Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/5056C8B2005611EFA54D6140C4F9AE02/47B1ABEA005711EF9DA70542C4F9AE02.roa
File: 47B1ABEA005711EF9DA70542C4F9AE02.roa (raw, json)
Hash identifier: GoylksPgamABprAXemlh5qC8IA2EnKvQRHTbupKYReA=
Subject key identifier: 42:9A:A7:C1:0C:D9:66:D8:72:69:82:5B:AA:1D:CA:53:D4:7E:F0:39
Certificate issuer: /CN=A915A0FB/serialNumber=6E4573348680326D3DADE985215D226628B9F16B
Certificate serial: 6D
Authority key identifier: 6E:45:73:34:86:80:32:6D:3D:AD:E9:85:21:5D:22:66:28:B9:F1:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkVzNIaAMm09remFIV0iZii58Ws.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915A0FB/5056C8B2005611EFA54D6140C4F9AE02/47B1ABEA005711EF9DA70542C4F9AE02.roa
Signing time: Tue 05 Nov 2024 04:57:51 +0000
ROA not before: Tue 05 Nov 2024 04:57:51 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 55720
IP address blocks: 103.175.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109 (0x6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915A0FB
Validity
Not Before: Nov 5 04:57:51 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=6729a5ce-001a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:0e:7b:e7:ed:2c:3a:5d:93:cd:9f:05:3a:f4:
e5:c9:86:95:13:4a:e8:01:1a:28:ab:e8:16:83:2f:
91:d6:78:6e:b2:b2:fb:33:5d:9d:fb:3b:b0:fb:30:
84:ba:6d:02:31:b6:c8:1c:a9:71:04:86:48:48:1d:
58:b1:44:4c:71:f8:d2:83:08:3e:ee:27:7b:00:e4:
54:5c:b4:b2:47:0e:5e:81:5a:40:7b:5c:e5:7d:c2:
a4:71:2e:dd:79:be:fd:f1:04:e5:a8:06:03:56:c4:
dc:1a:e4:07:e9:fe:42:25:1a:66:68:57:93:e4:97:
ab:db:b8:45:8d:c6:ba:b2:c6:f1:e4:46:23:e0:bf:
e1:2e:b8:68:f2:2b:bb:06:42:e1:54:87:15:79:b7:
36:b8:8c:7a:8a:e4:8e:84:d3:dc:1c:b8:be:f2:5d:
f5:e4:e7:32:04:7c:0c:cf:0f:cd:b1:44:57:9f:75:
5c:fe:29:a5:aa:db:64:1c:78:3e:42:12:08:6a:40:
41:a0:f6:52:26:af:9e:3f:0d:20:9e:29:b1:d8:66:
0a:67:38:01:8f:ef:3a:cb:93:41:9c:b6:e8:1a:bd:
74:76:1c:37:d4:eb:fa:ea:46:31:d2:a4:88:0b:89:
6b:42:e6:9d:aa:56:dc:29:32:62:27:1d:22:1e:ff:
e2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:9A:A7:C1:0C:D9:66:D8:72:69:82:5B:AA:1D:CA:53:D4:7E:F0:39
X509v3 Authority Key Identifier:
keyid:6E:45:73:34:86:80:32:6D:3D:AD:E9:85:21:5D:22:66:28:B9:F1:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915A0FB/5056C8B2005611EFA54D6140C4F9AE02/bkVzNIaAMm09remFIV0iZii58Ws.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkVzNIaAMm09remFIV0iZii58Ws.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/5056C8B2005611EFA54D6140C4F9AE02/47B1ABEA005711EF9DA70542C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.16.0/24
Signature Algorithm: sha256WithRSAEncryption
48:fe:46:50:53:d9:03:66:8b:14:e9:a0:c3:b3:3a:b1:f5:f3:
ca:d7:c8:9d:78:4a:b5:ed:9b:af:43:c5:0c:13:25:d0:2c:6b:
a9:bf:9d:35:f1:55:c3:7f:9f:f6:30:4d:b9:cf:3f:8a:9e:12:
29:8f:0e:ee:94:14:52:90:14:28:91:ce:17:a9:fe:74:0c:54:
c5:d2:85:c9:65:c7:1b:68:6c:55:b2:84:4b:a0:62:25:52:33:
2d:c9:43:a8:f1:ab:27:d4:8e:04:93:b5:ba:c7:f5:02:a0:45:
24:bd:73:e7:89:41:9e:84:ff:6d:22:39:cc:78:ef:9a:8d:d2:
6f:af:4d:6f:34:32:b5:e7:b2:05:32:38:ab:ca:bc:e9:21:26:
94:ac:81:fb:0c:0b:4c:07:e0:c6:0a:ec:00:a1:15:c8:58:ce:
55:65:ea:2b:d7:9b:eb:96:92:9c:a3:12:e7:96:db:0c:92:32:
4e:0e:27:89:79:dc:b5:85:1d:0b:3c:3f:52:ea:e6:56:4f:08:
eb:3e:e8:5f:cb:f1:9e:81:54:de:23:5c:e7:b9:12:6c:d4:15:
75:5b:1d:d1:10:20:c2:16:cc:6c:40:25:3c:00:fa:e7:d9:37:
b3:7b:3a:6a:50:bf:de:a7:52:28:a5:16:50:3f:7c:a9:88:fe:
77:b8:72:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:45:22 2025 by rpki-client