Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6CB6/2A4F575EFE1411E981C26559C4F9AE02/04E274DA27CB11EE8FA6F46CC4F9AE02.roa
File: 04E274DA27CB11EE8FA6F46CC4F9AE02.roa (raw, json)
Hash identifier: QC+kAoIXXpY6brDwehpJKK1cCBvEWnBsopkp3/fuZEY=
Subject key identifier: 1A:56:7A:E7:5E:8E:A5:60:54:AF:F8:3E:95:9A:41:15:7E:1F:F7:69
Certificate issuer: /CN=A91C6CB6/serialNumber=523370A81A6E514618AE7CA9795FDD110B350E37
Certificate serial: 0C65
Authority key identifier: 52:33:70:A8:1A:6E:51:46:18:AE:7C:A9:79:5F:DD:11:0B:35:0E:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjNwqBpuUUYYrnypeV_dEQs1Djc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C6CB6/2A4F575EFE1411E981C26559C4F9AE02/04E274DA27CB11EE8FA6F46CC4F9AE02.roa
Signing time: Thu 20 Mar 2025 18:27:46 +0000
ROA not before: Thu 20 Mar 2025 18:27:46 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 137482
IP address blocks: 103.110.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3173 (0xc65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C6CB6
Validity
Not Before: Mar 20 18:27:46 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67dc5e22-29f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:1a:a9:c4:a0:8a:a3:04:a3:86:66:78:92:30:
1e:91:1e:34:a9:d4:af:ba:b5:ef:0f:89:4b:5c:94:
78:56:e5:35:8c:41:54:cb:8c:42:55:12:66:bb:d7:
43:71:ec:da:3a:1c:71:18:5f:80:41:a7:ad:97:68:
ae:d4:20:06:5c:38:56:fc:6e:0a:d2:95:31:e8:b2:
bd:d9:a4:7a:ca:9c:ea:b7:95:5f:9b:36:f4:61:ce:
67:cc:59:e1:74:99:ed:db:dc:88:aa:80:d6:74:eb:
87:f1:b0:bf:ae:66:e1:d1:ca:e2:f7:65:5a:44:6d:
b5:5a:23:2e:96:46:7b:e5:ff:1a:cc:2b:b2:1f:db:
27:9d:0a:19:83:30:af:20:7d:51:be:07:3e:1f:0a:
3a:d7:8a:cf:6d:6f:4f:6e:1d:8f:bd:31:cd:5e:21:
cd:0a:7a:c1:61:82:a2:11:98:1a:31:c1:f9:9c:96:
8b:d8:9c:52:1b:2a:20:a0:15:ed:3c:78:a3:85:97:
1d:ac:1c:d7:c9:cd:68:dc:a6:dc:31:db:e3:d3:13:
11:5b:f9:7d:26:a7:91:3b:25:3b:89:65:3d:17:9f:
9a:30:85:93:82:20:08:c0:2d:2b:cc:dc:66:24:ad:
22:2f:5f:aa:dd:07:6e:bc:4a:06:54:32:4b:70:58:
e2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:56:7A:E7:5E:8E:A5:60:54:AF:F8:3E:95:9A:41:15:7E:1F:F7:69
X509v3 Authority Key Identifier:
keyid:52:33:70:A8:1A:6E:51:46:18:AE:7C:A9:79:5F:DD:11:0B:35:0E:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C6CB6/2A4F575EFE1411E981C26559C4F9AE02/UjNwqBpuUUYYrnypeV_dEQs1Djc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjNwqBpuUUYYrnypeV_dEQs1Djc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6CB6/2A4F575EFE1411E981C26559C4F9AE02/04E274DA27CB11EE8FA6F46CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.110.56.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:53:b4:db:87:b7:c1:90:7f:03:34:52:39:13:92:70:25:e8:
ba:72:da:8b:da:0c:f1:d0:e1:d6:9f:92:94:d2:0b:b9:4e:1b:
6e:ab:92:97:20:e0:b4:a4:05:e1:e9:a7:24:91:16:d4:e8:a6:
7d:89:e0:df:d3:0c:f1:cd:e5:b5:73:68:21:db:1a:ad:5e:83:
0f:f4:b7:ac:9b:5f:e9:35:51:f3:6d:66:92:d4:47:30:25:d3:
26:9b:bf:ed:12:a0:6e:a3:02:e4:d9:0b:1c:84:f9:56:e9:b1:
bc:b9:a1:9e:ec:13:c6:af:b9:1d:1d:33:f9:a3:4a:f9:e7:bd:
f4:5e:4c:ea:ee:01:ad:99:17:a9:e4:94:c3:1c:5b:b4:bf:ac:
f6:b5:02:0c:4d:39:30:a9:27:b3:a9:1a:06:70:f8:b1:83:8c:
d2:3e:52:a5:09:a9:73:54:b7:d7:26:47:51:79:71:cf:92:7e:
20:f6:7c:0f:35:b8:b4:9c:1d:ff:2d:bc:9e:87:c7:e5:a0:dc:
12:3a:56:5b:a1:3a:6e:05:3f:5c:f9:09:78:6c:2c:f9:60:12:
49:bc:1f:4c:ea:4e:03:61:b5:d5:49:7c:04:c3:c9:89:cd:19:
ef:3a:9f:23:02:13:d9:80:29:49:a1:17:04:c3:fe:99:36:02:
e5:5b:92:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:21:00 2025 by rpki-client