Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/907B9184973911EDB1E3C460C4F9AE02.roa
File: 907B9184973911EDB1E3C460C4F9AE02.roa (raw, json)
Hash identifier: 5XY9aEQMhi/DaHdge1N42tPN5dbj/xlmiK62csHhzwM=
Subject key identifier: 2B:F3:98:2E:A6:78:A8:D5:7A:34:B1:12:F3:04:86:14:AF:ED:AB:C0
Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0
Certificate serial: 25BD
Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/907B9184973911EDB1E3C460C4F9AE02.roa
Signing time: Sat 08 Feb 2025 17:55:41 +0000
ROA not before: Sat 08 Feb 2025 17:55:41 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 65500
IP address blocks: 103.138.210.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9661 (0x25bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913B805
Validity
Not Before: Feb 8 17:55:41 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67a79a9d-4b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:28:73:96:61:03:4c:15:c6:6f:1f:c8:1c:a9:
2c:f8:e0:1c:57:63:fe:54:9e:24:f4:ab:40:af:77:
29:b1:40:17:f8:87:5a:26:07:49:7a:f9:90:da:cb:
22:88:13:87:c5:9a:ae:7b:40:9f:f0:c0:a3:e7:87:
2f:ab:a1:6e:69:b6:03:a3:7c:fd:d9:41:df:d2:90:
53:55:3f:e5:f9:ae:ec:a9:77:56:0d:1a:be:11:69:
4d:cf:b0:fe:59:e1:8a:91:03:f9:ad:9f:5e:61:a7:
57:cb:37:31:1f:0c:26:40:66:33:68:95:fe:40:7d:
e1:ef:45:13:32:87:ed:a3:12:1f:ce:1a:47:9f:69:
69:dc:f9:56:42:d8:ff:d8:07:31:df:35:2d:9c:92:
e2:4e:bc:06:0e:ff:af:ff:b6:e6:1a:62:aa:6f:e7:
3a:5a:e5:f5:bf:9a:98:70:6f:15:38:a3:a2:92:e6:
f0:fc:5a:b3:ef:e1:2c:b3:87:27:32:75:51:a9:05:
c7:16:30:b3:12:9c:34:f4:42:5f:c5:35:c7:de:3d:
e4:d2:90:7d:6b:fa:18:2b:8b:fa:18:b4:2a:29:ce:
a9:e9:87:d9:f3:43:bf:08:3f:85:8f:e4:4d:37:cf:
d4:7d:f0:aa:0d:9d:32:31:4f:c8:9f:ba:d4:29:c2:
6a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:F3:98:2E:A6:78:A8:D5:7A:34:B1:12:F3:04:86:14:AF:ED:AB:C0
X509v3 Authority Key Identifier:
keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/907B9184973911EDB1E3C460C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.210.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:5b:3a:92:94:78:6a:20:ea:85:e9:92:f0:b2:20:51:1e:71:
c0:ee:a8:6d:c5:35:4e:73:89:69:f9:b3:a0:59:31:ca:2e:db:
79:4d:6e:97:92:ac:5e:aa:b9:37:13:f3:8b:e2:7f:ba:e5:b7:
2d:a5:f7:8a:36:42:68:b8:8a:3e:be:1c:b0:a9:d6:00:ea:2a:
61:13:0e:b0:88:c7:f3:2d:7c:f4:4f:c5:27:e6:47:bc:ca:13:
b7:cb:e2:0c:ef:27:1c:13:3c:22:51:e6:38:a2:dd:0c:da:c5:
9a:da:ba:ee:3c:ee:ec:31:30:84:a8:5c:57:29:42:e9:d4:4a:
34:16:db:86:69:0a:e7:9c:d1:8f:6f:14:44:1b:5a:b1:35:d5:
05:3d:5d:12:02:f3:e9:d0:94:84:9e:d9:bd:8e:b9:28:c5:0e:
6e:56:9a:e6:23:56:74:63:1a:1c:74:4a:04:56:fc:db:0f:d7:
34:5b:ed:20:d2:18:2f:f7:01:8e:b9:0e:76:90:f3:c1:cb:c0:
b5:5b:b0:44:33:79:74:f6:64:46:17:8f:60:7d:7d:d1:54:ec:
b0:e5:e9:f6:ac:4e:10:aa:ac:25:18:1b:81:fd:1b:65:89:15:
71:0d:12:43:b1:26:16:6b:df:8c:3c:cf:4c:23:7e:95:68:c2:
8d:4f:a2:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:12:16 2025 by rpki-client