Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/3A84FA5A01E711EDB2C82D0FC4F9AE02.roa
File: 3A84FA5A01E711EDB2C82D0FC4F9AE02.roa (raw, json)
Hash identifier: x4ZEI1/oN7zeGVnSfu0nnPCt20waWeVh+pcZZP/qEoY=
Subject key identifier: BD:A5:1C:7C:E3:8B:49:F4:97:74:E6:A3:1E:C9:D6:6B:68:F5:76:17
Certificate issuer: /CN=A91546FB/serialNumber=DA5C8F2728408FEEF8256E20388DEB9601E5B510
Certificate serial: 011B
Authority key identifier: DA:5C:8F:27:28:40:8F:EE:F8:25:6E:20:38:8D:EB:96:01:E5:B5:10
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lyPJyhAj-74JW4gOI3rlgHltRA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/3A84FA5A01E711EDB2C82D0FC4F9AE02.roa
Signing time: Sat 13 May 2023 06:25:25 +0000
ROA not before: Sat 13 May 2023 06:25:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59215
IP address blocks: 103.227.156.0/24 maxlen: 24
103.227.157.0/24 maxlen: 24
103.227.158.0/24 maxlen: 24
103.227.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283 (0x11b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91546FB, serialNumber=DA5C8F2728408FEEF8256E20388DEB9601E5B510
Validity
Not Before: May 13 06:25:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=645f2d55-84dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:85:f0:db:bd:f7:ec:7f:d1:7a:e7:f8:f0:ed:
2e:50:5f:e7:08:90:eb:ca:24:e6:b6:00:0b:ab:78:
cd:b1:72:a4:58:09:74:88:69:d8:0e:62:bb:e6:d0:
fc:91:16:d6:f0:0f:00:9a:2c:35:4a:4a:9f:e2:4b:
5f:60:91:e8:e0:e8:0d:cf:7d:98:46:35:95:0e:de:
42:82:49:14:42:93:39:c5:b0:85:8e:2c:3e:53:5b:
be:bb:df:86:fd:e3:51:a1:50:c1:03:f7:6b:3d:4b:
dc:d1:03:f0:1f:77:d8:4e:ab:22:da:21:66:3a:fc:
09:8f:a3:a9:c3:bd:b1:b1:f3:bd:e0:83:b2:37:02:
f7:5e:65:7a:31:90:43:e0:b0:64:77:34:9c:79:a7:
e9:3e:9a:70:bf:21:16:2c:f5:8c:04:c2:47:10:94:
72:4c:fd:f2:43:a9:6f:02:83:4d:da:6b:f1:2d:dc:
93:f4:5d:ef:d7:bc:59:0c:de:57:91:9b:d7:24:ce:
88:5e:21:e6:25:87:1d:36:00:f4:c2:1b:0a:43:c8:
4a:10:98:c4:49:32:61:39:51:f2:52:1f:da:20:67:
4a:b8:38:9f:5c:b1:3b:48:d7:b7:ee:ed:ed:cd:fe:
b2:35:22:80:fa:06:d7:d7:98:fa:57:f7:86:4c:84:
d1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:A5:1C:7C:E3:8B:49:F4:97:74:E6:A3:1E:C9:D6:6B:68:F5:76:17
X509v3 Authority Key Identifier:
keyid:DA:5C:8F:27:28:40:8F:EE:F8:25:6E:20:38:8D:EB:96:01:E5:B5:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lyPJyhAj-74JW4gOI3rlgHltRA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/3A84FA5A01E711EDB2C82D0FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.227.156.0/22
Signature Algorithm: sha256WithRSAEncryption
17:52:61:00:d0:4b:1e:90:f5:c2:e0:1d:50:f8:6e:76:53:dc:
eb:19:13:4c:4d:e4:d8:22:f2:3a:b1:28:b7:e3:b1:7b:bf:dd:
f7:b6:bd:ec:76:0e:c9:65:8f:16:ff:22:e9:00:d9:09:f1:5a:
43:50:3b:c6:37:9c:e9:03:3a:9f:d6:eb:84:83:72:0c:21:0f:
e4:29:e4:33:fd:0e:5f:5c:8b:19:9a:9d:14:ca:05:56:c2:b1:
92:36:25:42:11:34:fa:87:3e:05:2d:f3:ba:0f:5d:c7:80:a3:
56:f4:b6:b4:90:ad:fc:f3:55:fb:5f:9f:2b:11:7e:72:ff:60:
68:7a:b3:06:6d:f5:f7:45:72:2d:d5:30:fe:c2:68:00:b6:6d:
0a:ca:9d:85:b5:30:9b:29:25:b7:74:50:26:7a:b9:02:19:ed:
19:22:b8:ed:d8:d2:6b:2d:1b:06:bb:80:df:12:b7:a3:67:6b:
25:02:2c:eb:c0:57:47:7f:e5:44:cb:1d:db:b0:52:40:2e:f8:
2e:f9:50:2f:4c:f7:50:57:fe:88:cd:6f:55:c6:7e:e6:21:67:
c6:55:60:17:7d:b5:4e:a5:2a:6d:8e:16:68:c4:68:14:0c:2e:
a6:25:5c:27:80:39:d7:44:da:ae:da:d4:cd:04:75:d5:48:e4:
74:d2:ad:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:17:24 2025 by rpki-client