Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/5EEC619850A611EA823DE980C4F9AE02.roa
File: 5EEC619850A611EA823DE980C4F9AE02.roa (raw, json)
Hash identifier: q02Hd4XFE+H9p8qEMOu2AbjA5nPs5WOETsJPUT9HbXo=
Subject key identifier: 58:0F:4B:90:B9:BF:3C:6C:D8:7E:BF:F1:BF:61:D3:86:1F:60:20:42
Certificate issuer: /CN=A915343B/serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37
Certificate serial: 0A97
Authority key identifier: D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/5EEC619850A611EA823DE980C4F9AE02.roa
Signing time: Fri 28 Feb 2025 20:59:01 +0000
ROA not before: Fri 28 Feb 2025 20:59:01 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 137416
IP address blocks: 103.107.132.0/22 maxlen: 24
2402:55c0::/32 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2711 (0xa97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915343B
Validity
Not Before: Feb 28 20:59:01 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67c22395-bc08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9e:08:96:21:65:bc:4a:85:4c:04:b0:2d:05:
c3:fe:d4:57:8c:cd:9b:f3:c7:d3:72:b8:f8:3a:26:
0e:da:39:03:dd:3b:65:3b:83:b1:02:89:41:52:4f:
e1:dd:2a:e2:cb:9a:ac:77:57:1d:e6:56:ea:6c:4f:
3d:29:93:13:04:0c:3d:bd:b7:c0:39:7e:9f:74:f7:
89:63:a3:fe:a9:65:74:ee:5a:6a:2e:2f:6e:3d:0a:
0d:af:5b:64:d1:9f:68:ed:52:a9:78:18:82:61:de:
42:74:10:5c:8d:b9:ae:ef:cf:b0:03:98:0d:63:d2:
33:75:c4:64:88:bf:8d:b0:eb:01:5e:32:df:fe:95:
b9:35:45:2f:8f:b6:74:9b:2e:97:b5:d7:2e:59:0e:
e6:33:4f:7e:4c:1b:83:f1:32:71:85:3a:f3:24:eb:
97:cf:b3:11:1a:20:4e:6f:63:59:27:ed:ec:d3:08:
6b:29:9f:62:1b:1e:ca:28:9d:2c:89:7a:9d:a0:1c:
35:af:fa:48:08:3a:e8:d5:1e:53:96:0f:95:33:19:
c5:ed:02:9e:e1:35:97:ee:37:6e:70:9e:bd:94:15:
82:e8:8d:89:51:07:2c:a4:cf:13:2a:c4:69:bc:4d:
60:56:ab:3c:5f:d9:58:da:ef:7d:92:5a:17:de:05:
a7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:0F:4B:90:B9:BF:3C:6C:D8:7E:BF:F1:BF:61:D3:86:1F:60:20:42
X509v3 Authority Key Identifier:
keyid:D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/5EEC619850A611EA823DE980C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.107.132.0/22
IPv6:
2402:55c0::/32
Signature Algorithm: sha256WithRSAEncryption
19:91:64:2b:de:2b:60:3f:16:c8:79:70:58:35:cb:97:8f:12:
62:50:37:a7:96:29:65:ce:92:69:88:38:bf:4c:12:f1:d0:06:
b9:80:e7:d2:d3:fb:9d:f0:9c:d0:7a:45:ab:01:1c:7e:d3:4a:
81:17:2d:44:af:f7:52:8f:60:12:6d:2b:e1:05:f1:8a:ea:4c:
f1:60:d5:9a:c5:a7:e8:08:f9:f4:e1:80:56:9e:9c:73:a6:45:
58:fa:86:bf:83:36:82:b4:fe:5a:71:97:9d:5b:a1:9e:c8:85:
e4:68:ca:8d:10:37:07:94:25:b5:4d:78:ec:93:fa:b5:32:af:
74:ca:c1:31:d0:4f:ba:81:d2:63:0d:f0:6a:76:2a:10:d9:c3:
4c:5d:b6:d7:47:45:20:7d:f7:b6:72:02:b3:d8:eb:d1:eb:27:
c2:ea:cf:30:60:9f:59:82:97:d2:a6:ef:a7:25:bb:bf:be:da:
d7:3c:e8:11:64:29:6b:d3:c8:64:e9:3c:fe:cd:df:19:a7:8f:
52:53:40:b0:f4:ef:ed:5b:c8:9f:76:7a:69:0e:94:10:c2:13:
70:40:13:e2:dc:b1:fc:3e:f7:ef:88:dd:1f:41:56:02:aa:51:
b0:b1:25:1b:1b:b1:90:79:e6:ea:18:7d:ea:15:83:e6:fa:30:
2b:e2:7e:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 17:43:38 2025 by rpki-client