Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/E2CD484CC01611EC99CBE679C4F9AE02.roa
File: E2CD484CC01611EC99CBE679C4F9AE02.roa (raw, json)
Hash identifier: J1Q4RDy0m29eeapa2z0ovpsiQYe/0M6nae0xSjZ81ow=
Subject key identifier: 99:D3:94:23:64:98:5F:24:17:77:D6:76:70:B2:8F:2C:2D:D3:9C:61
Certificate issuer: /CN=A91F69E7/serialNumber=5E105E0EF90D18B9FA4B88FAE3410C6A1DEF7190
Certificate serial: 0707
Authority key identifier: 5E:10:5E:0E:F9:0D:18:B9:FA:4B:88:FA:E3:41:0C:6A:1D:EF:71:90
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XhBeDvkNGLn6S4j640EMah3vcZA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/E2CD484CC01611EC99CBE679C4F9AE02.roa
Signing time: Tue 19 Apr 2022 19:28:27 +0000
ROA not before: Tue 19 Apr 2022 19:28:27 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
103.11.62.0/24 maxlen: 24
103.11.63.0/24 maxlen: 24
113.203.208.0/22 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.224.0/22 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.244.0/22 maxlen: 22
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.140.0/22 maxlen: 22
180.178.156.0/22 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.164.0/22 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.173.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/21 maxlen: 24
223.29.224.0/23 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.232.0/22 maxlen: 22
2401:4100::/33 maxlen: 33
2401:4100:8000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1799 (0x707)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F69E7
Validity
Not Before: Apr 19 19:28:27 2022 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=625f0d5b-32f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:05:97:7f:fc:6b:bd:b8:92:e2:0f:1e:a9:3b:
6e:f4:fe:99:a2:a8:81:01:91:bd:d0:c5:ed:1a:f1:
56:4d:61:3d:93:6c:67:65:8a:a6:a6:94:9b:f9:bb:
21:c1:f0:47:24:93:d5:ba:14:51:c0:a2:1a:5a:cc:
64:36:06:8f:c8:40:e3:94:23:8b:1b:a2:ea:5b:72:
31:1c:75:f4:57:3c:75:ad:b1:8e:63:0a:4d:82:42:
19:9f:aa:a0:d2:23:e5:80:f8:73:f5:db:53:8f:0d:
2a:95:a3:1a:44:a7:50:42:64:32:cb:0d:40:a2:fd:
f6:bf:74:ec:8a:9d:3f:3a:a6:c0:10:17:01:e9:89:
1c:89:ed:db:45:88:e8:9c:e4:d4:d3:1b:69:94:58:
53:a1:ab:91:1e:cc:5a:00:6a:7b:29:43:16:d7:83:
90:53:66:7c:13:a2:c5:d7:4e:68:00:f6:df:3d:65:
01:ce:24:43:d4:1d:d4:18:a8:88:91:79:d8:d3:98:
9c:57:4d:6e:1d:81:be:2e:49:1c:01:9a:15:db:c0:
89:9a:fa:9d:34:fb:5f:7d:ad:42:fc:c5:d9:05:60:
0f:b2:26:2e:98:fe:44:ed:52:9f:88:53:89:df:31:
39:6c:4f:2f:37:ff:6b:b9:1e:7c:52:7e:ea:52:63:
4f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D3:94:23:64:98:5F:24:17:77:D6:76:70:B2:8F:2C:2D:D3:9C:61
X509v3 Authority Key Identifier:
keyid:5E:10:5E:0E:F9:0D:18:B9:FA:4B:88:FA:E3:41:0C:6A:1D:EF:71:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XhBeDvkNGLn6S4j640EMah3vcZA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/E2CD484CC01611EC99CBE679C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
103.11.62.0/23
113.203.208.0-113.203.212.255
113.203.216.0/24
113.203.224.0/21
113.203.234.0-113.203.240.255
113.203.242.0-113.203.247.255
180.178.128.0/23
180.178.132.0/22
180.178.137.0-180.178.143.255
180.178.156.0/22
180.178.161.0-180.178.162.255
180.178.164.0-180.178.168.255
180.178.172.0-180.178.183.255
223.29.224.0/23
223.29.227.0/24
223.29.232.0/22
IPv6:
2401:4100::-2401:4100:8000:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
5e:cf:13:81:dd:4c:9f:21:c7:fc:03:ef:59:15:4a:b6:19:d3:
8a:02:9e:82:83:ae:e6:07:ed:71:bb:b4:3e:99:63:a3:69:d0:
50:6e:04:f7:69:b4:a3:19:c2:72:c9:bf:97:6c:92:04:69:41:
db:c2:35:3d:36:dc:9b:46:e2:83:f0:da:17:23:36:80:55:5c:
77:58:37:38:11:af:c8:1d:f7:6f:ba:06:29:62:87:e4:09:58:
3d:19:a6:59:8d:a4:68:50:81:df:d1:ee:88:bb:7b:e0:d6:98:
30:64:cb:02:c1:ca:51:db:f5:a4:3d:fa:22:18:95:09:1b:e7:
f6:1b:99:81:3c:33:14:b8:7d:63:2c:c0:69:8d:91:af:82:f3:
1b:da:9d:1a:42:d6:bf:04:6b:54:bb:fc:f6:5e:96:73:2b:99:
c7:90:c5:7f:a3:37:08:2e:3a:8d:6d:f7:6b:be:49:0f:d6:ff:
43:e0:b2:c3:1c:c8:47:c7:04:30:d1:d5:73:f3:40:ae:af:d2:
98:ae:b2:03:33:41:84:e2:87:81:7a:44:0d:38:b3:e9:e2:6f:
e3:6f:ef:cc:9b:81:42:91:aa:c3:4f:45:52:f8:f2:e9:ae:e2:
2f:d9:59:fa:81:be:7e:a2:19:b3:b7:91:5b:b7:98:2c:80:8f:
41:b2:81:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:56:33 2025 by rpki-client