Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9124731/B6B014B25D6D11EC8FF6131EC4F9AE02/86BADBF8013511EE81A9F21FC4F9AE02.roa
File: 86BADBF8013511EE81A9F21FC4F9AE02.roa (raw, json)
Hash identifier: q2J6Vm5zrUF4ahQrDqnBO1G7RZdDw9Ce2kW75/uOQB0=
Subject key identifier: E5:FE:F0:38:3C:F8:14:3D:60:9E:A3:83:7D:AD:4B:4A:5A:A5:10:E3
Certificate issuer: /CN=A9124731/serialNumber=801702BC9CDEF73DF739BFB7D4BD2F7B8885E077
Certificate serial: 042F
Authority key identifier: 80:17:02:BC:9C:DE:F7:3D:F7:39:BF:B7:D4:BD:2F:7B:88:85:E0:77
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gBcCvJze9z33Ob-31L0ve4iF4Hc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9124731/B6B014B25D6D11EC8FF6131EC4F9AE02/86BADBF8013511EE81A9F21FC4F9AE02.roa
Signing time: Thu 27 Mar 2025 00:36:58 +0000
ROA not before: Thu 27 Mar 2025 00:36:58 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 142127
IP address blocks: 103.162.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1071 (0x42f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9124731
Validity
Not Before: Mar 27 00:36:58 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67e49da9-551b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:00:58:4e:f2:62:4a:a2:a6:7f:2b:6b:62:d2:
eb:02:90:31:86:7c:18:df:a6:b7:f4:a9:ba:a8:34:
f7:6d:18:09:3d:1e:d4:f3:64:6f:36:8b:22:4c:61:
8d:1e:28:44:84:7c:19:3b:9a:78:75:55:da:de:33:
f1:b2:8e:7c:7d:d9:26:a6:78:47:94:f1:29:3b:58:
5b:e5:e6:4a:9e:ad:78:9c:f2:de:3f:e8:bd:34:51:
81:25:22:d1:b8:48:f2:09:06:1c:f1:f5:af:71:7e:
8d:6f:6b:11:b8:16:2e:eb:25:ae:a5:20:ef:c4:d3:
44:97:fa:21:44:69:b5:c6:e1:80:05:7a:98:bc:ff:
af:99:d3:26:b5:f3:c9:0c:ac:44:57:ef:8d:1e:3d:
d1:6e:90:50:7f:e8:3a:d1:61:46:24:ee:46:73:17:
8a:8d:5d:d0:de:de:c2:78:74:6c:76:9b:35:8f:3a:
b6:6e:9d:84:86:69:71:42:a2:02:f8:9b:da:aa:cc:
51:9a:15:0a:23:4e:e3:15:89:06:d1:64:b7:39:81:
4c:34:8f:85:0c:6f:86:41:8a:10:7b:0a:79:19:3f:
70:c7:f3:c1:c9:09:36:06:e9:4e:3b:3e:3c:78:27:
9d:76:49:27:50:26:10:91:4f:4f:4f:8d:88:0b:ee:
01:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:FE:F0:38:3C:F8:14:3D:60:9E:A3:83:7D:AD:4B:4A:5A:A5:10:E3
X509v3 Authority Key Identifier:
keyid:80:17:02:BC:9C:DE:F7:3D:F7:39:BF:B7:D4:BD:2F:7B:88:85:E0:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9124731/B6B014B25D6D11EC8FF6131EC4F9AE02/gBcCvJze9z33Ob-31L0ve4iF4Hc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gBcCvJze9z33Ob-31L0ve4iF4Hc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124731/B6B014B25D6D11EC8FF6131EC4F9AE02/86BADBF8013511EE81A9F21FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.162.137.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:ff:08:c2:4c:e6:50:3d:7b:9e:7c:88:d9:82:d1:a8:3d:f0:
9b:db:92:02:1e:e1:3b:ef:81:32:ca:f7:a6:7b:2e:ef:cc:d7:
c3:6b:7c:d1:12:78:4a:cf:61:ef:0c:b0:72:3d:24:df:ff:ef:
27:15:93:d6:22:fc:20:06:46:fb:c2:c5:47:a2:10:00:28:46:
67:ae:84:4b:d6:3a:97:3f:93:29:bd:5c:8c:3b:04:4a:34:b6:
97:72:81:2e:56:d2:37:73:47:ec:cf:85:b5:bd:34:aa:67:35:
45:7d:8b:af:f9:0b:9f:c8:6f:ac:69:36:ab:d4:a2:9f:d7:f3:
d1:16:a4:70:9c:c7:84:8e:df:36:34:a7:ac:88:ad:14:41:64:
89:ba:fa:05:84:37:e0:52:31:69:91:48:ed:aa:5f:8c:b6:29:
9f:4d:e6:df:17:c2:40:50:88:59:48:5c:e6:f8:92:e1:95:bb:
d6:b3:0c:3e:ac:c8:26:a5:62:eb:a3:8e:6f:8d:24:6e:59:ce:
9c:e9:e6:9f:c4:20:5b:7a:7a:3e:49:d7:fe:6b:95:15:0e:45:
da:1f:84:e8:7b:c2:d1:c9:1d:3a:58:e3:f7:b5:ed:3e:22:54:
22:84:f7:17:44:2a:da:3a:68:4d:97:af:fe:a2:b5:f8:f6:c8:
68:99:84:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:14:07 2025 by rpki-client