Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/E82A7D8840CE11EABBE63B6BC4F9AE02.roa
File: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (raw, json)
Hash identifier: haC4mzBCka2C4XI2abEqyRFQojyis7K+gx1fbeV1iug=
Subject key identifier: 51:7C:92:6A:D7:9D:12:2B:33:EB:34:28:DF:CD:42:52:EA:CA:DF:6C
Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1
Certificate serial: 0A52
Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/E82A7D8840CE11EABBE63B6BC4F9AE02.roa
Signing time: Thu 16 May 2024 20:59:33 +0000
ROA not before: Thu 16 May 2024 20:59:33 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 58616
IP address blocks: 103.9.184.0/24 maxlen: 24
103.9.186.0/24 maxlen: 24
2404:d00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2642 (0xa52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9157705
Validity
Not Before: May 16 20:59:33 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=664673b4-1b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a7:9d:3c:12:6a:3b:c3:c3:fe:dd:09:5f:38:
20:25:20:be:b6:ae:c1:ae:dc:43:f5:8d:97:43:96:
cf:c3:20:98:61:4b:43:c2:9e:08:88:14:24:ed:ac:
74:1c:46:ed:36:07:9d:03:34:9e:91:00:61:31:f4:
e1:6e:9f:a8:75:cd:b0:59:a2:db:3c:ce:cb:6b:8e:
bf:da:1c:23:d5:13:f8:84:e3:5f:0b:ff:91:53:74:
67:8d:f7:99:cf:61:2b:9c:13:7d:fa:58:4a:35:7f:
1f:ca:7d:ab:db:03:ef:52:1d:6a:62:15:e3:ad:a3:
9e:99:c7:5f:07:a6:8c:72:80:30:44:b0:e5:f6:86:
b5:40:82:0f:85:4f:44:0c:2c:45:f0:18:f8:a0:93:
ed:d9:25:31:6c:ad:a6:6f:61:66:23:04:a4:54:3b:
ab:37:93:bc:5b:00:02:29:57:54:2b:a6:cf:26:dc:
4d:f7:70:bd:48:47:e7:85:69:ad:22:b1:75:3e:62:
ac:62:4b:55:fe:b4:6b:7a:c2:88:7f:9f:38:4d:a6:
e0:4d:46:1c:0e:2f:21:ab:c4:3c:77:36:68:c5:9e:
48:43:7e:99:26:bc:a8:97:f3:7d:df:e3:ae:1c:de:
3a:8d:3f:33:50:d6:7e:a2:26:bb:9e:7e:f5:80:cc:
f2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:7C:92:6A:D7:9D:12:2B:33:EB:34:28:DF:CD:42:52:EA:CA:DF:6C
X509v3 Authority Key Identifier:
keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/E82A7D8840CE11EABBE63B6BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.9.184.0/24
103.9.186.0/24
IPv6:
2404:d00::/32
Signature Algorithm: sha256WithRSAEncryption
7c:02:6e:be:d2:5b:61:30:43:a4:87:34:85:db:15:37:c1:eb:
8c:94:67:72:d9:54:03:dd:64:2e:70:14:e2:9c:1b:98:e3:16:
a3:b4:c8:2e:a2:ad:db:7f:cc:c5:89:9c:66:d2:71:17:df:17:
23:8b:71:22:ac:76:e4:4d:20:22:b6:6a:7e:82:cf:98:11:7d:
94:b1:a0:18:3e:b9:8e:5b:87:2b:15:d9:94:0f:c1:48:5f:f2:
ca:71:5c:9d:70:0c:d4:f9:c3:5b:d9:4d:51:c6:c8:92:55:91:
9e:d0:f2:4c:a7:f7:9d:13:b2:ca:ba:a0:0c:ca:0f:86:4b:1f:
c6:52:1c:ea:67:f9:d0:e7:15:6a:2b:37:23:6d:99:63:8f:7d:
22:05:48:00:7b:73:ef:5c:c9:23:96:b0:9a:89:29:15:89:be:
de:89:72:88:1a:04:52:1d:c2:09:d7:89:d7:22:dc:ac:1c:14:
e6:a7:be:99:26:67:14:90:7d:76:41:55:f1:74:fc:4a:53:b5:
49:42:df:0f:0b:f7:3e:1d:c3:1a:77:98:fb:30:76:47:ee:6f:
f3:c7:b0:9a:08:aa:8a:d7:99:29:57:7e:67:fd:a4:05:01:a3:
06:b5:d3:64:45:a0:b2:78:43:90:2e:dd:ab:22:c6:38:e0:bb:
5d:44:75:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:18:34 2025 by rpki-client