Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/F043A0CCC2B411EA9BAFF054C4F9AE02.roa
File: F043A0CCC2B411EA9BAFF054C4F9AE02.roa (raw, json)
Hash identifier: NHcEruSqBuMj/IPzd/3S47VAhmXWgMgQYut3Slp0jA8=
Subject key identifier: A9:13:CC:B7:0C:8B:AD:A2:61:AA:00:75:35:3F:18:7B:DD:94:77:B0
Certificate issuer: /CN=A914EED0/serialNumber=CBE131A083A4563C7C439DB079B64B6AD1101A7C
Certificate serial: 0837
Authority key identifier: CB:E1:31:A0:83:A4:56:3C:7C:43:9D:B0:79:B6:4B:6A:D1:10:1A:7C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/F043A0CCC2B411EA9BAFF054C4F9AE02.roa
Signing time: Tue 10 Dec 2024 20:49:42 +0000
ROA not before: Tue 10 Dec 2024 20:49:42 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 45224
IP address blocks: 103.84.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2103 (0x837)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914EED0
Validity
Not Before: Dec 10 20:49:42 2024 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=6758a966-d5b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ef:e2:4d:c7:69:25:29:9e:49:e4:ee:04:2d:
7f:22:df:2a:b1:c7:4d:05:4f:a8:e2:97:f0:c5:87:
1c:b2:c3:15:b4:b6:62:ff:34:da:3c:09:6f:fa:06:
f2:54:e9:b7:eb:aa:d0:b9:68:a7:ea:89:3f:e1:45:
6c:f8:a6:90:81:d2:91:a1:1e:a0:c2:14:03:07:f2:
37:98:56:6a:00:94:42:02:1f:c2:1b:42:1a:3d:c1:
c9:43:04:62:74:08:bd:8c:cb:48:81:b4:7e:2d:0c:
b3:b2:26:28:24:fb:b7:16:26:29:e6:fc:b9:ab:c5:
7d:fe:91:2b:9b:f8:c2:ff:0e:58:a2:1e:5a:a2:bf:
b4:4b:80:5f:fa:22:ef:8c:7d:29:da:f3:fd:1c:f5:
0d:83:62:0b:1a:ed:63:c0:ed:7c:72:fb:19:e5:49:
8b:fe:1a:a4:e0:c3:d9:40:73:77:35:ce:36:f3:41:
8c:98:fd:47:ab:ae:27:b0:b9:0f:66:21:89:6b:51:
14:5c:f5:33:dd:66:5d:49:40:8f:99:cc:52:28:21:
fc:2d:dc:56:b4:b7:84:53:64:a0:cb:14:7a:a4:b5:
83:31:4b:0e:12:d3:60:8b:6a:d1:e8:73:71:7a:b4:
d2:79:60:1e:51:2c:55:cd:59:95:d7:e7:13:d6:42:
22:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:13:CC:B7:0C:8B:AD:A2:61:AA:00:75:35:3F:18:7B:DD:94:77:B0
X509v3 Authority Key Identifier:
keyid:CB:E1:31:A0:83:A4:56:3C:7C:43:9D:B0:79:B6:4B:6A:D1:10:1A:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/F043A0CCC2B411EA9BAFF054C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.84.132.0/24
Signature Algorithm: sha256WithRSAEncryption
15:9a:ba:8a:47:cd:92:9b:e5:5a:73:e4:0f:9e:e3:3e:32:26:
61:71:7e:19:9a:87:74:17:b6:0b:6d:9b:82:48:89:59:10:c7:
9f:b8:9a:aa:0e:e8:cd:61:03:51:a9:a3:21:89:69:6c:74:e2:
fc:fe:60:77:6d:e9:43:c6:23:80:70:e4:79:0e:f8:ba:7e:8f:
43:c7:85:cc:b7:28:69:b5:75:1c:bf:1f:ee:74:d8:08:d0:59:
05:6f:a7:53:43:6e:ec:7a:89:b2:05:64:08:42:64:64:02:8e:
39:ad:ed:c3:c9:3e:15:b4:a1:f1:68:10:b8:2e:2b:ac:d7:51:
48:7e:3f:23:5f:25:22:de:79:f7:ca:f9:d6:15:27:10:40:8e:
f9:2b:84:87:f9:7b:e5:8d:bc:77:0c:32:db:95:07:d5:42:6f:
2e:73:a5:dd:40:6d:ec:f8:96:5c:a3:aa:6a:79:b1:1f:99:b2:
ac:47:c2:2d:6b:e3:6a:43:f5:01:70:c7:f5:97:1b:aa:c7:3f:
ff:f9:64:63:fe:7f:c5:00:39:ce:ce:8f:56:3a:c2:ea:1a:86:
1b:66:36:5e:1c:cc:cb:1f:4d:cd:e9:8c:94:3c:b5:cd:14:8e:
f7:32:aa:a3:2e:44:7b:c4:10:e2:49:ee:4e:c8:d9:f9:96:44:
49:f9:85:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:50:13 2025 by rpki-client