Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/547D2C14BBDF11ECA1F12A0DC4F9AE02.roa
File: 547D2C14BBDF11ECA1F12A0DC4F9AE02.roa (raw, json)
Hash identifier: Tw8o51QsKWxSHOjK/psQ5MTWchWVnaRSIbAtlFB/kL8=
Subject key identifier: 40:14:F4:EC:A1:32:17:47:9E:6A:6C:F7:0D:14:8B:1E:87:6B:2F:68
Certificate issuer: /CN=A919B63C/serialNumber=2585DA0B980A47FEBA0E235205DEEE402F20B3CB
Certificate serial: 3418
Authority key identifier: 25:85:DA:0B:98:0A:47:FE:BA:0E:23:52:05:DE:EE:40:2F:20:B3:CB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/547D2C14BBDF11ECA1F12A0DC4F9AE02.roa
Signing time: Sat 06 Jul 2024 15:00:54 +0000
ROA not before: Sat 06 Jul 2024 15:00:54 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 133435
IP address blocks: 103.228.212.0/23 maxlen: 24
103.228.214.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13336 (0x3418)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919B63C
Validity
Not Before: Jul 6 15:00:54 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66895c26-a231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c5:95:d8:fe:f1:e7:6f:7e:27:56:3e:dd:79:
22:b5:c9:ee:61:47:54:4f:13:30:ad:c7:6d:d0:e5:
f3:f1:e7:46:39:ae:65:fc:7e:5e:c7:66:12:4d:1d:
5a:50:93:09:66:86:09:e5:92:f9:f2:fa:1d:45:d2:
11:0a:d8:e9:44:7b:91:e7:e4:76:8b:af:17:dd:46:
38:eb:99:60:76:6c:78:40:a7:16:3e:1e:f9:e4:a7:
2e:77:cf:5e:48:d6:fb:56:4b:7e:6c:22:d4:de:05:
ae:a5:d8:28:fe:63:59:07:06:0f:2c:9e:c2:0a:a2:
ff:13:e2:e2:85:aa:55:db:6e:8d:4b:b7:38:b3:34:
a4:3f:76:b6:9b:69:38:ce:df:29:cc:1f:de:55:a8:
df:b1:8a:5b:b9:20:d0:ed:13:28:87:14:03:68:0f:
89:16:ea:64:c7:08:6d:f3:53:5f:37:d0:9b:90:19:
28:1e:d7:f7:22:cb:02:c7:9c:2a:3c:3b:1e:94:cd:
dd:77:4d:d9:c7:4e:e1:36:4b:f5:9e:25:3f:e3:ae:
6a:4b:78:5a:a8:6f:e2:5a:b0:04:ad:f6:78:32:ab:
93:ab:e5:c0:8c:08:4d:23:21:52:10:ba:3d:09:2c:
b2:e9:e5:e6:35:65:63:42:a2:23:e9:cb:af:ca:98:
00:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:14:F4:EC:A1:32:17:47:9E:6A:6C:F7:0D:14:8B:1E:87:6B:2F:68
X509v3 Authority Key Identifier:
keyid:25:85:DA:0B:98:0A:47:FE:BA:0E:23:52:05:DE:EE:40:2F:20:B3:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/547D2C14BBDF11ECA1F12A0DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.228.212.0/22
Signature Algorithm: sha256WithRSAEncryption
30:57:68:23:c0:3d:b2:e6:d9:0d:0a:b9:14:34:0d:64:e7:65:
6b:2a:c0:34:e5:08:0d:71:24:fb:14:a4:86:bc:70:9e:50:8e:
71:eb:12:de:45:23:ca:37:89:d1:1a:3e:ca:45:60:1a:fb:09:
ab:a0:d9:0c:8b:69:60:ab:e1:50:3e:2f:dc:db:48:6c:c1:7b:
15:bf:cc:28:5e:64:ee:b2:ab:57:6e:af:a9:5d:01:85:8c:74:
b4:be:21:de:42:05:fc:75:7f:e6:1a:d3:29:02:37:af:ac:8f:
6d:d1:1d:cb:3a:3f:e8:7d:4c:50:e4:1a:77:b3:29:83:2c:36:
51:8e:2f:8d:ba:2e:6f:63:52:e1:41:e7:f9:7f:ef:ad:6c:08:
1d:6b:20:90:ed:77:cf:31:eb:f3:6e:24:b8:f1:f5:b0:08:3e:
8b:73:a9:a8:84:e9:90:d2:f6:24:ab:d8:6f:8a:86:3e:7f:fc:
81:16:f8:26:24:ac:83:5a:cd:d8:5c:56:41:50:d3:c0:e9:80:
46:ef:b4:7f:5d:bc:ba:1a:7c:4d:b5:a8:75:43:fc:59:0e:33:
78:f7:f8:a4:44:43:91:d9:de:53:c2:f7:f2:a1:b3:03:1c:4e:
87:9b:88:c1:a3:0f:c0:0d:db:91:8f:b2:c7:e4:d9:7b:d5:2c:
cf:5b:19:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:06:40 2025 by rpki-client