Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7842/76A8C6BA8E6511ECA6EEEB70C4F9AE02/615BA1B8D91411EF9940471AC4F9AE02.roa
File: 615BA1B8D91411EF9940471AC4F9AE02.roa (raw, json)
Hash identifier: 41dvwuGONsbAf2NNxcw97I3G8Q6DNf+rajP9T/KIeiw=
Subject key identifier: 59:A0:B9:14:DA:15:6F:96:48:7D:7F:25:29:93:58:95:88:5D:41:B9
Certificate issuer: /CN=A91A7842/serialNumber=975BB9418256814A052DAF54F70A1ADC536FDF9B
Certificate serial: 0382
Authority key identifier: 97:5B:B9:41:82:56:81:4A:05:2D:AF:54:F7:0A:1A:DC:53:6F:DF:9B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1u5QYJWgUoFLa9U9woa3FNv35s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A7842/76A8C6BA8E6511ECA6EEEB70C4F9AE02/615BA1B8D91411EF9940471AC4F9AE02.roa
Signing time: Wed 22 Jan 2025 22:58:23 +0000
ROA not before: Wed 22 Jan 2025 22:58:23 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 134465
IP address blocks: 103.176.85.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 898 (0x382)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A7842
Validity
Not Before: Jan 22 22:58:23 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=6791780f-b86d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:70:76:3a:1a:8e:39:d4:bd:ee:f5:9f:69:e2:
2f:3a:18:73:32:2b:f1:18:14:9f:22:04:d1:31:b8:
33:c3:13:f1:be:7b:17:32:af:aa:8f:4b:14:34:b2:
8e:be:d7:76:32:45:95:91:d5:04:54:b3:b7:a8:e7:
b1:8f:bf:1c:94:bc:89:56:30:a5:d9:fd:a5:41:ce:
bd:21:67:21:9f:35:73:05:7e:82:4d:f4:47:26:47:
d6:cb:71:42:df:3f:56:5e:9b:f9:95:83:83:99:16:
f6:0c:93:bd:9e:9f:02:4f:de:1c:c2:42:46:8c:27:
73:27:cb:c8:c4:21:43:30:df:3f:d1:20:fa:cd:c5:
f2:e2:c0:77:0d:86:09:77:c1:1f:d6:3b:27:4b:a8:
ce:95:8e:3b:bf:2e:8c:ae:47:eb:c5:bf:3b:e6:de:
0e:46:fb:5b:6b:9d:7c:39:92:c2:28:14:35:e4:06:
0d:79:0c:05:d7:5b:21:ab:1f:67:81:36:01:14:7d:
df:53:40:e9:c5:af:73:2d:84:b9:29:eb:d3:25:ef:
51:61:b7:41:36:64:3f:8d:15:09:90:6c:76:48:8d:
f0:46:94:9e:8f:a2:90:b4:7a:14:80:dc:30:d4:cd:
5c:b1:01:ec:d5:d8:1b:e3:e9:4c:0b:2d:e5:b4:86:
97:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A0:B9:14:DA:15:6F:96:48:7D:7F:25:29:93:58:95:88:5D:41:B9
X509v3 Authority Key Identifier:
keyid:97:5B:B9:41:82:56:81:4A:05:2D:AF:54:F7:0A:1A:DC:53:6F:DF:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A7842/76A8C6BA8E6511ECA6EEEB70C4F9AE02/l1u5QYJWgUoFLa9U9woa3FNv35s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1u5QYJWgUoFLa9U9woa3FNv35s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7842/76A8C6BA8E6511ECA6EEEB70C4F9AE02/615BA1B8D91411EF9940471AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.176.85.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:83:f1:17:16:96:ba:96:e9:1d:28:8a:b6:6e:ce:da:da:2f:
fe:2d:f1:fc:da:13:9b:a3:69:73:a8:7d:ec:64:04:2a:33:90:
a7:5f:e1:bd:8e:e6:48:9f:eb:9c:a3:48:45:ab:7c:46:6a:d5:
65:66:7b:b4:45:42:83:ea:e4:fc:69:c4:37:02:e1:76:ed:7b:
66:02:86:bb:ee:af:41:2e:e2:ec:76:af:88:af:0c:d8:99:8b:
41:08:26:bc:d7:d3:c1:71:ad:58:5a:ad:0e:43:f6:f7:a8:c4:
87:0c:33:52:cd:01:72:4a:d3:b6:d6:1e:2b:53:3e:d9:64:b0:
d4:4b:dd:e9:2b:16:f4:10:c2:b6:43:67:63:f9:b6:d7:8a:2a:
a9:75:70:00:83:f8:91:c6:88:3d:65:35:e9:d4:74:67:51:8c:
ac:c3:a5:58:39:cc:0c:48:ab:cb:bd:3a:43:70:3c:d7:5c:55:
fe:74:80:b0:fc:dd:44:3b:da:20:2e:40:99:5d:64:32:54:85:
3d:56:5b:1a:0e:d6:ef:2c:4a:11:c3:47:71:00:02:dc:19:31:
46:fc:17:2c:54:e1:98:fd:ae:00:b8:e9:d0:43:7d:64:d8:14:
35:77:dd:fe:04:43:59:35:c4:2c:49:59:83:5d:07:68:f4:d8:
d5:23:8d:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 21:36:16 2025 by rpki-client