Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/A9511B7AA0B511EA94365A38C4F9AE02.roa
File: A9511B7AA0B511EA94365A38C4F9AE02.roa (raw, json)
Hash identifier: 8rvezRlfEmng/UgYNLuDBBrL/AQ4sVZHRDguwah88WU=
Subject key identifier: CA:99:7A:20:AC:1A:63:7D:52:F6:53:6D:12:38:BA:0B:AA:44:1B:B2
Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F
Certificate serial: 08FA
Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/A9511B7AA0B511EA94365A38C4F9AE02.roa
Signing time: Fri 28 Feb 2025 21:58:55 +0000
ROA not before: Fri 28 Feb 2025 21:58:55 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 137477
IP address blocks: 103.110.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2298 (0x8fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DB421
Validity
Not Before: Feb 28 21:58:55 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67c2319f-f6e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2c:b3:89:22:e6:80:e8:5e:e8:ab:37:d2:6d:
56:98:91:09:7a:71:67:df:2f:38:09:ee:be:e7:c8:
c1:03:50:2b:bf:98:54:00:bf:67:d2:33:38:db:00:
1c:35:e9:93:93:44:b0:6d:ac:0b:76:06:99:4f:da:
4a:97:58:37:56:d2:5b:70:f9:0f:09:84:4b:03:08:
37:c5:7f:ff:d7:48:15:68:32:40:81:50:07:4a:c8:
33:a9:07:e1:23:2d:b7:63:1e:b9:e6:69:95:c8:de:
8c:bc:46:fb:a5:6e:3d:ca:3f:df:b6:6f:5c:72:db:
25:88:5d:aa:7b:e5:1f:65:f8:b8:f5:95:98:ba:e0:
37:57:81:62:bd:a1:b1:26:3a:ba:02:39:1e:d0:53:
3a:a1:b5:1c:5d:cb:d1:e8:14:1b:55:7a:db:bb:94:
9f:9d:ab:7d:b8:57:e9:5e:be:2e:95:ac:f5:1b:29:
37:99:01:f2:1c:11:80:8c:17:22:20:9d:68:64:aa:
f0:2a:dc:b3:1d:70:9d:f8:a1:9d:d7:46:14:0e:fd:
f3:6e:f1:52:3f:5e:d2:69:3c:64:37:26:f4:6e:0c:
74:fc:45:4b:8f:93:60:b4:f7:10:15:e6:fc:cf:13:
ab:60:89:2a:55:79:9a:e7:e7:7d:b4:87:5c:25:c2:
4f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:99:7A:20:AC:1A:63:7D:52:F6:53:6D:12:38:BA:0B:AA:44:1B:B2
X509v3 Authority Key Identifier:
keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/A9511B7AA0B511EA94365A38C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.110.40.0/24
Signature Algorithm: sha256WithRSAEncryption
84:e8:50:c8:32:d3:fd:ad:e8:86:4e:fe:5b:00:b0:62:3a:8f:
d9:31:5b:58:fb:0d:39:bd:f5:63:d2:a3:4b:fd:43:0a:db:12:
93:85:50:21:c9:d2:78:5c:54:62:57:fb:db:6c:2a:78:46:c0:
f6:c4:ba:ff:8c:ee:98:6d:06:ba:dd:a5:08:8c:d0:4a:1d:80:
70:2c:fb:2e:d5:db:c8:f3:b1:d9:56:e9:76:5f:19:73:41:64:
93:12:cd:d6:c0:8a:92:24:b9:c9:f7:f3:01:fb:3c:e3:ca:fd:
ed:ff:89:b2:3f:96:62:ff:6a:75:ee:13:89:6c:66:48:c7:1d:
89:a5:7b:92:bd:35:2a:de:3a:20:de:84:86:24:21:ed:4e:de:
da:dd:29:2e:a9:7f:5e:d0:31:57:47:52:ad:eb:bc:3c:22:1f:
ce:f2:d1:a1:5a:e5:b2:16:1e:f0:b2:5e:b3:eb:4c:37:62:e9:
f6:ec:ce:e7:2c:a2:ef:45:55:bd:5e:ee:fa:da:a2:f3:bd:4a:
13:e1:d5:23:0f:6e:bf:46:a2:6f:23:98:2b:df:7a:e1:bc:33:
dd:33:d0:57:0c:da:30:3f:16:c9:ca:9d:21:85:78:f8:e4:34:
ca:df:85:0c:29:ed:b1:c1:df:f7:7d:e1:44:3e:93:a8:7f:24:
63:16:6a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:16:42 2025 by rpki-client