Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/B3E738FAB0F811EA895AE231C4F9AE02.roa
File: B3E738FAB0F811EA895AE231C4F9AE02.roa (raw, json)
Hash identifier: f/v3Xwc+xZ+WS064/YX626UlguQk/j0d0TefoOG0b4E=
Subject key identifier: 88:FB:F8:35:ED:FF:AE:DA:77:0D:C4:BA:F4:21:D1:FA:84:34:79:B9
Certificate issuer: /CN=A917576D/serialNumber=B1E84FACFACBC0B7838561EF21E28F2FACF5DFEC
Certificate serial: 0A29
Authority key identifier: B1:E8:4F:AC:FA:CB:C0:B7:83:85:61:EF:21:E2:8F:2F:AC:F5:DF:EC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/B3E738FAB0F811EA895AE231C4F9AE02.roa
Signing time: Mon 20 Jan 2025 07:51:58 +0000
ROA not before: Mon 20 Jan 2025 07:51:58 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 23764
IP address blocks: 61.29.244.0/22 maxlen: 24
61.29.254.0/23 maxlen: 24
146.196.78.0/23 maxlen: 24
183.91.48.0/21 maxlen: 21
183.91.48.0/24 maxlen: 24
183.91.49.0/24 maxlen: 24
183.91.50.0/24 maxlen: 24
183.91.51.0/24 maxlen: 24
183.91.52.0/24 maxlen: 24
183.91.53.0/24 maxlen: 24
183.91.54.0/24 maxlen: 24
183.91.55.0/24 maxlen: 24
183.91.58.0/24 maxlen: 24
183.91.60.0/24 maxlen: 24
183.91.61.0/24 maxlen: 24
183.91.62.0/24 maxlen: 24
183.91.63.0/24 maxlen: 24
202.55.0.0/19 maxlen: 19
202.55.0.0/24 maxlen: 24
202.55.1.0/24 maxlen: 24
202.55.2.0/24 maxlen: 24
202.55.3.0/24 maxlen: 24
202.55.4.0/24 maxlen: 24
202.55.5.0/24 maxlen: 24
202.55.6.0/24 maxlen: 24
202.55.7.0/24 maxlen: 24
202.55.8.0/21 maxlen: 21
202.55.8.0/24 maxlen: 24
202.55.9.0/24 maxlen: 24
202.55.10.0/24 maxlen: 24
202.55.11.0/24 maxlen: 24
202.55.12.0/24 maxlen: 24
202.55.13.0/24 maxlen: 24
202.55.14.0/24 maxlen: 24
202.55.15.0/24 maxlen: 24
202.55.16.0/24 maxlen: 24
202.55.17.0/24 maxlen: 24
202.55.18.0/24 maxlen: 24
202.55.19.0/24 maxlen: 24
202.55.20.0/24 maxlen: 24
202.55.21.0/24 maxlen: 24
202.55.22.0/24 maxlen: 24
202.55.23.0/24 maxlen: 24
202.55.24.0/24 maxlen: 24
202.55.25.0/24 maxlen: 24
202.55.26.0/24 maxlen: 24
202.55.27.0/24 maxlen: 24
202.55.28.0/24 maxlen: 24
202.55.29.0/24 maxlen: 24
202.55.30.0/24 maxlen: 24
202.55.31.0/24 maxlen: 24
203.20.51.0/24 maxlen: 24
2400:9380:9000::/40 maxlen: 48
2400:9380:9100::/40 maxlen: 48
2400:9380:9200::/40 maxlen: 48
2400:9380:9300::/40 maxlen: 48
2400:9380:a000::/40 maxlen: 48
2400:9380:a100::/40 maxlen: 48
2400:9380:a200::/40 maxlen: 48
2400:9380:a300::/40 maxlen: 48
2400:9380:aa00::/40 maxlen: 48
2400:9380:f000::/40 maxlen: 48
2400:9380:f100::/40 maxlen: 48
2400:9380:f200::/40 maxlen: 48
2400:9380:f300::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2601 (0xa29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917576D
Validity
Not Before: Jan 20 07:51:58 2025 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=678e009e-3669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:07:e6:e3:1d:dd:7b:a6:0a:63:07:d7:0b:38:
83:a5:99:db:5c:06:2c:8e:a2:68:a3:95:2c:89:57:
b5:35:fe:4a:86:55:6f:ce:f9:b3:4c:81:55:4c:03:
8d:51:f2:cc:97:17:3d:ff:93:81:4d:3d:9a:1d:09:
6e:b5:ab:2a:7b:24:7f:0c:79:84:54:d2:a3:9d:8e:
6a:70:24:89:f7:c2:96:54:f2:a7:1f:89:91:3b:ca:
d2:d0:68:e4:ec:b3:37:63:dc:e6:4f:b2:ec:35:67:
f1:9a:06:69:26:54:21:ee:6b:21:19:8a:20:94:d1:
44:cf:f3:fe:ac:55:c1:3f:19:2b:cd:02:1f:2a:e6:
c0:6c:ae:3a:50:67:c6:5f:93:be:a6:ba:7f:26:f6:
02:c4:1a:87:35:7b:e4:73:28:8a:37:cb:1d:6f:b8:
f2:a5:ce:85:c0:cb:d3:d3:4a:25:c7:90:50:49:5b:
99:c6:63:54:37:11:19:70:d0:c1:0e:76:7f:cd:d2:
0e:66:12:8c:03:03:39:6c:d4:37:28:57:0d:0e:6a:
1b:db:7e:18:c2:ce:b4:23:f4:a5:fc:54:8a:fa:0a:
8c:bb:a5:36:a9:ed:5a:51:96:57:7d:77:74:fa:bf:
3c:1f:17:04:e4:7a:14:29:ba:66:bd:96:f4:56:db:
af:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:FB:F8:35:ED:FF:AE:DA:77:0D:C4:BA:F4:21:D1:FA:84:34:79:B9
X509v3 Authority Key Identifier:
keyid:B1:E8:4F:AC:FA:CB:C0:B7:83:85:61:EF:21:E2:8F:2F:AC:F5:DF:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/sehPrPrLwLeDhWHvIeKPL6z13-w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/B3E738FAB0F811EA895AE231C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.29.244.0/22
61.29.254.0/23
146.196.78.0/23
183.91.48.0/21
183.91.58.0/24
183.91.60.0/22
202.55.0.0/19
203.20.51.0/24
IPv6:
2400:9380:9000::/38
2400:9380:a000::/38
2400:9380:aa00::/40
2400:9380:f000::/38
Signature Algorithm: sha256WithRSAEncryption
41:75:93:cf:35:e6:58:e8:1e:79:f6:bc:bb:1f:39:a0:a7:e0:
de:4a:c0:d3:e2:69:9a:63:92:74:04:29:35:f3:13:71:74:2f:
75:83:53:f7:a7:ad:9a:58:d5:0e:02:47:61:67:d4:35:1a:f4:
ff:cd:b6:0a:39:7d:b5:bc:67:5b:97:ae:1b:c2:77:00:9b:7b:
c3:c5:1c:8d:03:33:92:f8:3e:92:c8:4b:58:0e:ce:f6:5a:1e:
44:46:32:d8:61:84:55:58:45:5f:dc:d0:2a:e7:7f:31:03:b8:
2f:fb:07:94:e0:3d:76:46:8d:f9:de:83:16:40:b3:f7:6b:69:
45:52:9d:1e:6a:7a:05:3b:bb:a7:4c:c8:cb:e7:4f:5f:87:a0:
ce:99:78:41:fa:36:36:a5:28:6f:ed:79:89:a8:47:3c:20:06:
b3:7f:f7:60:96:be:b1:a1:51:6f:2c:41:f1:a0:d1:01:41:87:
72:ec:78:78:f0:2f:16:de:92:a5:8c:ea:c6:28:ce:f7:e1:82:
1a:4b:27:16:fd:3e:ae:65:f6:f7:88:2e:2a:cb:eb:1b:28:83:
58:6b:2f:c2:03:c2:60:2b:95:ee:71:a4:60:69:4b:ef:9e:37:
6c:16:ea:8a:34:91:8e:80:70:e1:4a:c7:54:f4:7e:ab:0f:cb:
37:db:be:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 08:01:55 2025 by rpki-client