Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B837/83300E2E3E0911EAA4E13F19C4F9AE02/3D4023BE283611EBA9595178C4F9AE02.roa
File: 3D4023BE283611EBA9595178C4F9AE02.roa (raw, json)
Hash identifier: p0gLqXYHMAKfZmsW1hgHdRTIbATt3w5OE3zBkqIYM3k=
Subject key identifier: 01:43:83:6A:34:AA:05:33:CD:0E:0E:D8:7F:6B:92:36:79:54:5D:68
Certificate issuer: /CN=A918B837/serialNumber=820E86A31F2B17FCA36DF8BE608B2C936A83BD80
Certificate serial: 0AEA
Authority key identifier: 82:0E:86:A3:1F:2B:17:FC:A3:6D:F8:BE:60:8B:2C:93:6A:83:BD:80
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg6Gox8rF_yjbfi-YIssk2qDvYA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918B837/83300E2E3E0911EAA4E13F19C4F9AE02/3D4023BE283611EBA9595178C4F9AE02.roa
Signing time: Tue 04 Feb 2025 19:18:34 +0000
ROA not before: Tue 04 Feb 2025 19:18:33 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 140403
IP address blocks: 103.147.212.0/23 maxlen: 23
103.147.212.0/24 maxlen: 24
103.147.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2794 (0xaea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918B837
Validity
Not Before: Feb 4 19:18:33 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67a26809-f684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:73:f5:86:28:70:28:88:fd:81:18:79:99:d6:
ee:f3:ac:c4:86:8a:16:e0:91:7b:e4:df:95:a5:22:
c6:1b:1f:68:ab:a1:c2:e8:05:1b:28:6c:7e:7d:dd:
e6:d2:9f:ba:a1:cb:b8:06:89:6a:5b:b6:c9:f4:c9:
a0:9e:3c:6f:a4:80:0e:ed:75:a1:0d:c7:c2:37:3f:
e5:e0:32:78:0a:31:d6:e1:84:52:e8:3c:bf:69:47:
3a:56:df:c0:3d:4f:b0:fc:60:a4:97:26:96:b6:42:
aa:3a:da:c6:68:e7:9d:12:e8:60:9a:f1:1d:97:cc:
e5:58:25:7b:69:ba:86:34:01:cb:ba:59:03:09:c8:
65:6f:62:e3:12:4e:e5:44:44:d9:ea:cb:88:a2:7e:
42:1c:2c:98:71:7e:12:63:4c:29:81:22:27:da:96:
d5:c9:f7:ca:a1:75:50:59:4a:ab:72:8f:d1:56:eb:
ef:1d:04:62:5c:9b:fc:5f:38:61:0d:83:86:c2:88:
4b:53:a6:ae:c1:61:af:7b:a2:51:54:72:bf:81:11:
e2:c5:61:5f:26:2f:0a:a7:58:1b:27:be:a6:b9:a7:
21:22:23:6a:c8:da:48:44:c5:83:9b:05:49:f7:66:
f1:5f:0a:5a:72:f0:bf:53:86:9f:d2:2a:c1:5b:d9:
7b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:43:83:6A:34:AA:05:33:CD:0E:0E:D8:7F:6B:92:36:79:54:5D:68
X509v3 Authority Key Identifier:
keyid:82:0E:86:A3:1F:2B:17:FC:A3:6D:F8:BE:60:8B:2C:93:6A:83:BD:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918B837/83300E2E3E0911EAA4E13F19C4F9AE02/gg6Gox8rF_yjbfi-YIssk2qDvYA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg6Gox8rF_yjbfi-YIssk2qDvYA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B837/83300E2E3E0911EAA4E13F19C4F9AE02/3D4023BE283611EBA9595178C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.212.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:7a:8b:85:9a:aa:23:4b:90:a3:73:ed:d3:d6:68:57:88:df:
56:5c:a9:7e:bb:24:d1:56:2a:0f:f9:15:d6:8c:79:36:f3:b7:
f8:17:b9:48:4e:4f:1b:85:3d:c7:93:ec:4a:d9:a5:85:25:c3:
71:9c:67:65:2e:7b:a8:ca:fd:a8:13:0f:c4:4f:59:9e:48:ce:
e3:a4:c4:6a:db:d8:aa:27:23:1f:71:d7:87:71:25:af:b4:7d:
67:35:c4:d3:30:a3:22:55:9b:76:4b:7a:fe:47:02:09:57:e1:
21:ed:2c:c7:73:42:07:3b:6b:53:86:0d:5d:07:2e:6d:e1:ef:
88:4e:17:04:01:2a:19:16:91:81:89:1e:76:b3:b7:d2:ed:03:
e0:70:7f:8e:0c:9e:a7:79:aa:fe:eb:94:23:b9:b5:5e:6e:5e:
33:15:69:43:f4:b3:61:2d:c3:53:cd:32:b6:38:c9:22:91:4f:
95:ca:56:b0:69:4f:8a:82:45:96:a1:8b:92:33:d7:58:71:40:
f8:42:e7:31:ec:ff:85:92:d7:20:83:1a:4f:03:f2:ce:08:40:
13:89:58:78:ea:46:ff:89:a8:50:06:48:a3:23:d8:a6:40:3a:
d6:94:ab:be:f4:bf:92:54:3f:1f:ad:87:37:b6:cb:5b:0d:ef:
ba:83:d0:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 00:31:08 2025 by rpki-client