:94:d0:d8:
49:0e:14:65:88:ea:81:5d:56:17:9d:b5:f6:a7:a0:
10:21:ef:0c:68:4a:a8:32:89:d6:76:ae:4f:3b:6b:
09:0b:d6:62:39:f8:b7:84:7a:b8:c4:04:ec:59:b3:
bc:e1:1d:f9:ac:3b:7c:65:dc:ef:c2:1a:0e:4d:83:
cb:b0:90:67:4f:6d:17:18:a7:57:73:20:88:dd:13:
ef:55:74:9a:b3:0c:53:da:08:2a:63:35:ba:5d:ee:
75:d5:4c:34:06:c9:cb:fd:62:28:c5:6b:af:de:29:
65:4c:c2:c3:9c:2a:9e:04:04:e2:d9:ae:dc:41:ce:
86:d6:94:ed:82:36:e3:00:02:18:fb:03:d5:d8:83:
2c:d8:1b:93:41:cb:37:8c:7c:12:56:08:2a:b9:8a:
a5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:44:1C:6F:C8:C2:6D:E2:3B:CD:4C:5E:D2:9D:C6:12:02:F2:0F:CF
X509v3 Authority Key Identifier:
keyid:5E:10:5E:0E:F9:0D:18:B9:FA:4B:88:FA:E3:41:0C:6A:1D:EF:71:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XhBeDvkNGLn6S4j640EMah3vcZA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/811F1218B13011EDB2ACC00CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0-103.11.62.255
113.203.209.0-113.203.220.255
113.203.222.0-113.203.226.255
113.203.234.0-113.203.240.255
113.203.243.0-113.203.244.255
113.203.246.0/24
113.203.252.0/22
180.178.128.0/23
180.178.132.0/22
180.178.137.0-180.178.139.255
180.178.144.0/24
180.178.149.0/24
180.178.160.0/23
180.178.172.0/22
180.178.179.0-180.178.187.255
223.29.224.0/24
223.29.236.0/22
IPv6:
2401:4100::-2401:4100:8000:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
48:5c:21:d1:4d:57:c9:a5:8a:16:3e:b4:dc:37:a7:70:6c:5c:
83:6d:ac:a1:2d:1b:11:f5:fb:d5:a0:73:c3:29:ad:3b:c9:91:
4a:64:b2:c6:f7:f1:7b:23:c6:45:7e:2d:87:cc:35:f0:f8:f6:
80:57:c6:d5:f2:bb:78:14:73:41:d1:37:5b:26:e0:4b:df:80:
da:d0:64:89:fa:79:4c:77:1d:48:6e:d6:6e:0c:f8:ce:ec:9f:
6a:cd:2b:7e:e0:82:1e:f2:a3:15:7e:fb:8a:c9:a8:48:77:62:
89:54:f2:46:e0:9f:47:6a:ab:8d:23:9e:6f:93:9a:d7:d5:80:
ff:c5:84:80:6a:ed:68:a0:db:a2:31:44:81:43:f0:01:14:e2:
6e:f9:84:55:a2:1e:8a:4c:d8:b2:5d:6b:3b:f1:b7:e1:09:99:
94:b4:e8:67:5a:45:0c:11:0d:6e:cb:22:3f:30:6c:ca:8c:45:
24:62:d1:3a:15:74:8a:d0:f0:45:61:f7:c2:62:9f:c8:91:15:
60:aa:16:c1:9a:2c:da:d2:75:17:d2:fb:11:c6:17:eb:0b:41:
11:86:72:4c:92:0b:67:8d:4a:34:c7:ba:e2:f7:b6:25:9a:2a:
27:54:49:17:9b:35:84:df:c5:f6:7c:7a:ff:01:91:2f:f7:74:
76:32:40:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 06:04:23 2025 by rpki-client