Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91767B4/8026F394708011ED9E4C6A2DC4F9AE02/57C505EA708411EDA8B14246C4F9AE02.roa
File: 57C505EA708411EDA8B14246C4F9AE02.roa (raw, json)
Hash identifier: YPKVhjI0QOxJDGKIkbhIcG0QRVYBhpe0iKALRG6i8e4=
Subject key identifier: C8:DB:DC:9A:02:AA:58:9B:DA:36:E7:BD:CD:D7:56:FE:05:DE:52:75
Certificate issuer: /CN=A91767B4/serialNumber=187EEEEA2AD607BCA5422D092DDACC19908F2FD7
Certificate serial: 0189
Authority key identifier: 18:7E:EE:EA:2A:D6:07:BC:A5:42:2D:09:2D:DA:CC:19:90:8F:2F:D7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GH7u6irWB7ylQi0JLdrMGZCPL9c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91767B4/8026F394708011ED9E4C6A2DC4F9AE02/57C505EA708411EDA8B14246C4F9AE02.roa
Signing time: Tue 31 Dec 2024 02:35:51 +0000
ROA not before: Tue 31 Dec 2024 02:35:51 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 38136
IP address blocks: 103.47.100.0/23 maxlen: 23
103.47.100.0/24 maxlen: 24
103.47.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 393 (0x189)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91767B4
Validity
Not Before: Dec 31 02:35:51 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67735887-5f99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:dc:f3:0a:9b:38:eb:b9:f7:3b:a5:30:a8:c2:
4b:7c:ba:b0:3a:46:6f:16:95:25:59:ce:07:41:04:
c3:28:da:59:4a:74:de:10:ed:21:b6:92:c6:0d:4c:
c2:36:f9:c8:5c:de:45:21:91:89:29:c6:db:80:09:
60:88:f4:a3:49:19:11:48:1a:4c:5a:c7:25:2a:a3:
31:3e:ec:d2:21:50:e2:e1:8c:69:a4:09:57:6f:cb:
97:41:b4:d8:e4:47:b9:b1:44:b9:ad:9f:8c:00:43:
47:01:c8:7f:a6:a3:8d:43:86:1e:03:a4:3a:a5:d6:
4b:ce:bc:27:7c:15:dd:c6:b8:ef:ff:7a:aa:a4:69:
26:6f:0d:cb:f8:22:00:ce:95:93:fe:6e:db:1f:ce:
15:60:78:f6:08:07:1c:08:2e:6d:e5:23:26:ca:71:
ea:5b:50:f8:f4:07:16:b7:ae:43:12:e2:29:21:88:
a1:98:b0:1e:66:fd:b1:8a:8e:9c:d1:27:07:5c:5e:
78:2b:4b:48:da:91:b6:0d:fd:a9:9e:8d:d8:86:a4:
82:98:00:4b:12:e4:15:2e:74:2e:3b:08:a4:dc:09:
d1:aa:a4:91:3f:f6:fa:ec:8e:6a:c7:6c:bf:40:0b:
f8:54:bc:67:f0:1d:f3:28:f4:5b:db:82:07:2e:9f:
50:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:DB:DC:9A:02:AA:58:9B:DA:36:E7:BD:CD:D7:56:FE:05:DE:52:75
X509v3 Authority Key Identifier:
keyid:18:7E:EE:EA:2A:D6:07:BC:A5:42:2D:09:2D:DA:CC:19:90:8F:2F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91767B4/8026F394708011ED9E4C6A2DC4F9AE02/GH7u6irWB7ylQi0JLdrMGZCPL9c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GH7u6irWB7ylQi0JLdrMGZCPL9c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91767B4/8026F394708011ED9E4C6A2DC4F9AE02/57C505EA708411EDA8B14246C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.47.100.0/23
Signature Algorithm: sha256WithRSAEncryption
66:39:bb:47:55:6c:ae:00:5f:99:53:dd:9d:74:4e:52:7e:d5:
0a:c9:5c:14:98:dc:2f:c8:da:03:56:45:b0:7d:f1:d3:f8:55:
67:bd:8e:1c:26:7a:02:19:70:02:de:98:e4:8c:95:73:fc:16:
cf:40:30:11:e3:94:ec:f9:43:54:c0:eb:c2:03:80:28:2b:5a:
d8:6a:db:14:65:0d:d5:43:8f:60:58:c7:cf:fb:55:c4:b5:85:
a8:f8:f1:dd:32:86:1e:4b:0a:02:a5:7e:e4:35:50:47:fd:b6:
ed:85:70:65:5a:24:f4:f3:e3:54:d7:0e:11:b8:de:a0:ac:4b:
3a:b1:e3:5a:fe:ca:66:da:11:cc:76:66:c0:54:06:66:38:73:
44:f1:07:17:f2:65:47:2d:b0:2c:76:a2:b4:da:08:f1:b7:b8:
bc:f7:1f:9d:f3:7b:58:3a:52:e7:1c:91:9b:79:13:0f:75:73:
b1:ed:6b:d1:86:8b:28:c0:9c:7a:2b:4e:43:43:81:ea:16:dc:
34:dd:16:02:53:29:b7:4c:d1:a3:b4:59:f4:26:cc:32:e9:f5:
da:21:ff:a6:ad:36:c2:02:3f:68:0c:32:ed:bc:ed:e2:f0:bc:
c8:85:80:77:64:87:b5:4f:a1:a4:b7:fe:d5:25:b7:d8:0b:24:
c0:87:85:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:18:34 2025 by rpki-client