Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/F3EFD9AA8E8711EE90D68539C4F9AE02.roa
File: F3EFD9AA8E8711EE90D68539C4F9AE02.roa (raw, json)
Hash identifier: SemsB7c/ROj9c77fwJViBJ4JNJvfMuX8Y0zOvCQOmeE=
Subject key identifier: 71:51:7D:BC:9A:67:D3:9B:4D:C4:AC:8C:37:0F:36:0E:9A:13:46:76
Certificate issuer: /CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A
Certificate serial: 0363
Authority key identifier: C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/F3EFD9AA8E8711EE90D68539C4F9AE02.roa
Signing time: Sun 09 Feb 2025 01:03:07 +0000
ROA not before: Sun 09 Feb 2025 01:03:07 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 151640
IP address blocks: 103.178.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 867 (0x363)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDCF1
Validity
Not Before: Feb 9 01:03:07 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67a7fecb-92de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e3:9b:6b:67:31:2e:9f:e1:f5:89:97:5e:9c:
73:83:a9:42:7b:ef:3c:59:10:6e:cf:04:16:6d:86:
8d:7c:b6:1a:4b:77:c9:73:de:c7:7c:89:79:8c:fc:
ec:22:4a:21:70:b3:12:8b:f7:56:63:72:82:0c:20:
79:97:51:e7:d9:13:87:92:48:dc:2b:26:c0:76:43:
c0:44:e1:4c:e5:c8:54:86:b3:7b:59:3e:e0:ac:68:
51:01:d5:06:09:1a:aa:86:05:91:d8:6e:74:b6:c5:
1b:ee:92:c2:ed:3f:15:b9:e6:c9:da:db:36:85:f5:
3a:23:37:f3:4a:9a:91:55:f4:84:15:cc:22:cc:1b:
ca:c7:1e:eb:d9:2b:86:6b:f0:30:6f:3b:1e:ca:6d:
64:01:6e:a4:9c:ff:45:1c:4a:31:e9:20:56:c9:ee:
30:32:7b:81:c2:ad:03:07:ff:c4:d4:50:e7:37:ab:
7e:4c:20:1c:ef:c5:19:fc:78:b8:07:a3:f4:09:78:
55:45:7a:d8:40:48:8a:80:7f:9f:ac:ba:69:84:08:
36:7b:3b:1f:db:d6:5f:ae:c6:16:83:2b:7e:d3:a1:
87:0a:95:14:7b:18:5d:ab:a8:c9:3d:34:2b:ee:28:
3d:05:d3:e1:09:7d:ed:4e:3b:35:fa:3f:e3:3c:45:
8f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:51:7D:BC:9A:67:D3:9B:4D:C4:AC:8C:37:0F:36:0E:9A:13:46:76
X509v3 Authority Key Identifier:
keyid:C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/F3EFD9AA8E8711EE90D68539C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.178.56.0/24
Signature Algorithm: sha256WithRSAEncryption
56:40:d8:df:fa:d2:a4:82:c0:2e:14:12:9a:68:ef:83:42:c1:
24:4f:f9:7a:28:13:f5:d4:21:6e:9d:b0:be:0a:7e:a8:b7:62:
a3:6f:fe:62:f5:96:b9:11:91:74:89:69:41:c1:27:2f:17:18:
6b:ce:18:0a:3d:a9:62:9a:eb:1a:90:97:6a:a1:f5:b0:ae:9c:
5b:ee:ab:2b:ba:cd:8f:59:e1:66:fb:c9:aa:f3:a2:e9:4e:2b:
77:37:92:8a:c9:33:87:6f:79:58:b7:f0:19:d1:68:b2:7a:90:
2a:0c:65:a3:31:3f:ed:83:f9:f5:43:bf:23:9a:5c:15:66:30:
04:bf:42:16:63:4f:e9:67:c8:8c:58:85:34:ab:e1:45:4d:79:
b7:5b:2e:a4:0c:80:fb:40:30:af:6d:16:78:74:ca:19:d1:3e:
67:1d:20:7b:22:b5:9d:64:7e:5e:99:00:48:dc:94:a8:d6:fc:
6f:24:64:f5:e5:c9:5e:10:a0:14:0f:c0:53:7a:c1:af:cb:49:
32:5d:e1:54:39:7a:ff:d0:a0:ce:4c:21:16:be:d4:e9:9b:e0:
09:73:3e:9e:ea:4f:0d:25:1b:6d:c0:6e:77:5e:f5:dd:00:33:
9b:05:f3:0f:7f:23:72:30:71:be:ef:23:9b:bd:9e:23:bc:64:
88:f3:fa:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 02:34:10 2025 by rpki-client