Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/2F3FBD86F3E511EA871E451AC4F9AE02.roa
File: 2F3FBD86F3E511EA871E451AC4F9AE02.roa (raw, json)
Hash identifier: yVyxrQ/XexxsyDCtzcGEooxv2C0cJKVEzNUoJUfFCpg=
Subject key identifier: 34:FF:F6:57:F7:E7:11:04:12:99:93:05:E5:53:DE:5C:D2:C3:95:5A
Certificate issuer: /CN=A9152D08/serialNumber=34DC20129EAD6F41A7CA2D99C9BD3E7E6033CB88
Certificate serial: 0C50
Authority key identifier: 34:DC:20:12:9E:AD:6F:41:A7:CA:2D:99:C9:BD:3E:7E:60:33:CB:88
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/2F3FBD86F3E511EA871E451AC4F9AE02.roa
Signing time: Fri 14 Mar 2025 19:19:08 +0000
ROA not before: Fri 14 Mar 2025 19:19:08 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 45839
IP address blocks: 101.99.64.0/21 maxlen: 21
101.99.64.0/24 maxlen: 24
101.99.65.0/24 maxlen: 24
101.99.66.0/24 maxlen: 24
101.99.67.0/24 maxlen: 24
101.99.68.0/24 maxlen: 24
101.99.69.0/24 maxlen: 24
101.99.70.0/24 maxlen: 24
101.99.71.0/24 maxlen: 24
101.99.72.0/23 maxlen: 23
101.99.72.0/24 maxlen: 24
101.99.73.0/24 maxlen: 24
101.99.74.0/24 maxlen: 24
101.99.75.0/24 maxlen: 24
101.99.76.0/24 maxlen: 24
101.99.77.0/24 maxlen: 24
101.99.78.0/24 maxlen: 24
101.99.79.0/24 maxlen: 24
101.99.80.0/21 maxlen: 21
101.99.80.0/24 maxlen: 24
101.99.81.0/24 maxlen: 24
101.99.82.0/24 maxlen: 24
101.99.83.0/24 maxlen: 24
101.99.84.0/24 maxlen: 24
101.99.85.0/24 maxlen: 24
101.99.86.0/24 maxlen: 24
101.99.87.0/24 maxlen: 24
101.99.88.0/23 maxlen: 23
101.99.88.0/24 maxlen: 24
101.99.89.0/24 maxlen: 24
101.99.90.0/23 maxlen: 23
101.99.90.0/24 maxlen: 24
101.99.91.0/24 maxlen: 24
101.99.92.0/24 maxlen: 24
101.99.93.0/24 maxlen: 24
101.99.94.0/24 maxlen: 24
101.99.95.0/24 maxlen: 24
103.155.92.0/24 maxlen: 24
103.155.93.0/24 maxlen: 24
111.90.128.0/21 maxlen: 21
111.90.128.0/24 maxlen: 24
111.90.129.0/24 maxlen: 24
111.90.130.0/24 maxlen: 24
111.90.131.0/24 maxlen: 24
111.90.132.0/24 maxlen: 24
111.90.133.0/24 maxlen: 24
111.90.134.0/24 maxlen: 24
111.90.135.0/24 maxlen: 24
111.90.136.0/23 maxlen: 23
111.90.136.0/24 maxlen: 24
111.90.137.0/24 maxlen: 24
111.90.138.0/23 maxlen: 23
111.90.138.0/24 maxlen: 24
111.90.139.0/24 maxlen: 24
111.90.140.0/23 maxlen: 23
111.90.140.0/24 maxlen: 24
111.90.141.0/24 maxlen: 24
111.90.142.0/23 maxlen: 23
111.90.142.0/24 maxlen: 24
111.90.143.0/24 maxlen: 24
111.90.144.0/21 maxlen: 21
111.90.144.0/24 maxlen: 24
111.90.145.0/24 maxlen: 24
111.90.146.0/24 maxlen: 24
111.90.147.0/24 maxlen: 24
111.90.148.0/24 maxlen: 24
111.90.149.0/24 maxlen: 24
111.90.150.0/24 maxlen: 24
111.90.151.0/24 maxlen: 24
111.90.152.0/22 maxlen: 22
111.90.152.0/24 maxlen: 24
111.90.153.0/24 maxlen: 24
111.90.154.0/24 maxlen: 24
111.90.155.0/24 maxlen: 24
111.90.156.0/24 maxlen: 24
111.90.158.0/23 maxlen: 23
111.90.158.0/24 maxlen: 24
111.90.159.0/24 maxlen: 24
124.217.224.0/21 maxlen: 21
124.217.224.0/24 maxlen: 24
124.217.225.0/24 maxlen: 24
124.217.226.0/24 maxlen: 24
124.217.227.0/24 maxlen: 24
124.217.228.0/24 maxlen: 24
124.217.229.0/24 maxlen: 24
124.217.230.0/24 maxlen: 24
124.217.231.0/24 maxlen: 24
124.217.232.0/24 maxlen: 24
124.217.233.0/24 maxlen: 24
124.217.234.0/24 maxlen: 24
124.217.235.0/24 maxlen: 24
124.217.236.0/23 maxlen: 23
124.217.236.0/24 maxlen: 24
124.217.237.0/24 maxlen: 24
124.217.238.0/24 maxlen: 24
124.217.239.0/24 maxlen: 24
124.217.240.0/20 maxlen: 20
124.217.240.0/24 maxlen: 24
124.217.241.0/24 maxlen: 24
124.217.242.0/24 maxlen: 24
124.217.243.0/24 maxlen: 24
124.217.244.0/24 maxlen: 24
124.217.245.0/24 maxlen: 24
124.217.246.0/24 maxlen: 24
124.217.247.0/24 maxlen: 24
124.217.248.0/24 maxlen: 24
124.217.249.0/24 maxlen: 24
124.217.250.0/24 maxlen: 24
124.217.251.0/24 maxlen: 24
124.217.252.0/24 maxlen: 24
124.217.253.0/24 maxlen: 24
124.217.254.0/24 maxlen: 24
124.217.255.0/24 maxlen: 24
2407:6c00:18::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3152 (0xc50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9152D08
Validity
Not Before: Mar 14 19:19:08 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67d4812c-8c18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:b3:b9:b5:2b:37:54:8f:6b:38:33:85:c2:92:
31:2e:fc:fd:c1:05:e2:a7:7d:69:b0:e9:f4:8f:a5:
53:47:2c:a3:41:75:d6:15:d2:52:b6:4f:cc:da:f7:
34:89:ea:73:3b:17:7c:87:16:a5:db:47:df:bf:f4:
4b:47:c7:4e:2c:86:5a:a0:f0:aa:0c:b8:45:bd:a1:
03:ef:09:b0:e2:23:8c:f4:d8:e2:d1:34:eb:a4:6c:
de:57:4a:7d:35:1a:b2:7d:18:0f:00:a6:b8:c7:bc:
4b:a6:74:36:16:bc:a5:da:bf:7a:14:16:44:fc:92:
13:eb:50:d6:e0:dd:e4:71:8f:c8:cc:d2:7b:5f:91:
64:93:c2:59:6e:ff:1b:7e:9b:3f:12:73:07:e3:d3:
81:ca:ac:36:17:52:a1:b9:d8:9a:ef:d7:bd:71:75:
97:34:ff:29:ea:01:dd:26:25:0c:26:2b:2a:19:6e:
2d:0b:f3:0a:fc:24:16:a7:ba:19:c7:ea:a9:10:5f:
3f:1c:31:8f:92:f4:c1:30:68:7d:28:ac:b5:17:6c:
69:9c:05:7f:ab:78:24:c8:e9:a0:ec:98:7e:56:bd:
31:8e:88:1e:6c:c0:df:f9:e8:ec:b0:80:f3:f8:a4:
5c:fb:2e:b3:aa:05:08:d2:78:8f:4d:9e:94:70:89:
c8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:FF:F6:57:F7:E7:11:04:12:99:93:05:E5:53:DE:5C:D2:C3:95:5A
X509v3 Authority Key Identifier:
keyid:34:DC:20:12:9E:AD:6F:41:A7:CA:2D:99:C9:BD:3E:7E:60:33:CB:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNwgEp6tb0Gnyi2Zyb0-fmAzy4g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152D08/F9C333921D8711EAA9C5B170C4F9AE02/2F3FBD86F3E511EA871E451AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
101.99.64.0/19
103.155.92.0/23
111.90.128.0-111.90.156.255
111.90.158.0/23
124.217.224.0/19
IPv6:
2407:6c00:18::/48
Signature Algorithm: sha256WithRSAEncryption
7f:fe:3c:5e:b8:91:2a:f4:83:81:d1:17:e6:03:2b:5c:d8:37:
f5:b0:af:2e:87:a7:15:e0:21:71:49:0f:01:02:bb:0d:dd:e8:
41:19:24:f2:5f:cb:58:b6:6a:13:a8:21:b8:5c:5d:c2:99:c7:
9f:55:a0:cf:fc:eb:35:4e:4f:a7:9f:a1:9b:ab:f0:72:39:0f:
b4:67:d2:7d:ee:d0:53:c4:e2:81:eb:c9:03:28:0c:44:87:23:
80:2e:03:2a:fb:2b:82:ec:3d:c5:ff:55:13:70:63:a8:5a:1f:
cc:dc:19:2f:b4:06:cc:20:f0:63:11:6b:bd:e0:85:f5:8a:e1:
87:d5:0b:a6:ee:3a:70:74:cf:46:c2:d2:b3:52:3a:cf:17:18:
6c:56:c0:b2:75:8f:e1:65:99:5b:9f:d5:d0:17:33:90:bc:49:
3e:eb:e2:05:a3:6e:d5:38:5e:3c:f0:05:47:6b:9c:ef:d8:bb:
3a:6f:89:5e:32:06:e7:49:70:f8:9d:8b:da:b4:5b:0c:e7:63:
62:81:c0:02:c5:f5:3a:69:d4:d3:40:0f:5b:ae:b6:11:5e:c2:
dc:3e:97:ee:61:cf:38:f3:1c:9c:5e:8e:f7:0c:29:fb:fe:4c:
19:8b:0e:74:19:b7:94:34:b6:b1:53:6e:42:6c:fc:6a:e8:95:
5f:3f:1f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:40:05 2025 by rpki-client