Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa
File: 7A40B730E2D811EBAB97665DC4F9AE02.roa (raw, json)
Hash identifier: y3SbjjkjO1hJ5EMyWPMdR5kijs47MB+EfJV1pQiq6As=
Subject key identifier: B5:B8:70:9A:64:3A:F8:D8:98:AA:3D:DE:B1:F7:04:89:49:4A:0C:D0
Certificate issuer: /CN=A919EB4E/serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084
Certificate serial: 0E59
Authority key identifier: 1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa
Signing time: Wed 18 Dec 2024 18:16:12 +0000
ROA not before: Wed 18 Dec 2024 18:16:12 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 59238
IP address blocks: 103.253.132.0/23 maxlen: 24
2400:c540::/32 maxlen: 32
2400:c540::/47 maxlen: 48
2400:c540:2::/47 maxlen: 47
2400:c540:2::/48 maxlen: 48
2400:c540:4::/48 maxlen: 48
2400:c540:52::/48 maxlen: 48
2400:c540:53::/48 maxlen: 48
2400:c540:65::/48 maxlen: 48
2400:c540:80::/48 maxlen: 48
2400:c540:ba::/48 maxlen: 48
2400:c540:100::/48 maxlen: 48
2400:c540:110::/48 maxlen: 48
2400:c540:1cc::/48 maxlen: 48
2400:c540:c000::/36 maxlen: 36
2400:c540:c036::/48 maxlen: 48
2400:c540:c276::/48 maxlen: 48
2400:c540:c344::/48 maxlen: 48
2400:c540:c392::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3673 (0xe59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919EB4E/serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084
Validity
Not Before: Dec 18 18:16:12 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=6763116c-1df7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cc:d0:54:c8:17:9d:dc:ac:09:75:ea:65:61:
6c:f7:8e:b1:96:7b:70:66:af:25:43:c7:9f:7c:94:
5c:a9:a0:25:e8:ba:65:8b:27:63:0f:ba:3e:70:17:
6b:f7:7a:ae:b3:c9:aa:d7:49:2b:96:15:f4:6a:9b:
4b:ed:a0:5b:c1:34:b9:ae:06:53:45:c3:51:e6:bb:
39:3d:82:60:6a:3a:1f:b6:71:14:aa:49:a5:5a:d4:
cb:39:16:40:d6:6a:f5:af:a1:cc:1b:de:6f:71:6c:
58:cc:3a:43:ba:cf:f0:f9:79:92:2a:bc:c7:16:ad:
fb:d4:bf:74:bb:0f:9c:47:e8:ea:9a:1e:7a:18:d7:
d7:67:ad:da:0f:45:f3:24:a6:11:23:b8:8e:c7:6e:
ef:d7:f2:57:dc:1a:bc:81:d3:dc:8b:e6:d5:59:04:
08:0f:f2:96:ed:cf:97:e6:54:c5:7f:f1:d6:cb:12:
3d:52:1f:35:31:d0:ef:f7:47:f2:af:be:c0:01:7b:
de:04:cf:a2:af:91:b0:26:ff:4a:62:94:3a:42:b9:
a3:49:b9:42:ee:09:02:d5:10:ea:ba:7b:0e:de:76:
d6:51:2d:33:2c:44:12:a8:1d:cc:e5:70:de:85:8c:
2b:1b:47:ab:ed:a2:50:3b:46:bc:3f:83:9c:62:7b:
9e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:B8:70:9A:64:3A:F8:D8:98:AA:3D:DE:B1:F7:04:89:49:4A:0C:D0
X509v3 Authority Key Identifier:
keyid:1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.253.132.0/23
IPv6:
2400:c540::/32
Signature Algorithm: sha256WithRSAEncryption
0e:7b:da:f1:77:15:76:bb:8a:ef:48:52:39:db:56:57:c6:ad:
5d:d7:99:91:ee:e1:9a:36:6b:1d:21:c7:67:58:87:a6:35:6c:
86:08:84:91:b7:ad:ea:07:b0:49:51:b3:30:cd:a2:30:a1:db:
0b:05:c4:0b:01:fa:50:f8:9d:c6:a7:ac:66:38:d6:3c:e5:e5:
19:7c:3b:8c:14:75:04:8b:f9:4a:11:75:a2:2a:3e:dc:f2:dd:
30:ea:ee:79:27:38:34:90:2f:a3:2a:35:76:71:fd:99:c2:fa:
89:cd:64:ca:03:e9:c2:5a:7d:31:dd:0b:52:e0:9c:a6:67:23:
05:39:9c:3e:a1:2a:74:a4:c9:41:6d:b3:d5:93:07:0e:39:80:
d4:b1:f8:11:b6:bf:38:fb:c8:c4:5f:7a:3b:04:77:76:44:55:
ed:2a:d3:a3:39:c6:c6:bc:8a:a2:b9:65:9d:15:c2:ee:c1:bb:
e6:76:b8:55:48:cd:39:42:02:31:b6:a1:bc:99:80:9f:3a:94:
87:3e:f3:f2:99:f7:94:04:33:6f:f4:6b:86:8d:8d:74:2f:78:
18:cf:9f:35:da:8c:a4:54:4d:58:6e:23:80:40:ab:fe:81:83:
cd:2d:33:4e:41:c8:ed:9c:1e:58:a0:36:7f:f6:bf:d8:2f:71:
3c:d6:c2:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:42:46 2025 by rpki-client