Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/A65F895C02FC11F092FE1427C4F9AE02.roa
File: A65F895C02FC11F092FE1427C4F9AE02.roa (raw, json)
Hash identifier: 7WoV+8DWGmioXQtwuVikIc1xrEpD94IWEbSN5gItlh4=
Subject key identifier: 89:45:15:3E:7B:A0:57:D3:31:16:A4:68:1A:47:A9:99:67:8A:C3:87
Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978
Certificate serial: 03CA
Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/A65F895C02FC11F092FE1427C4F9AE02.roa
Signing time: Mon 17 Mar 2025 06:54:19 +0000
ROA not before: Mon 17 Mar 2025 06:54:19 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 64021
IP address blocks: 103.235.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 970 (0x3ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916557B
Validity
Not Before: Mar 17 06:54:19 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67d7c71b-d9ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c7:fd:72:0e:cd:de:60:4c:95:df:85:b9:23:
d4:8e:d7:25:87:98:68:ae:34:92:42:23:ed:85:8d:
99:f7:df:6a:4c:f0:6d:72:8f:cb:32:25:bc:44:ec:
88:c8:05:b9:e2:a8:99:6a:98:80:34:b6:60:a3:af:
95:03:a6:6f:0f:c5:e3:c0:54:e6:16:77:ba:e0:4e:
23:73:57:15:ad:94:76:9b:a0:78:39:ce:24:d2:6e:
88:df:4f:f0:4f:72:46:fc:33:d6:bc:fe:55:30:b7:
8f:d4:a1:d2:6f:f3:17:47:64:29:9e:5f:7a:ed:aa:
ef:34:2e:7a:dc:0c:2c:d7:5c:f2:da:e8:25:36:fb:
6a:56:71:92:e6:35:0c:04:c5:e8:30:5a:0f:49:9b:
8c:8b:f6:63:14:c9:5f:19:b7:bb:ab:0c:12:b6:77:
5b:80:34:fd:df:b6:4e:2d:f5:91:0f:c2:c7:19:cf:
c2:da:85:f1:76:42:f4:b3:32:43:af:c6:0c:fd:7a:
6f:ae:c0:15:8c:0b:7a:08:8c:1a:73:70:c7:a7:79:
e2:7d:ff:1b:07:63:54:0e:00:b3:5c:51:9f:e0:82:
c2:f5:4f:92:1f:c3:b6:ef:64:68:51:6a:51:97:fe:
11:7f:bc:a2:0a:9f:a4:da:66:8f:09:14:2d:23:f9:
8c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:45:15:3E:7B:A0:57:D3:31:16:A4:68:1A:47:A9:99:67:8A:C3:87
X509v3 Authority Key Identifier:
keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/A65F895C02FC11F092FE1427C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.235.19.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:0b:28:8a:ca:16:6e:84:3a:5c:39:9b:43:0b:ce:57:6e:d5:
ba:62:77:a5:e1:ae:40:82:57:33:dd:b6:0e:24:67:d4:50:f5:
b8:c3:14:f1:f0:2a:6d:ab:bf:ab:79:31:53:96:7d:c6:33:9f:
38:75:a7:6f:5c:34:a6:db:7a:5c:24:29:09:fe:ac:fe:5a:09:
37:4c:f5:9d:ae:bc:3c:0c:d4:af:f6:57:a5:d7:f6:67:ba:10:
04:64:f9:9e:8e:77:76:e1:cd:01:ea:37:e9:a6:d8:69:0d:81:
86:28:8b:d9:a3:08:3e:ba:34:21:ba:6d:85:8a:17:0e:c9:1e:
64:b1:b5:7b:03:45:60:af:af:ca:16:05:75:54:7a:f7:49:8e:
c0:c1:9d:85:19:56:62:ad:70:8d:16:4d:5e:c2:ad:0d:3e:8c:
1f:d0:1b:c8:58:21:13:20:f0:2c:b8:f9:84:b6:a5:10:73:c4:
4f:a1:c6:ea:7b:89:ef:32:0f:4c:25:9a:19:65:19:3d:59:3d:
84:13:eb:a9:8e:ea:36:0f:c8:c6:48:63:63:7c:3b:3a:05:03:
4d:29:6f:97:da:65:af:87:88:9f:8f:c8:4b:7f:0b:26:ca:5e:
24:cf:ac:e3:f6:39:6f:22:49:aa:88:8a:62:d8:c0:9f:7d:b7:
b0:48:e8:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 11:40:02 2025 by rpki-client