Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/818F58F0EAF411EC9A14E22EC4F9AE02.roa
File: 818F58F0EAF411EC9A14E22EC4F9AE02.roa (raw, json)
Hash identifier: mdVcVRRcQn5NQxP7IG4PI1LnoMUzNXgCmaEeGPjXZ1M=
Subject key identifier: 2D:92:B6:1F:0E:0D:90:92:3A:B8:04:A5:91:35:D5:7F:F6:B7:5C:82
Certificate issuer: /CN=A9112DB1/serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5
Certificate serial: 03F5
Authority key identifier: 22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/818F58F0EAF411EC9A14E22EC4F9AE02.roa
Signing time: Wed 08 Jan 2025 16:36:50 +0000
ROA not before: Wed 08 Jan 2025 16:36:50 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 51847
IP address blocks: 103.181.12.0/24 maxlen: 24
103.181.13.0/24 maxlen: 24
2400:8a20:100::/44 maxlen: 48
2400:8a20:110::/44 maxlen: 48
2400:8a20:121::/48 maxlen: 48
2400:8a20:130::/48 maxlen: 48
2400:8a20:140::/44 maxlen: 44
2400:8a20:150::/48 maxlen: 48
2400:8a20:151::/48 maxlen: 48
2400:8a20:160::/48 maxlen: 48
2400:8a20:170::/44 maxlen: 44
2400:8a20:180::/44 maxlen: 44
2400:8a20:190::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1013 (0x3f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9112DB1/serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5
Validity
Not Before: Jan 8 16:36:50 2025 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=677ea9a1-6084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:17:aa:ea:63:d3:95:f6:b1:3e:26:ff:17:5f:
05:cd:3d:71:b3:44:e7:3e:62:d9:f9:e2:38:64:53:
f3:e0:a3:b8:11:9f:14:32:17:b9:24:dc:8b:5a:42:
00:d8:6d:da:68:0e:10:87:09:0d:b4:df:73:48:5e:
af:09:32:44:89:1b:ec:32:f8:ff:28:02:41:6d:2d:
79:cd:9c:f8:be:4b:93:01:56:f7:d4:e4:96:07:03:
25:8e:1d:cb:cb:ba:01:a1:64:e5:44:95:f9:18:85:
eb:9f:c9:2d:4d:63:03:c9:77:af:99:3a:2a:de:f7:
cd:07:5e:f3:5f:97:cb:09:64:59:f4:87:05:0b:bd:
c8:26:43:c7:48:5d:0b:b4:26:f6:df:ad:a7:d1:d1:
0c:b3:67:af:a8:32:2e:e9:85:4a:9f:7a:34:68:ab:
a9:26:82:34:e4:05:46:29:a7:9f:e2:ac:06:54:9a:
fc:d7:c3:5c:51:20:76:26:df:87:27:c5:c8:1f:c9:
e1:3c:90:45:c5:c0:e1:9e:29:4a:43:09:17:90:17:
bd:89:74:94:5c:9c:9c:f7:12:62:dd:d3:b9:59:1d:
a9:ab:f4:6b:c1:29:c2:e3:93:b7:21:d5:50:7a:9e:
6b:bc:fa:8b:3b:4d:ae:2c:0b:e9:9a:0d:1a:9a:c3:
33:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:92:B6:1F:0E:0D:90:92:3A:B8:04:A5:91:35:D5:7F:F6:B7:5C:82
X509v3 Authority Key Identifier:
keyid:22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/818F58F0EAF411EC9A14E22EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.181.12.0/23
IPv6:
2400:8a20:100::/43
2400:8a20:121::/48
2400:8a20:130::/48
2400:8a20:140::-2400:8a20:151:ffff:ffff:ffff:ffff:ffff
2400:8a20:160::/48
2400:8a20:170::-2400:8a20:19f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
60:e4:73:a6:43:3e:79:7b:75:f6:5b:b4:41:3f:af:6d:79:01:
89:51:88:78:7e:c5:23:fa:df:a5:67:c6:71:89:6c:d3:34:2f:
aa:bd:c9:c6:58:3f:e8:ef:53:68:10:21:5b:02:98:38:e4:15:
48:97:fa:4c:0f:f4:a1:30:55:2e:d0:63:f1:48:89:31:11:a4:
da:fb:12:5d:a4:d5:a1:53:75:6f:84:ff:58:37:b8:57:13:47:
cb:25:04:26:9b:4b:c4:8c:cd:a7:94:70:c5:78:94:fb:f3:33:
13:aa:bd:48:95:4b:c3:2a:7a:ea:08:09:82:dc:14:94:c5:68:
2a:89:4b:57:61:36:72:9e:ee:e8:23:fd:50:eb:db:a9:4c:05:
59:17:c4:cb:73:78:1c:d6:12:7a:46:2f:e8:cf:df:12:ad:2f:
96:f9:b7:12:69:85:50:10:8d:f5:0f:e4:6a:2b:7a:8c:f1:8a:
b6:8f:06:6e:b2:7c:f8:6a:35:65:82:d5:fc:1f:33:9c:d4:37:
a3:25:07:a6:8b:20:b9:4f:37:22:8b:8e:2b:02:72:b9:0f:6d:
a1:8f:13:48:46:61:a4:0a:09:0f:69:a2:3d:16:bb:89:e2:5d:
b0:69:39:6e:64:2c:5f:46:6d:d7:2d:3c:d4:8a:b6:88:50:8d:
28:10:1c:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:10:19 2025 by rpki-client