Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/F67B28D0B86811EFB4FB3552C4F9AE02.roa
File: F67B28D0B86811EFB4FB3552C4F9AE02.roa (raw, json)
Hash identifier: yCxqzmWa893doOfv6hENPdTITWlM9j+UWoyn6s0IOuA=
Subject key identifier: 79:68:62:F4:F3:86:E1:77:21:D7:D5:05:F3:AC:27:42:4D:2A:91:3F
Certificate issuer: /CN=A913D30A/serialNumber=EB811B1488B20F12664E648A82624A3050689F25
Certificate serial: 0D31
Authority key identifier: EB:81:1B:14:88:B2:0F:12:66:4E:64:8A:82:62:4A:30:50:68:9F:25
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64EbFIiyDxJmTmSKgmJKMFBonyU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/F67B28D0B86811EFB4FB3552C4F9AE02.roa
Signing time: Fri 10 Jan 2025 18:06:50 +0000
ROA not before: Fri 10 Jan 2025 18:06:49 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 150774
IP address blocks: 103.82.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3377 (0xd31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913D30A
Validity
Not Before: Jan 10 18:06:49 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=678161b9-acee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:41:a6:81:12:52:15:ae:8f:e0:90:1f:38:a4:
6f:9a:e1:61:33:49:13:58:3e:c5:5d:fa:61:3a:b1:
8b:07:74:ba:41:67:ea:7b:c7:99:d0:40:4e:19:4c:
ff:48:bf:04:61:05:65:d3:4b:be:63:f1:d9:cf:01:
c8:59:2a:38:0c:07:c1:bd:6c:f4:71:0f:69:23:c6:
22:5f:a8:ce:77:db:cc:7d:c5:55:48:81:dd:14:39:
2a:d0:e2:f2:d5:b2:7f:8a:4a:29:c5:da:81:55:f5:
f4:8c:1e:4b:74:f4:78:4e:8d:50:30:4f:00:42:fc:
9b:d3:90:a0:e5:cf:12:4f:22:64:6b:64:32:7b:5a:
fd:da:d8:35:25:f6:68:42:02:aa:3b:aa:40:fc:91:
79:7e:ce:4d:3d:16:2d:86:4a:11:e4:eb:f8:7d:93:
6b:37:3d:c4:53:49:47:3b:f8:bb:f7:1b:4e:2d:a3:
48:85:c8:70:85:ac:89:6c:1c:37:0d:23:60:42:02:
a1:99:fb:3e:ab:b3:e7:74:74:d1:6c:87:fc:5e:5f:
08:1a:0c:ce:d4:a2:51:5f:77:cf:c7:44:60:e6:50:
4b:62:8b:6f:da:68:f3:9a:8c:90:d3:44:8c:d9:2b:
d8:07:a6:98:86:5c:37:b1:5f:12:f4:60:90:17:0f:
62:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:68:62:F4:F3:86:E1:77:21:D7:D5:05:F3:AC:27:42:4D:2A:91:3F
X509v3 Authority Key Identifier:
keyid:EB:81:1B:14:88:B2:0F:12:66:4E:64:8A:82:62:4A:30:50:68:9F:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/64EbFIiyDxJmTmSKgmJKMFBonyU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64EbFIiyDxJmTmSKgmJKMFBonyU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/F67B28D0B86811EFB4FB3552C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.82.10.0/24
Signature Algorithm: sha256WithRSAEncryption
90:60:c5:23:08:1e:47:ed:21:e0:4e:8e:21:b3:a3:09:fe:c2:
41:b4:a6:c1:dc:75:a1:1a:7e:08:10:67:5e:5b:df:4c:38:cb:
02:b3:6a:fc:ab:96:8a:58:09:8c:51:2a:c4:37:8b:4d:e3:62:
cb:b4:92:ca:32:2c:da:fd:1d:f0:76:35:55:ae:94:fc:82:87:
9b:d8:00:7a:b9:ab:15:7e:7e:fa:62:8b:6a:2c:72:88:54:83:
63:5e:7b:58:d1:9f:88:8e:99:71:82:1d:c5:0c:37:70:27:12:
1e:57:3e:8d:be:31:57:97:78:0e:80:74:25:44:14:d1:82:b4:
14:b8:24:6e:e1:0a:b0:70:89:4a:c6:4c:f8:d5:9d:98:6a:24:
91:f9:16:40:37:89:61:6f:d2:ed:c0:66:da:1d:41:74:44:66:
b9:66:68:8a:15:35:8e:c5:94:08:ce:52:f4:79:70:f7:b9:14:
38:75:44:6c:59:82:91:04:ff:1f:99:0d:fa:35:ac:72:d8:e3:
17:29:36:1a:b1:bb:da:82:e0:f3:37:ee:78:30:4f:ec:2b:c8:
7b:51:68:9b:a2:2a:38:68:19:b8:04:9e:25:84:c0:74:6b:e0:
c4:9a:65:4f:b1:55:08:69:b7:fc:0d:96:64:8c:28:98:fc:97:
41:9a:40:b8
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICDTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0QzMEExMTAvBgNVBAUTKEVCODExQjE0ODhCMjBGMTI2NjRFNjQ4QTgyNjI0QTMw
NTA2ODlGMjUwHhcNMjUwMTEwMTgwNjQ5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzgxNjFiOS1hY2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAx0GmgRJSFa6P4JAfOKRvmuFhM0kTWD7FXfphOrGLB3S6QWfqe8eZ0EBOGUz/
SL8EYQVl00u+Y/HZzwHIWSo4DAfBvWz0cQ9pI8YiX6jOd9vMfcVVSIHdFDkq0OLy
1bJ/ikopxdqBVfX0jB5LdPR4To1QME8AQvyb05Cg5c8STyJka2Qye1r92tg1JfZo
QgKqO6pA/JF5fs5NPRYthkoR5Ov4fZNrNz3EU0lHO/i79xtOLaNIhchwhayJbBw3
DSNgQgKhmfs+q7PndHTRbIf8Xl8IGgzO1KJRX3fPx0Rg5lBLYotv2mjzmoyQ00SM
2SvYB6aYhlw3sV8S9GCQFw9iOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHloYvTz
huF3IdfVBfOsJ0JNKpE/MB8GA1UdIwQYMBaAFOuBGxSIsg8SZk5kioJiSjBQaJ8l
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDMwQS9CODU0MjRGOEQ0
OTgxMUU5Qjk0NzQ3MzhDNEY5QUUwMi82NEViRklpeUR4Sm1UbVNLZ21KS01GQm9u
eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzY0RWJGSWl5RHhKbVRtU0tnbUpLTUZCb255VS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0QzMEEvQjg1NDI0RjhENDk4MTFFOUI5NDc0NzM4QzRGOUFFMDIvRjY3QjI4RDBC
ODY4MTFFRkI0RkIzNTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnUgowDQYJKoZIhvcNAQELBQADggEBAJBgxSMIHkftIeBO
jiGzown+wkG0psHcdaEafggQZ15b30w4ywKzavyrlopYCYxRKsQ3i03jYsu0ksoy
LNr9HfB2NVWulPyCh5vYAHq5qxV+fvpii2oscohUg2Nee1jRn4iOmXGCHcUMN3An
Eh5XPo2+MVeXeA6AdCVEFNGCtBS4JG7hCrBwiUrGTPjVnZhqJJH5FkA3iWFv0u3A
ZtodQXREZrlmaIoVNY7FlAjOUvR5cPe5FDh1RGxZgpEE/x+ZDfo1rHLY4xcpNhqx
u9qC4PM37ngwT+wryHtRaJuiKjhoGbgEniWEwHRr4MSaZU+xVQhpt/wNlmSMKJj8
l0GaQLg=
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:53:33 2025 by rpki-client