Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7C1DBADEB6D411EF843AE965C4F9AE02.roa
File: 7C1DBADEB6D411EF843AE965C4F9AE02.roa (raw, json)
Hash identifier: 596WOvvQ1UFen3fmTmcOC4sT1uKucrDNohulJhYOgQI=
Subject key identifier: 28:96:9A:6B:12:19:88:7B:E3:79:44:0E:86:E7:8F:DC:62:90:45:D0
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 48B4
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7C1DBADEB6D411EF843AE965C4F9AE02.roa
Signing time: Tue 10 Dec 2024 08:55:20 +0000
ROA not before: Tue 10 Dec 2024 08:55:20 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 150862
IP address blocks: 36.50.24.0/23 maxlen: 23
36.50.134.0/23 maxlen: 23
203.145.46.0/23 maxlen: 23
2001:df3:e6c0::/48 maxlen: 48
2001:df4:1c40::/48 maxlen: 48
2001:df4:2dc0::/48 maxlen: 48
2001:df4:3640::/48 maxlen: 48
2001:df4:36c0::/48 maxlen: 48
2001:df4:50c0::/48 maxlen: 48
2001:df4:63c0::/48 maxlen: 48
2001:df4:6440::/48 maxlen: 48
2001:df4:6840::/48 maxlen: 48
2001:df4:73c0::/48 maxlen: 48
2001:df4:8640::/48 maxlen: 48
2001:df4:8cc0::/48 maxlen: 48
2401:5120::/48 maxlen: 48
2401:5b20::/48 maxlen: 48
2401:7160::/48 maxlen: 48
2401:71a0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18612 (0x48b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Dec 10 08:55:20 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=675801f8-f0e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:07:36:76:1c:5c:65:a8:e4:76:c1:27:e6:ca:
97:76:b2:7f:ef:a8:fa:b8:33:fd:47:26:bb:c8:ef:
12:57:47:26:38:b3:a2:9d:76:9c:32:71:2a:6e:14:
57:29:7a:6b:df:f4:64:ab:ef:0d:07:3a:55:62:00:
df:57:9f:e8:7b:01:f8:39:1e:52:47:d3:c8:63:76:
dd:d2:9c:7f:93:eb:ad:36:e3:de:c0:bd:a7:4e:e2:
82:e0:ea:1e:85:e8:b9:92:ca:46:10:50:34:b3:46:
12:d1:c4:15:37:4c:14:3a:fb:c4:78:0e:fe:da:f2:
42:30:8f:05:b3:83:3a:e2:5e:ee:6e:c2:7c:37:66:
33:c8:c2:8e:84:b3:df:00:ef:db:83:28:79:39:57:
63:03:58:35:84:b5:69:99:4b:63:b7:3f:9e:2a:77:
2e:3e:fc:c1:3e:4e:64:dc:28:74:08:6d:56:fc:9c:
c4:8e:4a:60:20:a8:71:1c:8e:a7:5e:f3:c6:c6:e3:
88:b8:c2:cc:74:1d:fd:91:77:06:c1:17:a2:7c:bb:
26:9a:6c:2b:29:ea:61:ef:8a:c9:53:d4:0a:5a:f7:
66:74:53:be:5e:05:e7:26:d2:da:a9:7e:a3:86:c2:
ad:9d:61:9d:1f:f1:d6:0f:91:47:8e:93:17:22:7b:
63:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:96:9A:6B:12:19:88:7B:E3:79:44:0E:86:E7:8F:DC:62:90:45:D0
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7C1DBADEB6D411EF843AE965C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.24.0/23
36.50.134.0/23
203.145.46.0/23
IPv6:
2001:df3:e6c0::/48
2001:df4:1c40::/48
2001:df4:2dc0::/48
2001:df4:3640::/48
2001:df4:36c0::/48
2001:df4:50c0::/48
2001:df4:63c0::/48
2001:df4:6440::/48
2001:df4:6840::/48
2001:df4:73c0::/48
2001:df4:8640::/48
2001:df4:8cc0::/48
2401:5120::/48
2401:5b20::/48
2401:7160::/48
2401:71a0::/48
Signature Algorithm: sha256WithRSAEncryption
51:2e:1d:68:65:05:ca:6a:c8:f8:de:99:29:bb:bc:61:73:d5:
b9:01:da:1e:97:dc:54:f6:b9:ea:f8:40:22:3d:e2:55:e6:4d:
70:09:15:58:18:66:ec:46:f4:8b:d8:36:42:30:ec:e2:0f:7b:
54:46:df:b6:62:cb:e3:f6:57:52:c9:72:dc:a6:60:48:c2:a2:
47:fc:fb:14:08:b4:74:e3:40:be:ec:5c:94:7d:46:c7:ec:17:
6a:a3:05:e9:54:28:cb:91:73:38:db:06:b5:d3:70:62:95:4e:
dc:ea:e1:1a:3e:14:20:4d:9a:1b:55:aa:b7:b9:8d:15:f2:ea:
c9:98:23:ff:25:34:5b:d7:65:93:6a:aa:5c:ce:d6:88:6d:cb:
27:d5:90:fd:c8:3b:2d:3a:ff:3e:4f:cf:3e:f6:56:dd:3a:4b:
e9:c4:50:32:71:c7:5f:68:e1:b9:bb:cb:23:dc:ae:35:4c:8b:
7a:3b:1d:e1:bd:06:7e:69:f7:e5:f6:16:1f:5c:28:c6:49:d0:
56:64:e1:45:4a:ca:0d:eb:9a:ab:9a:f6:24:fc:9b:0d:2c:a2:
78:86:32:24:8c:2d:93:36:1f:10:dd:d0:cc:f7:97:a9:f0:99:
8a:e4:50:04:50:7b:3f:bc:78:a3:47:3e:40:f9:a9:2c:c8:64:
8a:20:7d:bf
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgICSLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3
NTZBQzZGMEEwHhcNMjQxMjEwMDg1NTIwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzU4MDFmOC1mMGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA7Ac2dhxcZajkdsEn5sqXdrJ/76j6uDP9Rya7yO8SV0cmOLOinXacMnEqbhRX
KXpr3/Rkq+8NBzpVYgDfV5/oewH4OR5SR9PIY3bd0px/k+utNuPewL2nTuKC4Ooe
hei5kspGEFA0s0YS0cQVN0wUOvvEeA7+2vJCMI8Fs4M64l7ubsJ8N2YzyMKOhLPf
AO/bgyh5OVdjA1g1hLVpmUtjtz+eKncuPvzBPk5k3Ch0CG1W/JzEjkpgIKhxHI6n
XvPGxuOIuMLMdB39kXcGwReifLsmmmwrKeph74rJU9QKWvdmdFO+XgXnJtLaqX6j
hsKtnWGdH/HWD5FHjpMXIntjWQIDAQABo4IDPjCCAzowHQYDVR0OBBYEFCiWmmsS
GYh743lEDobnj9xikEXQMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE
OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi
d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvN0MxREJBREVC
NkQ0MTFFRjg0M0FFOTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgccGCCsGAQUFBwEHAQH/
BIG3MIG0MBgEAgABMBIDBAEkMhgDBAEkMoYDBAHLkS4wgZcEAgACMIGQAwcAIAEN
8+bAAwcAIAEN9BxAAwcAIAEN9C3AAwcAIAEN9DZAAwcAIAEN9DbAAwcAIAEN9FDA
AwcAIAEN9GPAAwcAIAEN9GRAAwcAIAEN9GhAAwcAIAEN9HPAAwcAIAEN9IZAAwcA
IAEN9IzAAwcAJAFRIAAAAwcAJAFbIAAAAwcAJAFxYAAAAwcAJAFxoAAAMA0GCSqG
SIb3DQEBCwUAA4IBAQBRLh1oZQXKasj43pkpu7xhc9W5Adoel9xU9rnq+EAiPeJV
5k1wCRVYGGbsRvSL2DZCMOziD3tURt+2Ysvj9ldSyXLcpmBIwqJH/PsUCLR040C+
7FyUfUbH7BdqowXpVCjLkXM42wa103BilU7c6uEaPhQgTZobVaq3uY0V8urJmCP/
JTRb12WTaqpcztaIbcsn1ZD9yDstOv8+T88+9lbdOkvpxFAyccdfaOG5u8sj3K41
TIt6Ox3hvQZ+affl9hYfXCjGSdBWZOFFSsoN65qrmvYk/JsNLKJ4hjIkjC2TNh8Q
3dDM95ep8JmK5FAEUHs/vHijRz5A+aksyGSKIH2/
-----END CERTIFICATE-----
Generated at Fri Apr 25 07:48:25 2025 by rpki-client