Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912677F/C43D769663EC11EA97B72587C4F9AE02/B82FA738111C11EBB805F52AC4F9AE02.roa
File: B82FA738111C11EBB805F52AC4F9AE02.roa (raw, json)
Hash identifier: EJ4VnRATjOO9ERUrQeU1qxPXlhkEMnZWEHJLCS7gQyQ=
Subject key identifier: 95:27:3C:0A:A8:BF:31:00:0D:12:14:DC:CB:F7:60:E6:9D:54:09:17
Certificate issuer: /CN=A912677F/serialNumber=3664292D4FD2DFF1C8841750FC8379F1945A137E
Certificate serial: 0A17
Authority key identifier: 36:64:29:2D:4F:D2:DF:F1:C8:84:17:50:FC:83:79:F1:94:5A:13:7E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NmQpLU_S3_HIhBdQ_IN58ZRaE34.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912677F/C43D769663EC11EA97B72587C4F9AE02/B82FA738111C11EBB805F52AC4F9AE02.roa
Signing time: Mon 30 Dec 2024 19:48:24 +0000
ROA not before: Mon 30 Dec 2024 19:48:24 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 139807
IP address blocks: 103.145.118.0/23 maxlen: 23
103.145.118.0/24 maxlen: 24
103.145.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2583 (0xa17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912677F
Validity
Not Before: Dec 30 19:48:24 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=6772f907-b302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:29:14:31:47:64:a1:a9:3d:51:88:b2:b3:50:
d0:d2:33:f4:45:85:56:ae:0e:a5:e5:44:da:dc:de:
c8:54:53:d1:3c:00:ef:a8:93:aa:08:76:f5:cd:6b:
ac:16:24:68:c3:cd:9d:b5:37:ef:8e:9d:fe:cb:0a:
b1:b5:ed:1d:d7:92:82:9f:35:22:87:14:78:f3:c7:
30:40:16:9f:79:44:4d:36:da:5d:dd:e5:70:19:f7:
c0:59:49:46:2c:6c:20:61:94:bf:fd:e2:64:fc:3c:
2e:a9:25:21:cd:bb:61:fc:10:9b:1a:44:b7:e8:17:
82:49:3b:85:ac:bd:56:9b:0a:6f:3d:b1:99:ea:b4:
15:1d:68:04:5d:8d:ea:31:35:09:d6:46:dd:df:f1:
39:c1:0d:2f:4a:2d:81:ed:0b:0b:73:2f:60:48:e9:
24:dd:33:a8:83:e0:d7:a2:98:0a:eb:a7:2d:62:2c:
c6:c7:89:dd:86:1a:b1:10:86:89:c9:5d:45:23:87:
17:ec:fb:ab:18:ee:5d:29:86:4a:cf:36:1c:86:4b:
88:b7:cc:5f:1c:33:ee:e3:d5:53:bc:0d:72:34:4b:
57:48:0a:80:0a:fa:21:82:c0:39:89:13:88:55:53:
4c:80:77:e1:77:f4:ff:84:d2:79:6c:36:c7:74:15:
c6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:27:3C:0A:A8:BF:31:00:0D:12:14:DC:CB:F7:60:E6:9D:54:09:17
X509v3 Authority Key Identifier:
keyid:36:64:29:2D:4F:D2:DF:F1:C8:84:17:50:FC:83:79:F1:94:5A:13:7E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912677F/C43D769663EC11EA97B72587C4F9AE02/NmQpLU_S3_HIhBdQ_IN58ZRaE34.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NmQpLU_S3_HIhBdQ_IN58ZRaE34.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912677F/C43D769663EC11EA97B72587C4F9AE02/B82FA738111C11EBB805F52AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.145.118.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:dd:d4:93:83:50:ef:17:c9:96:80:67:aa:e0:91:73:fb:80:
ea:2b:cb:0b:5a:bb:94:8b:ff:f4:62:b8:13:9e:fb:dd:aa:e5:
63:84:54:e5:00:fc:f6:76:05:b2:58:e4:f9:bc:98:d6:cd:e2:
68:05:10:9b:76:bc:d2:e0:a5:f5:f5:06:a0:56:ef:35:3c:a4:
4f:cb:1f:dd:88:3c:8c:20:7d:e8:c4:2c:ef:88:f8:99:8e:b7:
6f:04:e4:e7:eb:fb:ee:1b:64:6f:25:e0:81:12:d3:2e:da:17:
23:95:ba:32:bd:82:b7:9f:ea:05:44:72:97:44:a0:18:d1:7d:
43:02:e7:42:34:9c:45:bc:50:80:3b:f7:74:d7:02:3b:f2:4f:
84:65:0a:cf:dd:f5:0b:1c:2c:9c:74:c9:d3:5a:5a:d3:45:b6:
49:43:69:28:a4:49:b2:63:f1:3e:f8:1f:ec:16:d7:99:06:11:
f1:02:1c:0e:54:8b:2c:57:30:0f:e2:73:65:b3:6a:d5:dd:32:
8a:91:58:4f:e3:73:c3:fc:c7:44:7a:aa:cc:0b:48:c6:a8:1f:
5a:ad:96:40:fb:43:c8:42:c3:71:d7:c6:b0:5f:f1:ca:dd:e1:
47:76:e5:9c:af:48:45:db:d3:88:ad:80:b1:d2:65:51:b2:9b:
99:07:e9:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:09:02 2025 by rpki-client