Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD90A/17E2CF50B5C511EBB54E0146C4F9AE02/65D38F7CC44111EF8409C156C4F9AE02.roa
File: 65D38F7CC44111EF8409C156C4F9AE02.roa (raw, json)
Hash identifier: f9AHjTbNbqSt8k/eMNuMhNVjcuM6wjeLwT4q/khUyEs=
Subject key identifier: 7D:39:DB:53:27:99:2F:5A:0D:EB:41:DE:AB:4E:F8:52:E3:2D:E6:75
Certificate issuer: /CN=A91FD90A/serialNumber=4B9A63881A8556021054E94BDC32274EC7B7DDF2
Certificate serial: 05B2
Authority key identifier: 4B:9A:63:88:1A:85:56:02:10:54:E9:4B:DC:32:27:4E:C7:B7:DD:F2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5pjiBqFVgIQVOlL3DInTse33fI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FD90A/17E2CF50B5C511EBB54E0146C4F9AE02/65D38F7CC44111EF8409C156C4F9AE02.roa
Signing time: Wed 08 Jan 2025 22:52:09 +0000
ROA not before: Wed 08 Jan 2025 22:52:09 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 139824
IP address blocks: 103.145.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1458 (0x5b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FD90A
Validity
Not Before: Jan 8 22:52:09 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=677f0199-a723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4c:a1:23:1a:cf:1b:4e:f7:94:6d:57:92:60:
08:a7:45:99:62:fe:89:2e:11:e2:3c:19:e1:89:f6:
92:80:93:96:70:df:1b:76:71:7f:13:0f:85:65:87:
aa:dc:ee:ea:20:32:61:70:9e:cf:8b:b8:0d:63:57:
79:98:04:fc:e2:68:3f:53:04:f5:58:a9:a0:cb:1c:
93:ec:0d:50:7e:82:ad:c3:db:f9:e7:dc:26:cc:4e:
1e:3f:fb:9c:6f:b8:17:bb:83:d5:7f:52:40:b5:02:
22:8a:11:3e:17:98:61:ac:b1:1f:08:ad:da:e4:21:
f9:7b:7f:e9:90:70:af:56:d5:59:6b:38:2d:ba:23:
20:f3:48:18:3b:8c:db:d7:95:df:b8:ed:3a:dd:93:
f6:5a:55:55:e2:71:04:4c:e6:ef:62:ba:c5:a8:2d:
78:9c:6e:cc:3d:0d:df:41:88:38:03:66:23:d3:28:
20:9e:47:10:c4:d7:d1:4c:e8:b2:4b:c4:ad:87:04:
19:ee:31:93:c7:9b:96:02:a4:cc:a5:59:7f:33:1e:
96:b8:b8:75:6c:3c:13:e5:d9:c8:76:a7:f0:3d:ba:
e6:fa:79:12:d6:22:ae:6f:d8:2b:a2:8b:99:05:c1:
e8:1b:6e:6f:ef:ff:e4:bd:85:7e:da:75:05:f5:d8:
d4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:39:DB:53:27:99:2F:5A:0D:EB:41:DE:AB:4E:F8:52:E3:2D:E6:75
X509v3 Authority Key Identifier:
keyid:4B:9A:63:88:1A:85:56:02:10:54:E9:4B:DC:32:27:4E:C7:B7:DD:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FD90A/17E2CF50B5C511EBB54E0146C4F9AE02/S5pjiBqFVgIQVOlL3DInTse33fI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5pjiBqFVgIQVOlL3DInTse33fI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD90A/17E2CF50B5C511EBB54E0146C4F9AE02/65D38F7CC44111EF8409C156C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.145.184.0/24
Signature Algorithm: sha256WithRSAEncryption
94:4f:d9:1a:fc:19:ae:21:62:37:b3:83:56:1c:3e:2c:fd:a7:
8b:6b:b1:38:bc:ef:2a:1e:fc:fb:53:98:a9:b3:40:86:7a:f1:
5a:83:fa:a9:c7:31:84:dc:5e:a5:4f:82:ab:00:ca:38:38:6c:
cb:60:3c:51:da:01:14:4e:6c:53:36:b8:19:8e:91:b4:40:fb:
c7:71:94:f0:d7:3f:89:d8:04:e4:c3:64:d4:c8:30:93:87:30:
90:3f:c5:6f:03:9c:03:de:1d:47:ce:19:cf:37:39:54:40:82:
4c:c3:7e:05:a6:64:48:10:92:03:17:bd:56:c1:44:6d:56:4b:
14:94:11:69:95:20:89:eb:7f:7b:ed:f5:60:db:ed:67:4a:20:
00:9c:18:21:30:f6:00:46:3b:5e:05:09:90:8b:23:04:72:b5:
0c:98:33:ea:15:e2:70:81:0a:e8:bc:2c:54:2b:04:6a:29:03:
4f:b0:8d:a7:21:fa:1d:ee:8c:9c:0d:06:44:1d:f0:f1:e1:f9:
4b:78:2b:06:31:90:99:2f:47:10:76:9b:d8:33:4a:e2:4e:4c:
7d:a3:59:3f:96:0b:12:bd:19:41:e0:22:f6:9f:38:f9:34:b5:
b0:cb:44:d7:98:c3:e1:fe:93:3e:c5:65:9c:23:aa:ba:94:9d:
f1:bf:e8:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:29:42 2025 by rpki-client