Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/517F49AA822611EB8990276EC4F9AE02.roa
File: 517F49AA822611EB8990276EC4F9AE02.roa (raw, json)
Hash identifier: CVEUO3oD78hdPnE1F9V5H7s7rSJsTEHJ4Ohcr53z470=
Subject key identifier: DF:63:D0:4C:1F:E6:9B:90:F2:0F:21:15:5E:7F:CE:AC:94:57:C9:24
Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE
Certificate serial: 064B
Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/517F49AA822611EB8990276EC4F9AE02.roa
Signing time: Thu 20 Mar 2025 22:33:38 +0000
ROA not before: Thu 20 Mar 2025 22:33:38 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 137967
IP address blocks: 103.163.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1611 (0x64b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A799E
Validity
Not Before: Mar 20 22:33:38 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67dc97c2-10fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c6:76:94:b1:3a:c2:fa:cd:22:a2:7a:fd:c6:
60:46:43:f9:76:ec:2d:00:be:28:9e:04:80:07:d1:
06:1b:16:70:d6:dd:aa:b2:55:ed:bf:92:2c:c9:09:
3d:92:69:69:e2:32:c9:78:84:9b:04:70:32:b8:ca:
d5:19:40:ac:2f:90:42:7d:5c:d4:ef:2a:b5:87:4a:
5e:a9:f3:3b:2c:e4:a8:36:d1:77:5c:31:a0:4f:fe:
5c:26:b4:20:62:9a:d1:55:71:f0:08:b3:82:3f:a7:
8a:42:49:68:0e:aa:ae:7c:5d:86:07:61:59:93:86:
d7:a1:62:48:ed:76:f9:66:73:e9:0a:54:39:a8:3c:
d6:c2:79:27:0f:35:96:3f:80:f1:c5:fb:7c:c6:1e:
54:2f:12:fb:40:a8:38:4e:b7:dc:a2:45:1c:ba:5e:
00:08:aa:ee:60:0f:50:15:ab:a3:71:73:ec:29:40:
35:36:17:8d:40:b6:95:6c:0b:60:d8:80:b3:44:5f:
bb:fa:8a:cc:7c:96:cd:14:e0:fc:bb:8f:35:0e:da:
5b:b9:1d:30:40:48:fd:8f:c2:7f:69:cf:01:ff:93:
98:d7:e5:bc:ae:7e:5d:5b:11:e4:0b:ac:f4:84:cb:
ab:e1:b7:f8:9d:d9:ba:43:bf:7d:33:40:ef:33:5d:
61:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:63:D0:4C:1F:E6:9B:90:F2:0F:21:15:5E:7F:CE:AC:94:57:C9:24
X509v3 Authority Key Identifier:
keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/517F49AA822611EB8990276EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.163.171.0/24
Signature Algorithm: sha256WithRSAEncryption
58:52:ed:7e:8e:98:9f:d4:58:63:80:56:3a:30:3f:25:cc:aa:
f1:aa:89:8a:36:9c:2c:f0:1c:22:cf:6d:a3:57:62:3e:ac:64:
e8:7c:20:0c:88:36:fe:cd:38:7a:00:e1:cb:fc:0b:31:60:0d:
96:a0:ca:32:bb:c5:b4:0b:c5:3f:59:07:3f:f5:45:14:b3:70:
ef:88:49:7c:89:2c:4f:eb:ac:be:a8:26:7f:1a:9a:87:a9:61:
0e:ec:9a:c7:0c:d8:15:60:8d:49:d2:37:10:ed:88:f4:05:64:
9b:a6:e9:a3:9f:d3:11:aa:12:fb:a4:bf:41:eb:2c:58:ea:9e:
f0:a1:d4:9f:c5:3b:9e:b0:0b:57:6c:64:13:a5:c1:35:e2:7d:
cb:a7:43:8a:54:a8:e7:8c:4d:8d:27:a7:bd:aa:18:33:18:01:
16:30:a3:aa:53:69:03:64:22:12:be:67:48:ec:50:d5:72:38:
1d:74:97:1c:55:e1:ed:cc:28:a5:f2:c6:f7:e6:38:fa:a8:90:
b4:e0:94:e3:aa:1f:5c:18:d8:c8:e2:a0:d5:14:cb:67:80:3c:
40:f4:55:8e:5a:d9:e1:56:51:76:c8:5b:0c:00:e9:7c:d2:6f:
34:e4:6a:5e:be:b5:a3:17:73:29:f1:57:ad:5d:bb:f8:23:92:
62:69:01:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:10:36 2025 by rpki-client