Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/97EC93B821DA11EBAA441F75C4F9AE02.roa
File: 97EC93B821DA11EBAA441F75C4F9AE02.roa (raw, json)
Hash identifier: iJYPLuFQNCCH+UvB8S/XoN2BohnkZQZo7wuZ5vZn4KI=
Subject key identifier: 34:22:23:17:20:72:E0:00:37:1E:46:10:AB:2E:A6:BD:99:28:DA:AB
Certificate issuer: /CN=A915BFDA/serialNumber=5AC7615C459B7881037D75E5651A4CEC36F7EF91
Certificate serial: 0BE2
Authority key identifier: 5A:C7:61:5C:45:9B:78:81:03:7D:75:E5:65:1A:4C:EC:36:F7:EF:91
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/97EC93B821DA11EBAA441F75C4F9AE02.roa
Signing time: Mon 30 Dec 2024 18:47:25 +0000
ROA not before: Mon 30 Dec 2024 18:47:25 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 135386
IP address blocks: 103.145.38.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3042 (0xbe2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915BFDA
Validity
Not Before: Dec 30 18:47:25 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=6772eabd-7c05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fd:ad:f7:bd:d5:d3:35:20:91:70:ff:08:9e:
17:12:39:64:21:75:3e:80:bf:19:4f:f7:0a:46:78:
1e:ea:e0:ec:ad:38:24:e5:8e:8b:64:02:15:2b:15:
ae:e0:a6:35:8e:98:ef:70:f5:12:85:8f:a6:22:8f:
45:bc:8b:b8:d1:37:14:cc:9a:02:b3:6e:f7:da:7e:
12:4b:1f:04:ac:6d:f7:8f:fb:27:c1:0c:95:a6:ec:
ff:41:70:98:62:29:be:b2:c0:f5:dc:7b:5a:2f:81:
a7:cb:e6:77:b9:3e:a4:d1:fb:7e:1a:51:33:17:a2:
37:2e:5b:92:04:cf:c5:be:c1:51:58:2a:cd:dd:84:
11:1e:0e:72:44:1d:08:fb:f0:b2:08:32:d6:7e:7e:
eb:ac:84:38:e6:a5:dc:21:c7:d8:63:8c:96:b2:7c:
06:a5:c7:db:bc:be:1d:02:5d:9d:07:1a:a6:b8:ca:
61:de:ec:8f:98:20:b3:ec:67:1e:01:74:28:e4:74:
15:65:a5:09:be:60:b8:a8:aa:8b:07:6d:2a:51:c7:
bb:7e:b6:6e:6d:10:6c:94:4d:20:5c:73:23:97:74:
45:d0:3b:81:f9:d6:5c:56:0a:54:c3:02:f4:cd:f9:
a7:b9:db:87:71:3e:c5:06:31:e9:0d:41:fa:bf:cf:
e9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:22:23:17:20:72:E0:00:37:1E:46:10:AB:2E:A6:BD:99:28:DA:AB
X509v3 Authority Key Identifier:
keyid:5A:C7:61:5C:45:9B:78:81:03:7D:75:E5:65:1A:4C:EC:36:F7:EF:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/WsdhXEWbeIEDfXXlZRpM7Db375E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/97EC93B821DA11EBAA441F75C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.145.38.0/23
Signature Algorithm: sha256WithRSAEncryption
17:ed:30:9d:e1:ba:02:91:8d:e7:0a:ae:65:c2:d3:00:c1:78:
84:b1:15:d3:76:35:1d:63:9e:f4:13:a0:ae:43:0c:64:83:3f:
b8:5e:5c:ec:8d:3a:94:90:9f:69:93:15:19:a4:87:f3:e4:14:
0c:06:06:48:c6:e7:48:15:6c:81:b4:b1:80:b0:6d:6b:46:04:
8c:b0:0d:39:b2:51:dc:b7:0f:81:12:f1:49:17:74:eb:f6:74:
0c:94:0f:65:ed:9a:17:04:95:1c:d8:7a:0d:0d:61:c1:73:9c:
f5:f4:07:65:14:c6:f1:6b:62:ec:15:2d:df:27:f2:9e:43:db:
3a:e9:bd:f0:86:32:1c:28:9c:38:3d:35:5a:06:c7:c4:53:7b:
80:63:58:8c:fd:a3:58:b4:61:51:af:27:59:1a:12:8a:77:b9:
bc:4d:a0:77:84:7c:fa:5e:39:4d:d4:32:52:58:be:15:06:e0:
e2:0d:3c:ad:44:3d:c5:5a:19:ac:58:72:e7:14:b9:1b:93:80:
b8:2b:49:13:cc:15:00:c2:ac:21:4e:9b:a9:93:13:8d:c9:ff:
65:72:3f:a0:19:43:42:eb:9f:b1:b9:00:cb:03:a0:5a:7b:07:
7a:46:34:65:9b:0e:27:bc:3e:d2:a5:d9:97:47:f6:69:ee:e9:
84:67:54:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:14:33 2025 by rpki-client