Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C928/77F546EC2A4311EB89923753C4F9AE02/08D6D5122A4511EBA2903755C4F9AE02.roa
File: 08D6D5122A4511EBA2903755C4F9AE02.roa (raw, json)
Hash identifier: /eGyMyfZrwg+tW0iicICs4kHkYiGhwJp9BCaRgreCno=
Subject key identifier: 63:01:EB:7C:C2:67:D8:BC:5E:04:9F:24:4D:5D:E7:A6:9B:5F:0B:96
Certificate issuer: /CN=A913C928/serialNumber=6BB229B506442FA048A4F79D3CB44FA0E0047941
Certificate serial: 06F8
Authority key identifier: 6B:B2:29:B5:06:44:2F:A0:48:A4:F7:9D:3C:B4:4F:A0:E0:04:79:41
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a7IptQZEL6BIpPedPLRPoOAEeUE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913C928/77F546EC2A4311EB89923753C4F9AE02/08D6D5122A4511EBA2903755C4F9AE02.roa
Signing time: Tue 24 Dec 2024 21:39:39 +0000
ROA not before: Tue 24 Dec 2024 21:39:39 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 141422
IP address blocks: 103.158.232.0/23 maxlen: 23
103.158.232.0/24 maxlen: 24
103.158.233.0/24 maxlen: 24
2001:df5:6980::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1784 (0x6f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913C928
Validity
Not Before: Dec 24 21:39:39 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=676b2a1a-be8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:2d:a6:0e:5e:cf:b4:26:8f:16:9a:a6:58:2b:
57:12:98:85:8a:a5:bc:98:85:cb:6d:8c:70:f7:42:
00:61:a3:72:a5:e1:8c:44:4f:a5:6f:2e:b1:1a:ca:
ae:cd:1f:44:a5:f8:9b:9a:f8:ae:9f:da:ff:5a:c7:
6b:7c:5f:dc:92:ee:ee:55:7c:ea:d8:de:38:17:40:
62:04:ec:40:ae:d3:88:da:45:3c:36:ad:f6:e1:4d:
1f:b6:d1:bb:58:e9:76:84:49:fe:7a:de:2d:f6:57:
eb:99:73:35:3a:7e:5b:6b:ca:01:b5:4b:db:6a:f9:
ad:66:05:c1:64:b3:fc:a5:38:7e:c6:94:74:dc:cb:
db:f8:71:b3:f0:2f:44:a8:71:90:b5:16:22:24:a3:
56:78:ff:14:94:3f:2b:93:04:4b:f5:9c:73:7b:df:
6b:b8:e8:09:12:fa:9a:5f:48:15:c5:3c:2b:ff:53:
9c:c9:c5:c8:1c:78:95:98:3d:d3:35:00:2e:fd:cf:
be:c0:09:5d:47:f1:81:7b:49:07:e7:ab:43:71:5b:
31:d3:ce:db:96:c0:7c:04:a2:66:fb:9d:4b:29:b8:
67:99:8b:2d:e0:a4:2c:7a:3f:62:4f:85:18:71:e6:
c7:df:56:45:91:51:78:78:db:a2:48:a2:34:85:72:
20:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:01:EB:7C:C2:67:D8:BC:5E:04:9F:24:4D:5D:E7:A6:9B:5F:0B:96
X509v3 Authority Key Identifier:
keyid:6B:B2:29:B5:06:44:2F:A0:48:A4:F7:9D:3C:B4:4F:A0:E0:04:79:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913C928/77F546EC2A4311EB89923753C4F9AE02/a7IptQZEL6BIpPedPLRPoOAEeUE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a7IptQZEL6BIpPedPLRPoOAEeUE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C928/77F546EC2A4311EB89923753C4F9AE02/08D6D5122A4511EBA2903755C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.232.0/23
IPv6:
2001:df5:6980::/48
Signature Algorithm: sha256WithRSAEncryption
88:c9:5a:ee:f3:3f:88:9a:db:a3:2c:46:93:90:63:35:7c:cf:
d6:11:13:eb:94:30:79:ee:8d:86:15:37:d3:4a:71:62:9b:00:
16:0f:b1:da:9f:ba:f5:4d:4f:ab:bf:5c:05:c3:04:89:c0:d1:
f7:4b:25:72:c3:bd:77:6d:f9:ba:53:1b:5a:65:de:06:6b:75:
17:61:6c:44:10:52:1f:ef:e8:9b:19:02:d1:82:31:2a:50:b7:
3d:7f:b4:20:6b:6f:07:a1:c1:e6:e1:28:2a:ef:57:48:6e:e9:
9f:cf:47:f8:68:19:a0:02:07:bc:e4:c6:d9:b7:a9:68:c2:e9:
42:24:1f:bc:43:74:a5:ac:a6:f0:76:d3:52:81:0f:c0:68:ac:
e9:cf:20:22:eb:f9:ec:44:9e:06:6f:bd:78:e5:f1:e0:15:d3:
b8:d7:a3:fd:87:ed:41:ab:04:d2:c1:ff:69:a1:02:1f:a7:9c:
9a:16:cc:d5:be:65:21:47:76:73:62:9f:88:26:82:0e:b1:a6:
a3:34:7e:a2:35:48:3d:a8:b4:f8:35:ba:e1:ae:9e:00:5a:21:
79:04:90:36:9b:1b:db:31:d1:5d:e9:f3:ff:52:59:84:cb:88:
dc:6e:22:b4:59:73:64:8b:93:6c:90:6e:4a:05:55:71:d5:dc:
d0:97:64:4b
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICBvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0M5MjgxMTAvBgNVBAUTKDZCQjIyOUI1MDY0NDJGQTA0OEE0Rjc5RDNDQjQ0RkEw
RTAwNDc5NDEwHhcNMjQxMjI0MjEzOTM5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzZiMmExYS1iZThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2S2mDl7PtCaPFpqmWCtXEpiFiqW8mIXLbYxw90IAYaNypeGMRE+lby6xGsqu
zR9Epfibmviun9r/WsdrfF/cku7uVXzq2N44F0BiBOxArtOI2kU8Nq324U0fttG7
WOl2hEn+et4t9lfrmXM1On5ba8oBtUvbavmtZgXBZLP8pTh+xpR03Mvb+HGz8C9E
qHGQtRYiJKNWeP8UlD8rkwRL9Zxze99ruOgJEvqaX0gVxTwr/1OcycXIHHiVmD3T
NQAu/c++wAldR/GBe0kH56tDcVsx087blsB8BKJm+51LKbhnmYst4KQsej9iT4UY
cebH31ZFkVF4eNuiSKI0hXIgdQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGMB63zC
Z9i8XgSfJE1d56abXwuWMB8GA1UdIwQYMBaAFGuyKbUGRC+gSKT3nTy0T6DgBHlB
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkyOC83N0Y1NDZFQzJB
NDMxMUVCODk5MjM3NTNDNEY5QUUwMi9hN0lwdFFaRUw2QklwUGVkUExSUG9PQUVl
VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2E3SXB0UVpFTDZCSXBQZWRQTFJQb09BRWVVRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0M5MjgvNzdGNTQ2RUMyQTQzMTFFQjg5OTIzNzUzQzRGOUFFMDIvMDhENkQ1MTIy
QTQ1MTFFQkEyOTAzNzU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBAFnnugwDwQCAAIwCQMHACABDfVpgDANBgkqhkiG9w0BAQsF
AAOCAQEAiMla7vM/iJrboyxGk5BjNXzP1hET65Qwee6NhhU300pxYpsAFg+x2p+6
9U1Pq79cBcMEicDR90slcsO9d235ulMbWmXeBmt1F2FsRBBSH+/omxkC0YIxKlC3
PX+0IGtvB6HB5uEoKu9XSG7pn89H+GgZoAIHvOTG2bepaMLpQiQfvEN0paym8HbT
UoEPwGis6c8gIuv57ESeBm+9eOXx4BXTuNej/YftQasE0sH/aaECH6ecmhbM1b5l
IUd2c2KfiCaCDrGmozR+ojVIPai0+DW64a6eAFoheQSQNpsb2zHRXenz/1JZhMuI
3G4itFlzZIuTbJBuSgVVcdXc0JdkSw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 08:24:27 2025 by rpki-client