Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/F33309A2B72011EFB3A5D772C4F9AE02.roa
File: F33309A2B72011EFB3A5D772C4F9AE02.roa (raw, json)
Hash identifier: B6GTUBQJjZfy0L/2y0BwFYd9G60axGsfhhHtTmQD3Vw=
Subject key identifier: 96:C4:A8:F7:B2:1A:49:5E:A2:8C:92:FD:CC:0D:B4:B7:E8:87:FA:53
Certificate issuer: /CN=A91982EF/serialNumber=87197FD546DC31523111DD9390B1BA3F3D702656
Certificate serial: 48
Authority key identifier: 87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/F33309A2B72011EFB3A5D772C4F9AE02.roa
Signing time: Thu 20 Mar 2025 22:41:34 +0000
ROA not before: Thu 20 Mar 2025 22:41:34 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 13445
IP address blocks: 2402:2500:10::/44 maxlen: 44
2402:2500:20::/44 maxlen: 44
2402:2500:30::/44 maxlen: 44
2402:2500:40::/44 maxlen: 44
2402:2500:50::/44 maxlen: 44
2402:2500:100::/40 maxlen: 40
2402:2500:200::/40 maxlen: 40
2402:2500:300::/40 maxlen: 40
2402:2500:400::/40 maxlen: 40
2402:2500:500::/40 maxlen: 40
2402:2500:1010::/44 maxlen: 44
2402:2500:1020::/44 maxlen: 44
2402:2500:1030::/44 maxlen: 44
2402:2500:1040::/44 maxlen: 44
2402:2500:1050::/44 maxlen: 44
2402:2500:10a0::/44 maxlen: 44
2402:2500:10a0::/48 maxlen: 48
2402:2500:10a1::/48 maxlen: 48
2402:2500:10a2::/48 maxlen: 48
2402:2500:10a3::/48 maxlen: 48
2402:2500:10a4::/48 maxlen: 48
2402:2500:10a5::/48 maxlen: 48
2402:2500:10a6::/48 maxlen: 48
2402:2500:10a7::/48 maxlen: 48
2402:2500:10a8::/48 maxlen: 48
2402:2500:10a9::/48 maxlen: 48
2402:2500:10aa::/48 maxlen: 48
2402:2500:10ab::/48 maxlen: 48
2402:2500:10ac::/48 maxlen: 48
2402:2500:10ad::/48 maxlen: 48
2402:2500:10ae::/48 maxlen: 48
2402:2500:10af::/48 maxlen: 48
2402:2500:1100::/44 maxlen: 44
2402:2500:1200::/44 maxlen: 44
2402:2500:1300::/44 maxlen: 44
2402:2500:1400::/44 maxlen: 44
2402:2500:1500::/44 maxlen: 44
2402:2500:2010::/44 maxlen: 44
2402:2500:2020::/44 maxlen: 44
2402:2500:2030::/44 maxlen: 44
2402:2500:2040::/44 maxlen: 44
2402:2500:2050::/44 maxlen: 44
2402:2500:20a0::/44 maxlen: 44
2402:2500:20a0::/48 maxlen: 48
2402:2500:20a1::/48 maxlen: 48
2402:2500:20a2::/48 maxlen: 48
2402:2500:20a3::/48 maxlen: 48
2402:2500:20a4::/48 maxlen: 48
2402:2500:20a5::/48 maxlen: 48
2402:2500:20a6::/48 maxlen: 48
2402:2500:20a7::/48 maxlen: 48
2402:2500:20a8::/48 maxlen: 48
2402:2500:20a9::/48 maxlen: 48
2402:2500:20aa::/48 maxlen: 48
2402:2500:20ab::/48 maxlen: 48
2402:2500:20ac::/48 maxlen: 48
2402:2500:20ad::/48 maxlen: 48
2402:2500:20ae::/48 maxlen: 48
2402:2500:20af::/48 maxlen: 48
2402:2500:2100::/44 maxlen: 44
2402:2500:2200::/44 maxlen: 44
2402:2500:2300::/44 maxlen: 44
2402:2500:2400::/44 maxlen: 44
2402:2500:2500::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72 (0x48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91982EF
Validity
Not Before: Mar 20 22:41:34 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=67dc999e-c56a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3d:b9:8e:46:93:68:05:9c:c4:ee:8c:e2:38:
b0:21:a6:9b:37:41:d3:08:b0:c7:21:dd:50:48:d5:
ae:9e:ec:03:56:73:5a:3b:51:2d:13:ad:b8:ac:94:
cb:b7:35:6e:5e:4a:e5:91:e1:a6:7a:25:f0:0a:5f:
3f:68:4f:17:83:12:5a:f5:91:36:7b:df:a7:a8:ff:
dc:f5:f1:d4:4f:b6:a4:52:9d:56:c0:97:89:3c:cd:
a8:37:e2:e7:50:1a:4e:5c:6d:92:e8:aa:80:f0:7f:
a9:98:1f:f8:1d:53:9c:d5:82:de:6e:77:74:2d:db:
ad:c6:33:2a:65:a4:89:9b:d2:53:7b:8d:dc:08:7e:
6e:ba:86:df:e2:17:59:ff:f4:15:28:6e:88:f1:d8:
63:ac:72:34:93:a6:9a:48:fe:2d:67:8d:be:fe:1e:
0f:8c:e7:46:de:d7:da:56:a2:f3:6d:4b:f9:56:7e:
dc:dd:d2:ea:4c:d7:4e:0b:50:66:57:02:22:98:6e:
fc:20:1d:5d:5b:1b:ed:4c:e6:af:17:d5:8c:5f:20:
df:f0:8a:9b:fd:79:b7:71:4f:a5:98:95:d5:0b:e7:
c4:7c:7b:f7:f3:86:f6:82:2d:a2:f0:f4:25:d2:eb:
df:84:7a:59:b3:54:55:10:4d:a3:e6:eb:44:9b:bd:
3f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C4:A8:F7:B2:1A:49:5E:A2:8C:92:FD:CC:0D:B4:B7:E8:87:FA:53
X509v3 Authority Key Identifier:
keyid:87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/F33309A2B72011EFB3A5D772C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:2500:10::-2402:2500:5f:ffff:ffff:ffff:ffff:ffff
2402:2500:100::-2402:2500:5ff:ffff:ffff:ffff:ffff:ffff
2402:2500:1010::-2402:2500:105f:ffff:ffff:ffff:ffff:ffff
2402:2500:10a0::/44
2402:2500:1100::/44
2402:2500:1200::/44
2402:2500:1300::/44
2402:2500:1400::/44
2402:2500:1500::/44
2402:2500:2010::-2402:2500:205f:ffff:ffff:ffff:ffff:ffff
2402:2500:20a0::/44
2402:2500:2100::/44
2402:2500:2200::/44
2402:2500:2300::/44
2402:2500:2400::/44
2402:2500:2500::/44
Signature Algorithm: sha256WithRSAEncryption
21:2e:43:af:62:cc:64:18:ae:5d:18:fb:d6:c3:34:de:d7:cb:
00:99:20:51:46:2f:af:ab:ee:f2:f8:74:f5:d4:6a:47:94:1d:
ba:f8:b0:18:7d:35:b3:0b:4a:87:49:01:a0:9e:6a:ad:3c:20:
9d:da:28:c1:16:fe:5c:45:a7:0f:90:d2:ec:bf:57:13:38:e9:
f4:0b:12:c9:fd:17:e3:37:bc:01:e6:57:93:78:d2:37:fe:1e:
1e:dc:96:af:fb:3d:83:cd:73:9c:02:7a:6c:a5:b4:7f:02:e6:
9e:1e:3c:c4:89:57:c2:28:e6:8d:0d:fb:04:6f:82:b3:e6:ab:
09:bb:ba:8a:87:4e:d7:5f:32:49:89:bf:f1:69:dd:12:43:f6:
08:af:21:73:80:3e:66:72:3f:88:e5:60:ef:60:97:84:4d:69:
b6:33:b8:69:f6:7f:44:7f:e1:2f:99:ef:da:70:d8:d7:43:b2:
89:7b:78:20:30:6e:dc:f4:a0:56:91:6b:7f:d4:04:06:80:ac:
96:42:c9:fd:f0:e5:49:c1:07:ac:7b:08:84:cb:24:1e:dd:4f:
f8:f0:f2:72:92:91:05:1c:b5:7a:7c:7b:65:f5:fb:0e:3f:92:
2b:c5:21:cc:6c:98:be:be:59:ec:4f:9c:6b:e0:cb:30:81:e6:
0b:29:10:28
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5
ODJFRjExMC8GA1UEBRMoODcxOTdGRDU0NkRDMzE1MjMxMTFERDkzOTBCMUJBM0Yz
RDcwMjY1NjAeFw0yNTAzMjAyMjQxMzRaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY3ZGM5OTllLWM1NmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDEPbmORpNoBZzE7oziOLAhpps3QdMIsMch3VBI1a6e7ANWc1o7US0TrbislMu3
NW5eSuWR4aZ6JfAKXz9oTxeDElr1kTZ736eo/9z18dRPtqRSnVbAl4k8zag34udQ
Gk5cbZLoqoDwf6mYH/gdU5zVgt5ud3Qt263GMyplpImb0lN7jdwIfm66ht/iF1n/
9BUobojx2GOscjSTpppI/i1njb7+Hg+M50be19pWovNtS/lWftzd0upM104LUGZX
AiKYbvwgHV1bG+1M5q8X1YxfIN/wipv9ebdxT6WYldUL58R8e/fzhvaCLaLw9CXS
69+EelmzVFUQTaPm60SbvT9HAgMBAAGjggNOMIIDSjAdBgNVHQ4EFgQUlsSo97Ia
SV6ijJL9zA20t+iH+lMwHwYDVR0jBBgwFoAUhxl/1UbcMVIxEd2TkLG6Pz1wJlYw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MkVGL0ZDNjUwQjcyQjcx
RDExRUY4OTgyQzQwQ0M0RjlBRTAyL2h4bF8xVWJjTVZJeEVkMlRrTEc2UHoxd0ps
WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvaHhsXzFVYmNNVkl4RWQyVGtMRzZQejF3SmxZLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
ODJFRi9GQzY1MEI3MkI3MUQxMUVGODk4MkM0MENDNEY5QUUwMi9GMzMzMDlBMkI3
MjAxMUVGQjNBNUQ3NzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDCB1wYIKwYBBQUHAQcBAf8E
gccwgcQwgcEEAgACMIG6MBIDBwQkAiUAABADBwUkAiUAAEAwEAMGACQCJQABAwYB
JAIlAAQwEgMHBCQCJQAQEAMHBSQCJQAQQAMHBCQCJQAQoAMHBCQCJQARAAMHBCQC
JQASAAMHBCQCJQATAAMHBCQCJQAUAAMHBCQCJQAVADASAwcEJAIlACAQAwcFJAIl
ACBAAwcEJAIlACCgAwcEJAIlACEAAwcEJAIlACIAAwcEJAIlACMAAwcEJAIlACQA
AwcEJAIlACUAMA0GCSqGSIb3DQEBCwUAA4IBAQAhLkOvYsxkGK5dGPvWwzTe18sA
mSBRRi+vq+7y+HT11GpHlB26+LAYfTWzC0qHSQGgnmqtPCCd2ijBFv5cRacPkNLs
v1cTOOn0CxLJ/RfjN7wB5leTeNI3/h4e3Jav+z2DzXOcAnpspbR/AuaeHjzEiVfC
KOaNDfsEb4Kz5qsJu7qKh07XXzJJib/xad0SQ/YIryFzgD5mcj+I5WDvYJeETWm2
M7hp9n9Ef+Evme/acNjXQ7KJe3ggMG7c9KBWkWt/1AQGgKyWQsn98OVJwQesewiE
yyQe3U/48PJykpEFHLV6fHtl9fsOP5IrxSHMbJi+vlnsT5xr4MswgeYLKRAo
-----END CERTIFICATE-----
Generated at Sat Apr 5 18:55:37 2025 by rpki-client