Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/7909FCC06DF211EA806B671BC4F9AE02.roa
File: 7909FCC06DF211EA806B671BC4F9AE02.roa (raw, json)
Hash identifier: n1uQ3psy32mhvWgrDG8XabzbP0HRNswXJpwX9GNWb0Q=
Subject key identifier: 5D:ED:F6:FC:C8:94:C5:69:CA:6A:17:66:1A:06:BD:82:D3:1F:E7:06
Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7
Certificate serial: 34C2
Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/7909FCC06DF211EA806B671BC4F9AE02.roa
Signing time: Fri 24 Jan 2025 16:02:26 +0000
ROA not before: Fri 24 Jan 2025 16:02:26 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 23951
IP address blocks: 103.101.136.0/24 maxlen: 24
103.101.137.0/24 maxlen: 24
103.101.138.0/24 maxlen: 24
103.101.139.0/24 maxlen: 24
117.20.48.0/24 maxlen: 24
117.20.49.0/24 maxlen: 24
117.20.50.0/24 maxlen: 24
117.20.51.0/24 maxlen: 24
117.20.52.0/24 maxlen: 24
117.20.53.0/24 maxlen: 24
117.20.54.0/24 maxlen: 24
117.20.55.0/24 maxlen: 24
117.20.56.0/24 maxlen: 24
117.20.57.0/24 maxlen: 24
117.20.58.0/24 maxlen: 24
117.20.59.0/24 maxlen: 24
117.20.60.0/24 maxlen: 24
117.20.61.0/24 maxlen: 24
117.20.62.0/24 maxlen: 24
117.20.63.0/24 maxlen: 24
202.152.129.0/24 maxlen: 24
202.152.130.0/24 maxlen: 24
202.152.131.0/24 maxlen: 24
202.152.132.0/24 maxlen: 24
202.152.133.0/24 maxlen: 24
202.152.134.0/24 maxlen: 24
202.152.135.0/24 maxlen: 24
202.152.136.0/24 maxlen: 24
202.152.137.0/24 maxlen: 24
202.152.138.0/24 maxlen: 24
202.152.139.0/24 maxlen: 24
202.152.140.0/24 maxlen: 24
202.152.141.0/24 maxlen: 24
202.152.142.0/24 maxlen: 24
202.152.143.0/24 maxlen: 24
202.152.144.0/24 maxlen: 24
202.152.145.0/24 maxlen: 24
202.152.146.0/24 maxlen: 24
202.152.147.0/24 maxlen: 24
202.152.148.0/24 maxlen: 24
202.152.149.0/24 maxlen: 24
202.152.150.0/24 maxlen: 24
202.152.151.0/24 maxlen: 24
202.152.152.0/24 maxlen: 24
202.152.153.0/24 maxlen: 24
202.152.154.0/24 maxlen: 24
202.152.155.0/24 maxlen: 24
202.152.156.0/24 maxlen: 24
202.152.157.0/24 maxlen: 24
202.152.158.0/24 maxlen: 24
202.152.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13506 (0x34c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9186214
Validity
Not Before: Jan 24 16:02:26 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=6793b992-c135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8c:8e:46:fe:b0:84:8e:96:c3:25:17:bb:8f:
1f:3b:67:e5:16:b5:b9:69:d5:22:a8:5d:c0:c5:38:
3c:9a:cd:1b:cc:28:e3:63:5d:12:6e:5b:b8:6d:21:
06:6d:19:75:c6:a7:66:f3:eb:b3:43:92:cd:e8:46:
5a:6d:75:e7:22:1c:5c:23:5c:11:63:ab:ec:13:20:
28:22:e1:9d:89:6a:ab:82:75:c9:cc:ce:36:74:db:
04:30:42:a2:99:99:cb:e8:0f:3c:29:ce:83:77:f8:
17:fd:20:d2:43:88:86:1b:8b:cb:78:71:ee:28:79:
87:97:57:01:2a:31:4a:88:db:90:65:0a:13:49:b9:
92:6f:e5:1a:2c:ad:75:7b:b0:93:df:8c:1e:92:99:
ae:07:66:c1:41:02:7e:45:c5:db:d1:96:5b:61:e3:
19:46:7d:7c:7f:81:43:b0:52:16:c6:08:1b:af:98:
11:38:0e:ee:d4:fc:af:0c:d4:e9:fa:17:2d:2c:db:
1c:11:04:a8:69:2e:fd:ca:a5:f9:28:ae:30:2b:4c:
ed:e1:58:09:f9:85:2a:c9:f1:44:1d:4e:a6:ef:9e:
98:cf:df:0c:47:ce:a1:e7:48:3f:ec:2f:35:e8:4a:
c5:e8:e5:18:ff:f1:23:20:a4:ad:54:62:f9:22:e6:
df:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:ED:F6:FC:C8:94:C5:69:CA:6A:17:66:1A:06:BD:82:D3:1F:E7:06
X509v3 Authority Key Identifier:
keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/7909FCC06DF211EA806B671BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.101.136.0/22
117.20.48.0/20
202.152.129.0-202.152.159.255
Signature Algorithm: sha256WithRSAEncryption
89:38:50:a4:53:df:f5:fc:24:0f:05:68:a4:02:f5:5b:d5:7a:
cc:4d:89:78:39:c5:f9:4f:b1:e0:74:68:6f:51:65:a2:44:49:
91:bd:bc:fb:72:21:ca:6e:8d:dd:09:dc:b9:c0:95:d9:ec:02:
28:2a:2d:30:91:31:a9:f7:6b:ab:6a:18:f4:bf:b3:2e:87:8d:
96:7c:32:43:a2:de:c9:fc:ff:19:1c:45:37:ad:e5:e4:37:05:
e0:e8:62:56:a7:f1:03:d6:0a:e0:a1:0c:0b:0e:d0:d1:2a:08:
3b:d1:c6:e5:c7:a1:61:32:a8:22:5f:43:60:62:ca:15:45:22:
b5:2a:95:a0:a5:7b:96:0d:d2:58:13:10:d1:93:8c:e9:41:8d:
32:8b:b3:03:d5:37:5c:d9:89:6b:21:49:32:d4:84:95:aa:ce:
bb:01:2b:85:7e:83:1f:a8:2e:f7:a0:81:68:6f:5e:3d:6a:62:
0e:29:6f:5b:0f:53:5e:66:33:c2:c8:47:4b:f1:52:59:56:15:
cf:11:88:42:2e:2a:a3:bf:73:96:44:05:37:dd:a6:60:05:ac:
ad:f9:cd:1b:86:38:19:13:54:71:48:5b:06:a0:b0:cc:11:cc:
8c:47:17:db:c7:72:8d:19:cb:6c:d5:b2:06:a6:ad:ed:8f:e6:
93:d4:ea:68
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgICNMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG
QUIyNEQ3RTcwHhcNMjUwMTI0MTYwMjI2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzkzYjk5Mi1jMTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAv4yORv6whI6WwyUXu48fO2flFrW5adUiqF3AxTg8ms0bzCjjY10Sblu4bSEG
bRl1xqdm8+uzQ5LN6EZabXXnIhxcI1wRY6vsEyAoIuGdiWqrgnXJzM42dNsEMEKi
mZnL6A88Kc6Dd/gX/SDSQ4iGG4vLeHHuKHmHl1cBKjFKiNuQZQoTSbmSb+UaLK11
e7CT34wekpmuB2bBQQJ+RcXb0ZZbYeMZRn18f4FDsFIWxggbr5gROA7u1PyvDNTp
+hctLNscEQSoaS79yqX5KK4wK0zt4VgJ+YUqyfFEHU6m756Yz98MR86h50g/7C81
6ErF6OUY//EjIKStVGL5IubfDQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFF3t9vzI
lMVpymoXZhoGvYLTH+cGMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz
MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx
LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNzkwOUZDQzA2
REYyMTFFQTgwNkI2NzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E
JDAiMCAEAgABMBoDBAJnZYgDBAR1FDAwDAMEAMqYgQMEBcqYgDANBgkqhkiG9w0B
AQsFAAOCAQEAiThQpFPf9fwkDwVopAL1W9V6zE2JeDnF+U+x4HRob1FlokRJkb28
+3Ihym6N3QncucCV2ewCKCotMJExqfdrq2oY9L+zLoeNlnwyQ6Leyfz/GRxFN63l
5DcF4OhiVqfxA9YK4KEMCw7Q0SoIO9HG5cehYTKoIl9DYGLKFUUitSqVoKV7lg3S
WBMQ0ZOM6UGNMouzA9U3XNmJayFJMtSElarOuwErhX6DH6gu96CBaG9ePWpiDilv
Ww9TXmYzwshHS/FSWVYVzxGIQi4qo79zlkQFN92mYAWsrfnNG4Y4GRNUcUhbBqCw
zBHMjEcX28dyjRnLbNWyBqat7Y/mk9TqaA==
-----END CERTIFICATE-----
Generated at Mon Apr 7 18:55:35 2025 by rpki-client