Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173D07/BF9AFF4C1CD211EB99D58B2CC4F9AE02/AD2ACD6423F411EB8FBA6A83C4F9AE02.roa
File: AD2ACD6423F411EB8FBA6A83C4F9AE02.roa (raw, json)
Hash identifier: zDoEmMgh0Ofm4a5TBSo1aulp2cylUWbLMdlBm8sXwCs=
Subject key identifier: C2:E1:BA:5C:70:7B:E1:B4:A2:F8:D4:1F:45:64:F0:05:2B:01:FC:B2
Certificate issuer: /CN=A9173D07/serialNumber=BE2FF97B9B534D538DA41A09B6C08D02332E8655
Certificate serial: 0701
Authority key identifier: BE:2F:F9:7B:9B:53:4D:53:8D:A4:1A:09:B6:C0:8D:02:33:2E:86:55
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vi_5e5tTTVONpBoJtsCNAjMuhlU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9173D07/BF9AFF4C1CD211EB99D58B2CC4F9AE02/AD2ACD6423F411EB8FBA6A83C4F9AE02.roa
Signing time: Wed 06 Nov 2024 21:40:29 +0000
ROA not before: Wed 06 Nov 2024 21:40:29 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 141353
IP address blocks: 103.157.108.0/23 maxlen: 24
2001:df5:1d80::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1793 (0x701)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9173D07
Validity
Not Before: Nov 6 21:40:29 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=672be24d-7e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:3d:48:bd:37:c2:d2:b6:56:42:84:72:e0:47:
f8:1b:b9:0b:05:47:da:48:df:c7:a8:3a:cc:6a:99:
df:7c:68:3d:37:a7:78:17:16:fe:9c:65:a4:3d:2d:
a1:57:be:04:24:a2:3b:9f:c3:75:e6:b7:6a:e3:59:
85:68:6f:21:e7:12:ef:0e:5a:41:7a:d3:ea:1c:0b:
87:cd:49:93:5f:d9:8a:58:cd:bb:81:b0:03:42:e4:
79:e0:19:c4:0f:5f:c4:0c:13:28:42:e7:6e:db:fe:
2e:37:97:01:18:a7:8c:6e:9d:28:4d:3f:e4:ab:11:
37:c2:85:d9:45:c7:67:63:45:37:19:32:fd:a1:9c:
65:cc:4a:b8:e5:ce:25:29:aa:d0:08:b2:7e:96:a2:
cc:41:76:fb:b7:22:73:62:eb:ae:fd:d8:8a:a2:19:
92:75:24:30:9c:45:8b:9e:27:75:e0:25:6a:67:b6:
ad:21:0c:99:fb:db:c3:39:8e:86:99:7a:f1:a8:55:
9d:34:02:b4:33:bf:fb:2c:cd:03:38:20:82:a8:2f:
ae:88:83:c2:81:3a:a5:5c:47:8e:d8:21:94:f1:ff:
0d:2e:d8:76:50:b9:05:cb:c1:d3:8e:47:79:db:e5:
59:b8:56:8a:3e:ae:96:24:ec:49:74:34:a8:38:02:
57:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:E1:BA:5C:70:7B:E1:B4:A2:F8:D4:1F:45:64:F0:05:2B:01:FC:B2
X509v3 Authority Key Identifier:
keyid:BE:2F:F9:7B:9B:53:4D:53:8D:A4:1A:09:B6:C0:8D:02:33:2E:86:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9173D07/BF9AFF4C1CD211EB99D58B2CC4F9AE02/vi_5e5tTTVONpBoJtsCNAjMuhlU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vi_5e5tTTVONpBoJtsCNAjMuhlU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173D07/BF9AFF4C1CD211EB99D58B2CC4F9AE02/AD2ACD6423F411EB8FBA6A83C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.108.0/23
IPv6:
2001:df5:1d80::/48
Signature Algorithm: sha256WithRSAEncryption
53:34:7a:45:a7:85:a7:ad:12:f2:cf:98:cc:81:fa:e4:7c:2d:
41:11:86:1e:46:81:6c:c4:36:4b:56:f1:6b:98:c2:91:f0:30:
01:b1:5d:1d:94:25:a7:52:b1:e6:fa:37:b2:b0:78:94:0f:69:
e6:43:e4:72:16:d6:36:67:a4:33:2c:21:a0:9a:75:d5:47:4a:
b0:3a:44:80:bc:15:7e:c5:5f:63:53:b9:16:49:1e:3c:45:e3:
4d:76:2a:92:ff:d9:0b:e7:b3:5d:3a:7c:ae:d8:54:db:84:38:
2e:94:ca:e8:fa:36:30:67:2c:b8:e4:1e:d4:56:17:ec:e6:6f:
76:be:25:fc:46:4e:9a:85:c4:02:da:e7:98:f5:c2:f1:34:62:
bc:f0:11:d0:3c:59:02:bb:d4:ea:e7:a6:2b:2d:b6:41:b8:b9:
4e:87:fb:95:25:19:2d:c3:04:79:61:14:ec:9b:bd:fd:43:1a:
12:e7:44:c4:e9:6a:06:12:1d:39:9a:56:e3:0b:d5:19:4d:da:
86:bb:22:81:8c:da:90:f1:e5:c5:42:25:fd:10:4c:ce:43:99:
c5:47:c4:68:91:8c:86:f0:b5:60:ce:23:8b:f8:21:b0:44:a9:
1f:45:5b:aa:67:ed:79:87:a8:12:17:15:f2:60:6f:c3:a2:09:
b0:9e:f5:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:20:16 2025 by rpki-client