Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/07D38A6669C011EF90EADF5CC4F9AE02.roa
File: 07D38A6669C011EF90EADF5CC4F9AE02.roa (raw, json)
Hash identifier: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=
Subject key identifier: EF:9F:24:DF:E6:2C:50:55:4C:85:68:9A:6F:58:BD:10:CB:03:D6:4E
Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978
Certificate serial: 0391
Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/07D38A6669C011EF90EADF5CC4F9AE02.roa
Signing time: Thu 05 Dec 2024 01:15:16 +0000
ROA not before: Thu 05 Dec 2024 01:15:16 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 40065
IP address blocks: 103.103.245.0/24 maxlen: 24
103.235.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 913 (0x391)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916557B
Validity
Not Before: Dec 5 01:15:16 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=6750fea4-4ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b1:f7:98:86:3e:30:6a:eb:b8:8e:d5:55:d8:
a3:43:12:ea:bf:8c:c4:62:34:1e:49:ef:c2:62:4d:
20:be:c9:fd:01:f2:9f:6d:e8:59:cd:dd:bd:5d:60:
11:52:b2:33:28:d2:b3:35:73:66:3f:6f:0e:b9:db:
76:40:88:dc:11:27:48:9d:b4:c2:7e:c6:76:9b:a6:
d8:08:1a:db:a9:b9:48:60:de:d4:47:0a:3e:bf:87:
3b:ae:2f:e3:48:cb:70:9e:e5:e0:c4:9e:29:2a:b1:
f6:84:e1:9d:ec:23:7b:f7:bd:26:5a:81:43:e7:29:
3f:b9:b5:51:f6:45:c3:00:fa:40:35:82:8a:a7:5c:
76:0b:c6:7b:6a:d6:06:ba:3a:95:28:bf:1e:bf:3b:
f2:70:d8:67:44:44:28:63:12:38:ac:14:66:ea:4d:
e5:da:fc:cb:81:04:99:0d:bd:0a:7f:84:54:01:df:
9a:b8:91:94:02:40:0a:1e:e6:d2:36:75:bd:18:76:
b6:ac:15:e6:7e:32:0d:f6:1c:8b:81:6a:23:55:09:
cf:f1:fa:f1:37:fc:ca:f0:16:74:36:a3:35:2c:34:
bf:f0:30:09:46:fd:a5:0a:c1:90:63:69:ba:4c:d4:
5e:e2:d2:9a:a3:55:97:ed:fa:01:b4:e3:a0:e1:a9:
55:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:9F:24:DF:E6:2C:50:55:4C:85:68:9A:6F:58:BD:10:CB:03:D6:4E
X509v3 Authority Key Identifier:
keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/07D38A6669C011EF90EADF5CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.103.245.0/24
103.235.18.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:6b:c0:21:fc:6e:79:d5:db:02:ec:33:e6:cc:7a:6e:b3:e8:
e8:ab:05:34:e0:6b:a2:40:c0:e0:14:1b:92:88:a7:38:b5:98:
c4:15:23:e2:19:2f:97:e1:1b:3e:81:99:db:b7:73:fd:e8:45:
70:a3:21:89:f8:fc:a9:2d:64:e6:01:c5:18:c4:87:0c:74:d9:
c5:11:5b:e3:85:c0:ce:67:21:f8:b2:2b:ad:b4:a4:b0:96:48:
8e:b7:70:26:7a:9f:ed:89:39:55:78:7b:2b:85:42:df:51:57:
61:0b:2a:c1:75:06:77:a3:05:df:ac:5a:78:2a:d9:4c:3a:26:
e7:90:75:0c:2c:50:8d:bd:36:1b:09:19:36:f1:a3:fa:3d:63:
52:4f:b2:46:9f:c5:23:2c:90:21:37:50:a3:d1:6a:45:eb:7e:
23:73:19:4d:13:90:ee:1c:7f:3f:02:4c:8a:09:92:ce:fe:bb:
1f:85:25:45:0e:ae:d0:0f:25:a6:e8:e7:67:e6:f8:12:d3:9f:
59:98:39:19:30:8e:33:94:01:a7:09:89:e3:40:17:c1:4e:e1:
ae:84:c8:eb:a5:94:4a:57:dd:5e:1a:ce:d6:0a:c5:eb:e3:87:
86:d5:11:34:a3:73:5a:dd:9f:1c:53:c9:f1:80:be:23:7c:7d:
c1:9f:61:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:04:12 2025 by rpki-client