Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/E506BE2CF03811EFAD4C2257C4F9AE02.roa
File: E506BE2CF03811EFAD4C2257C4F9AE02.roa (raw, json)
Hash identifier: l3vFzxttEXhfOuZjeQF8CrGkxbV17axCXSipPqSoFKA=
Subject key identifier: 2C:A3:25:61:9B:6B:CA:A4:B6:8C:CB:30:0D:D5:F1:70:64:BA:B8:D4
Certificate issuer: /CN=A918A05D/serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186
Certificate serial: 0153
Authority key identifier: 0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/E506BE2CF03811EFAD4C2257C4F9AE02.roa
Signing time: Thu 20 Mar 2025 01:45:07 +0000
ROA not before: Thu 20 Mar 2025 01:45:07 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 26383
IP address blocks: 103.115.17.0/24 maxlen: 24
103.115.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 339 (0x153)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918A05D
Validity
Not Before: Mar 20 01:45:07 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=67db7323-bdaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b4:08:a6:83:6f:c7:66:f3:86:60:21:9f:74:
14:26:8c:c1:ad:f4:48:48:b8:b3:65:57:59:1e:e4:
5d:1c:9a:f3:d7:3f:19:58:5d:b2:d5:27:6f:be:4c:
7f:15:24:8f:34:30:f4:2a:48:19:bf:ca:8b:bd:36:
a5:c0:49:98:e8:45:c6:65:07:72:26:67:6d:6e:17:
40:15:c6:e2:bf:81:e9:94:08:3b:c8:84:ae:3a:30:
e8:3f:7b:fa:6c:16:f0:84:94:32:3e:94:46:c2:17:
93:7b:e8:98:71:99:8d:06:db:5c:16:fd:f4:4c:d7:
6f:11:4d:c2:7f:5f:5e:f9:0e:d7:f3:6c:27:a3:fc:
16:40:66:b2:f5:f1:5b:bd:45:74:21:b0:83:8f:32:
e5:99:ed:c5:d3:c2:d9:21:a8:3e:ef:f2:60:62:de:
70:31:0e:5d:04:85:e7:ad:22:64:aa:6e:2d:ae:67:
3f:96:1f:41:05:d8:41:d8:69:45:50:85:13:de:37:
23:1b:7c:78:fa:1c:80:78:19:33:74:a2:66:a4:25:
2f:10:96:9f:46:b3:bf:66:ee:d9:b1:89:3b:a5:31:
9e:fe:50:e9:c9:bb:30:f9:c0:3c:c3:30:d7:fb:27:
6c:50:13:a2:e9:9c:48:0e:31:ca:29:d4:d3:4f:0a:
54:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:A3:25:61:9B:6B:CA:A4:B6:8C:CB:30:0D:D5:F1:70:64:BA:B8:D4
X509v3 Authority Key Identifier:
keyid:0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/E506BE2CF03811EFAD4C2257C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.115.17.0-103.115.18.255
Signature Algorithm: sha256WithRSAEncryption
27:47:5a:8c:88:7c:43:4f:54:a9:f0:0a:aa:e8:7d:66:93:f4:
43:8e:e2:cb:2c:32:b4:6a:3c:02:1e:e2:02:a0:6b:1a:09:0a:
e2:ab:e5:c8:de:d5:24:d9:2e:f9:21:35:b9:2a:82:ec:ee:aa:
69:13:6d:a2:c8:35:51:22:a7:61:2f:b6:0e:e4:c6:79:9a:f9:
0f:a0:46:57:1c:1b:85:90:0d:bb:3b:03:a3:1b:87:71:de:eb:
f6:92:52:78:64:8f:cf:e6:fc:55:ba:ee:eb:1e:e8:2d:b8:38:
4b:80:d0:7a:fc:42:6f:a5:60:72:96:62:61:87:f3:53:26:f5:
36:06:da:3c:b2:19:fa:93:b7:e4:b2:c1:4a:63:81:38:9f:a0:
0a:d8:c4:f4:62:78:dd:f7:9c:db:80:ed:d2:a7:7d:b2:20:47:
59:7c:76:ff:f2:80:56:82:58:0b:36:f4:3b:b4:34:18:58:6f:
ef:af:26:ec:6f:0b:62:c8:83:f4:21:5e:c6:8a:55:b4:02:d0:
c1:24:4d:da:f3:0f:fa:b2:0e:e5:40:9d:ba:ce:c6:72:02:a7:
aa:a3:ef:ed:1b:33:36:20:6e:0e:c0:e8:69:47:73:e1:d6:58:
8a:1f:bd:56:07:cb:07:83:59:22:65:67:1a:ce:bf:81:c6:40:
ec:0b:01:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:17:02 2025 by rpki-client