Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9127AEB/B11B3FB876E311E994071E35C4F9AE02/2632CF2EA03011EB9DA2913CC4F9AE02.roa
File: 2632CF2EA03011EB9DA2913CC4F9AE02.roa (raw, json)
Hash identifier: YrEsJnuUJ2mnojz77eR5HL4D4pjk/D44iDDIUMYk8Ok=
Subject key identifier: B5:81:6C:C9:CB:55:17:CD:EC:BF:FB:F5:4E:F9:B7:E5:CF:B9:9A:98
Certificate issuer: /CN=A9127AEB/serialNumber=B4CD3E599F32C544B6102DC2658C781C80C3C33B
Certificate serial: 0D4D
Authority key identifier: B4:CD:3E:59:9F:32:C5:44:B6:10:2D:C2:65:8C:78:1C:80:C3:C3:3B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tM0-WZ8yxUS2EC3CZYx4HIDDwzs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9127AEB/B11B3FB876E311E994071E35C4F9AE02/2632CF2EA03011EB9DA2913CC4F9AE02.roa
Signing time: Tue 18 Oct 2022 19:05:55 +0000
ROA not before: Tue 18 Oct 2022 19:05:55 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 133557
IP address blocks: 103.75.148.0/23 maxlen: 23
103.75.148.0/24 maxlen: 24
103.75.149.0/24 maxlen: 24
103.93.122.0/23 maxlen: 23
103.93.122.0/24 maxlen: 24
103.93.123.0/24 maxlen: 24
123.253.120.0/22 maxlen: 22
123.253.120.0/24 maxlen: 24
123.253.121.0/24 maxlen: 24
123.253.122.0/24 maxlen: 24
123.253.123.0/24 maxlen: 24
2407:5280::/32 maxlen: 32
2407:5280::/36 maxlen: 36
2407:5280::/48 maxlen: 48
2407:5280:100::/45 maxlen: 45
2407:5280:100::/48 maxlen: 48
2407:5280:200::/45 maxlen: 45
2407:5280:200::/48 maxlen: 48
2407:5280:201::/48 maxlen: 48
2407:5280:202::/48 maxlen: 48
2407:5280:203::/48 maxlen: 48
2407:5280:204::/48 maxlen: 48
2407:5280:205::/48 maxlen: 48
2407:5280:206::/48 maxlen: 48
2407:5280:207::/48 maxlen: 48
2407:5280:300::/45 maxlen: 45
2407:5280:300::/48 maxlen: 48
2407:5280:301::/48 maxlen: 48
2407:5280:302::/48 maxlen: 48
2407:5280:303::/48 maxlen: 48
2407:5280:304::/48 maxlen: 48
2407:5280:305::/48 maxlen: 48
2407:5280:306::/48 maxlen: 48
2407:5280:307::/48 maxlen: 48
2407:5280:500::/45 maxlen: 45
2407:5280:500::/48 maxlen: 48
2407:5280:501::/48 maxlen: 48
2407:5280:502::/48 maxlen: 48
2407:5280:503::/48 maxlen: 48
2407:5280:504::/48 maxlen: 48
2407:5280:505::/48 maxlen: 48
2407:5280:506::/48 maxlen: 48
2407:5280:507::/48 maxlen: 48
2407:5280:1000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3405 (0xd4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9127AEB, serialNumber=B4CD3E599F32C544B6102DC2658C781C80C3C33B
Validity
Not Before: Oct 18 19:05:55 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=634ef913-a4e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:39:a1:a5:d6:59:a2:99:58:62:14:d6:d3:ed:
cf:7a:b6:6c:94:96:08:45:39:f3:ee:b5:3f:0b:cb:
a3:e5:53:e9:ff:01:c1:0f:df:0c:fb:e6:cf:79:de:
5a:d0:94:8f:a2:bb:a5:13:b4:e6:49:7b:f9:82:8e:
10:31:63:39:8c:17:c8:21:46:b0:f2:0f:d1:01:4f:
9c:66:75:de:24:c9:0f:56:02:ab:76:f4:8b:89:ad:
fc:e7:ef:8d:21:c0:9c:e6:90:64:86:44:51:6f:1f:
00:88:b9:b6:bb:30:31:0c:0f:16:21:22:90:88:b4:
11:57:c6:c9:b5:24:1e:90:22:92:6a:24:38:1f:85:
15:b0:67:ab:55:9e:4b:e1:cc:a6:36:0e:ab:ac:e5:
e2:a3:cf:ee:de:ef:47:39:6a:88:cb:58:82:ec:26:
31:69:6f:94:a3:36:6f:af:2d:4a:55:45:a4:ad:d0:
58:08:58:10:76:46:90:1d:9b:75:19:cd:33:66:a9:
90:27:50:1a:2c:3a:6d:ac:ed:64:30:0e:06:f8:2f:
7d:36:2e:71:58:1e:45:ff:c9:35:1b:e5:15:97:46:
91:ee:03:4a:06:a9:04:ce:15:14:4a:d6:d5:ea:9e:
78:fb:4f:cb:a7:09:2f:58:68:51:e0:5c:eb:f4:ee:
6c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:81:6C:C9:CB:55:17:CD:EC:BF:FB:F5:4E:F9:B7:E5:CF:B9:9A:98
X509v3 Authority Key Identifier:
keyid:B4:CD:3E:59:9F:32:C5:44:B6:10:2D:C2:65:8C:78:1C:80:C3:C3:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9127AEB/B11B3FB876E311E994071E35C4F9AE02/tM0-WZ8yxUS2EC3CZYx4HIDDwzs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tM0-WZ8yxUS2EC3CZYx4HIDDwzs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127AEB/B11B3FB876E311E994071E35C4F9AE02/2632CF2EA03011EB9DA2913CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.75.148.0/23
103.93.122.0/23
123.253.120.0/22
IPv6:
2407:5280::/32
Signature Algorithm: sha256WithRSAEncryption
5c:07:83:d3:19:4d:aa:5b:0a:b3:3d:13:86:aa:91:6e:df:5d:
2e:8b:bf:f8:a1:c0:57:6f:12:7d:70:3b:dc:55:0f:24:27:4d:
6e:f0:b3:89:66:5b:e5:e7:a6:86:2c:63:44:0f:6a:62:ad:e2:
f1:b5:b9:36:72:06:0f:81:fb:4b:7e:de:bb:10:d6:7c:a1:83:
fc:7e:0e:cf:76:77:bf:b0:95:95:d3:15:34:82:ae:3e:23:48:
41:dc:c9:d5:4c:3a:7b:71:c7:ac:7d:75:78:fb:16:25:6e:45:
4d:e4:b6:0f:91:b4:a5:ac:b9:80:49:9c:29:4f:28:5e:05:d0:
d6:e9:be:2e:6e:63:02:1e:8e:15:df:ec:6d:01:1a:e4:3f:38:
d3:da:02:4b:74:5f:68:50:b5:2e:36:9b:99:9f:75:b9:74:ad:
51:8c:bf:28:6d:77:94:8e:27:92:b2:a4:97:f6:57:3e:43:54:
81:31:39:95:85:d4:e4:a7:d1:71:75:45:7f:fc:7b:4a:20:0b:
17:12:c1:c4:c2:04:73:3d:c7:69:b6:6e:d3:28:8b:ae:d2:f3:
5d:da:75:b2:4e:02:99:dd:56:68:8f:9f:87:45:15:f5:80:41:
75:a9:cc:57:a7:5c:21:05:f7:3e:f3:b0:3b:44:9b:1d:d7:bc:
a7:d9:b0:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 03:21:07 2025 by rpki-client