Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/70638510630E11ECB30DB557C4F9AE02.roa
File: 70638510630E11ECB30DB557C4F9AE02.roa (raw, json)
Hash identifier: SDQEIy4DYjsvpIZXfdXvxQcCM5x/fGO0sGwIlp8OC0U=
Subject key identifier: D9:2E:F0:9D:70:7A:A0:C0:15:8C:73:38:03:C4:E0:9D:D3:F1:E7:52
Certificate issuer: /CN=A91B8D56/serialNumber=CF15AD102EEDDFBCCA68585A6F5C3817FE8A18D5
Certificate serial: 03DC
Authority key identifier: CF:15:AD:10:2E:ED:DF:BC:CA:68:58:5A:6F:5C:38:17:FE:8A:18:D5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/70638510630E11ECB30DB557C4F9AE02.roa
Signing time: Mon 09 Dec 2024 08:37:45 +0000
ROA not before: Mon 09 Dec 2024 08:37:45 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 134177
IP address blocks: 45.113.64.0/23 maxlen: 23
45.113.64.0/24 maxlen: 24
45.113.65.0/24 maxlen: 24
45.113.66.0/23 maxlen: 23
45.113.66.0/24 maxlen: 24
45.113.67.0/24 maxlen: 24
103.52.208.0/23 maxlen: 23
103.52.208.0/24 maxlen: 24
103.52.209.0/24 maxlen: 24
103.52.210.0/23 maxlen: 23
103.52.210.0/24 maxlen: 24
103.52.211.0/24 maxlen: 24
203.26.234.0/24 maxlen: 24
2402:2480::/48 maxlen: 48
2402:2480:1::/48 maxlen: 48
2402:2480:2::/48 maxlen: 48
2402:2480:3::/48 maxlen: 48
2402:2480:4::/48 maxlen: 48
2402:2480:5::/48 maxlen: 48
2402:2480:6::/48 maxlen: 48
2402:2480:7::/48 maxlen: 48
2402:2480:8::/48 maxlen: 48
2402:2480:9::/48 maxlen: 48
2402:2480:a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 988 (0x3dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B8D56/serialNumber=CF15AD102EEDDFBCCA68585A6F5C3817FE8A18D5
Validity
Not Before: Dec 9 08:37:45 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=6756ac59-7c12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f1:0c:87:23:ea:84:ef:c8:95:10:02:30:c4:
8b:fd:7a:a7:83:4c:3f:e5:72:a8:c2:22:4f:c1:98:
05:a7:c9:e0:f2:22:1d:ff:53:a9:5a:03:13:a8:bc:
02:e5:72:3b:62:b5:75:e9:70:6b:c1:d4:24:f2:ed:
1c:02:7d:44:c0:8b:8a:5e:d0:19:2b:ce:53:a3:3d:
76:3c:59:e6:34:b9:68:b2:17:b0:3f:6a:f0:12:c5:
26:d0:5a:ed:cc:23:ef:77:04:66:4b:f2:cb:36:b9:
07:ea:a7:c6:67:f7:e8:a3:91:6f:0a:a5:5f:8d:e6:
72:f8:fc:27:65:50:26:09:2f:87:4a:9d:95:7c:7f:
92:53:67:9a:c4:a4:6d:5d:ec:ac:71:e7:ee:eb:d0:
8b:4d:09:60:d0:55:ba:36:f5:0c:79:51:28:33:81:
54:07:a5:77:fe:a3:42:5f:7e:d1:2f:32:f7:62:17:
90:b6:9e:ab:27:a8:70:51:4a:16:97:c5:2a:7f:43:
e9:d2:1f:ee:bf:59:ae:ad:c7:52:f6:a7:fb:e1:7a:
72:f3:30:ef:b4:8b:dc:70:9c:ea:2a:70:e7:77:83:
1b:c2:1b:b0:fb:fb:99:6b:4e:a3:0d:9b:6d:00:d4:
8c:94:ea:14:bd:73:ad:8f:9a:8b:31:50:1c:2f:c2:
5b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:2E:F0:9D:70:7A:A0:C0:15:8C:73:38:03:C4:E0:9D:D3:F1:E7:52
X509v3 Authority Key Identifier:
keyid:CF:15:AD:10:2E:ED:DF:BC:CA:68:58:5A:6F:5C:38:17:FE:8A:18:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/70638510630E11ECB30DB557C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.113.64.0/22
103.52.208.0/22
203.26.234.0/24
IPv6:
2402:2480::-2402:2480:a:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
1f:5e:21:60:74:71:c9:6c:91:cb:0f:3e:ab:c3:b8:c8:da:b1:
00:e2:61:ab:44:87:36:29:87:88:62:42:a5:38:b8:0c:b3:4b:
66:49:12:4e:00:6e:16:98:9c:66:2b:8c:4a:d5:d9:56:58:a8:
40:90:ac:67:05:30:0e:e0:79:92:d3:b5:fc:6d:7c:e8:20:e2:
a3:a8:ce:d8:45:52:5b:68:0a:71:18:da:b8:3e:39:68:45:25:
e7:12:50:1e:18:b9:61:c6:83:cf:53:65:19:4f:a6:43:06:65:
a0:b6:fc:19:62:a3:02:0e:92:16:5b:51:2c:99:ac:47:9e:6f:
31:9c:37:9f:09:d4:a6:32:db:59:a3:3e:15:05:8e:33:47:1d:
56:6a:e8:5c:f2:b0:fc:fa:65:3b:6e:30:20:dd:e9:9c:5e:42:
b5:0e:0f:78:d4:7d:4a:e0:39:f6:70:a7:87:30:30:24:70:68:
8c:d9:02:1e:8a:ca:17:dc:4e:3a:ed:dc:e8:56:fc:0c:75:d0:
7a:cf:b8:c0:ed:85:15:13:98:22:0f:51:ed:7e:ea:d9:86:13:
21:4f:f8:33:08:17:5f:bf:63:b6:56:5a:be:88:c4:9f:af:24:
86:71:7e:44:2d:e2:c3:c5:4d:7c:90:ed:1f:b8:64:dd:0b:fc:
44:66:9c:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 00:11:30 2025 by rpki-client