Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/0E35A0A0097611F0B5B04858C4F9AE02.roa
File: 0E35A0A0097611F0B5B04858C4F9AE02.roa (raw, json)
Hash identifier: h0HyLn8ocWGb9KjF4xTUCCRX3RLDUFI2FgHziz/KxqQ=
Subject key identifier: 3C:55:F1:D8:42:B1:EE:57:0C:28:FF:57:5A:7E:54:B0:65:9F:34:63
Certificate issuer: /CN=A917C373/serialNumber=DC474D6B25D5E1A1CD1D29000CCC14EAF93341D2
Certificate serial: 1E7C
Authority key identifier: DC:47:4D:6B:25:D5:E1:A1:CD:1D:29:00:0C:CC:14:EA:F9:33:41:D2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3EdNayXV4aHNHSkADMwU6vkzQdI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/0E35A0A0097611F0B5B04858C4F9AE02.roa
Signing time: Tue 25 Mar 2025 12:38:30 +0000
ROA not before: Tue 25 Mar 2025 12:38:30 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 10112
IP address blocks: 103.70.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7804 (0x1e7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C373
Validity
Not Before: Mar 25 12:38:30 2025 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=67e2a3c6-500c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f0:ca:ae:69:06:d8:1b:73:e9:b8:3f:18:1d:
61:fd:c4:cf:da:30:8e:5f:a6:0e:db:0d:fd:93:0a:
2a:5d:44:58:10:92:43:c3:20:3a:67:ac:57:c8:07:
85:8e:58:cf:3e:24:1e:57:dd:25:63:03:f3:35:13:
fc:2a:b4:fa:5b:b8:21:0b:41:87:b2:41:d4:85:17:
32:df:ab:a6:20:c3:38:da:6d:58:38:24:95:c6:93:
75:be:d9:bd:17:23:90:34:10:05:0d:5a:fb:f2:e7:
b4:11:0d:14:3b:cc:bb:df:0a:28:64:0c:72:ea:85:
f9:6c:5c:d0:4b:99:73:ff:9d:8a:91:15:a2:a2:5a:
70:4e:15:6d:c1:ec:00:8d:6e:58:34:74:95:c1:69:
c1:06:fe:cc:27:ab:64:5b:62:07:74:d1:fd:54:4e:
c9:97:69:16:a2:d7:04:dd:a2:fb:5b:13:9b:4e:de:
1f:c2:02:d8:b0:39:6c:49:22:3d:50:4a:d2:c9:53:
15:00:f5:58:8c:87:77:b9:93:57:d2:fb:92:f8:0f:
1c:9f:8f:f0:3f:76:f9:1b:39:c3:d6:74:32:bd:99:
df:42:f5:b5:b0:1c:76:19:17:2b:4f:f1:fa:3b:c8:
35:c3:0a:b2:82:58:a4:81:e5:3c:a7:3a:22:62:06:
48:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:55:F1:D8:42:B1:EE:57:0C:28:FF:57:5A:7E:54:B0:65:9F:34:63
X509v3 Authority Key Identifier:
keyid:DC:47:4D:6B:25:D5:E1:A1:CD:1D:29:00:0C:CC:14:EA:F9:33:41:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/3EdNayXV4aHNHSkADMwU6vkzQdI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3EdNayXV4aHNHSkADMwU6vkzQdI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/0E35A0A0097611F0B5B04858C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.70.136.0/24
Signature Algorithm: sha256WithRSAEncryption
40:ad:cd:d7:23:56:51:75:ec:ff:c6:67:92:e5:eb:eb:0a:24:
7f:ca:ff:6d:06:27:6a:5d:f9:92:84:9b:cb:e5:d6:ca:57:e8:
9b:cc:d9:0e:63:95:1a:a6:e7:ab:3b:6b:82:ba:ee:2f:d2:53:
34:d0:19:96:ff:d7:0f:d6:41:0f:c3:70:3d:00:e1:d3:ba:05:
b9:69:79:2e:60:21:7e:e7:ba:70:01:9a:6e:e9:af:24:64:1c:
3a:e1:58:ed:c8:90:dc:65:89:a1:ed:7d:56:52:1b:8e:a2:94:
b2:c0:94:1a:55:fa:e6:43:92:0b:88:96:4f:36:b9:9a:a0:a8:
76:68:f5:44:2c:c6:b2:2b:5e:7b:cb:a7:b4:d7:bb:97:9e:0f:
63:c9:ba:10:1b:05:ee:2e:a6:55:64:78:d3:b6:10:41:26:19:
f3:8b:d0:12:d8:2e:43:ce:66:61:5b:f2:1c:24:73:82:97:43:
69:72:0a:b8:7e:38:b4:9f:ed:ec:46:a9:10:14:43:93:22:00:
be:07:ad:22:a4:71:7a:bc:96:d1:6a:55:13:46:66:0a:3a:81:
34:df:94:cf:12:26:a3:92:db:e1:9a:40:b5:74:78:75:37:d4:
4a:c5:4f:4a:10:f0:e8:d7:cc:89:ad:eb:83:6f:1f:0d:06:46:
4e:5e:0a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:26:45 2025 by rpki-client