Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/907B9B20E8AD11EBAA895D0AC4F9AE02.roa
File: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (raw, json)
Hash identifier: Yy12wxP/cM0LLNtHiB2aLkhSaVEMx94WCa7jMCYf9WM=
Subject key identifier: E1:2D:02:D7:A8:7B:2C:91:B1:F7:F1:92:5A:1A:39:F0:DC:95:D0:F9
Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748
Certificate serial: 1D03
Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/907B9B20E8AD11EBAA895D0AC4F9AE02.roa
Signing time: Tue 18 Feb 2025 16:43:46 +0000
ROA not before: Tue 18 Feb 2025 16:43:46 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 45102
IP address blocks: 103.81.186.0/23 maxlen: 23
202.144.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7427 (0x1d03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917DBF2
Validity
Not Before: Feb 18 16:43:46 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67b4b8c1-21d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:04:1c:18:28:eb:d2:23:07:94:2d:c0:83:3b:
89:ff:75:e7:dc:44:7b:d8:6b:5b:1f:92:48:4f:1b:
8a:72:bb:60:fd:6b:9e:f1:31:7d:1d:70:a7:bf:8e:
ef:08:95:13:cb:9b:6a:04:db:fc:9d:a4:aa:de:03:
61:3b:54:1f:61:d9:9f:13:07:d0:fe:d3:c2:f9:cd:
43:5d:e3:8e:2a:0f:ff:25:5d:7a:96:b5:43:cf:3a:
76:bd:a1:69:51:2c:e8:5d:57:cf:ec:df:7f:68:b0:
79:33:51:e1:1e:09:9b:96:cc:f4:c7:c1:f5:8f:05:
67:fc:bd:b4:5c:1d:34:f0:09:24:ff:a8:aa:4a:0d:
69:20:0e:0d:96:eb:c2:3f:7a:41:35:f6:f0:9e:5a:
92:be:70:39:5b:4e:7c:5b:ac:a0:d7:a2:90:60:20:
d7:ee:cd:b9:9c:0c:f5:3d:08:ac:68:b9:6b:0b:86:
a9:f4:54:97:9f:fc:5b:9d:04:b8:fe:44:fd:74:b5:
79:cd:07:d5:6e:60:f6:5d:53:81:a2:2a:6b:68:7f:
28:40:cd:ee:17:6e:f5:ba:cc:02:ce:3e:f8:6b:54:
d5:af:68:a9:97:70:e8:92:d0:1f:ed:37:34:33:b3:
14:3b:27:8b:47:2d:03:15:ce:89:66:e7:16:9d:8d:
08:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:2D:02:D7:A8:7B:2C:91:B1:F7:F1:92:5A:1A:39:F0:DC:95:D0:F9
X509v3 Authority Key Identifier:
keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/907B9B20E8AD11EBAA895D0AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.81.186.0/23
202.144.199.0/24
Signature Algorithm: sha256WithRSAEncryption
27:35:5e:fb:93:6e:ad:46:3c:00:c5:13:2d:dd:eb:f9:9f:25:
86:db:79:cf:1e:3a:8d:a9:18:dd:06:8d:fa:c9:c5:49:b4:af:
d1:d7:ce:c3:db:c9:43:46:e9:e1:ce:31:74:29:fa:e8:c8:da:
57:da:45:10:1f:c9:8e:9b:6d:ca:dd:e2:6a:17:f8:96:66:58:
c7:5c:ff:8e:12:bc:8a:8b:4e:1f:a7:76:67:be:98:5d:82:f2:
fa:c9:d2:0d:00:e6:ac:11:ee:53:28:e5:e1:c5:a6:ef:ba:7c:
2b:a0:a5:1e:0e:70:d4:b7:2c:c1:a4:2a:36:36:ca:81:09:a4:
1b:8a:4c:16:16:27:00:55:10:65:29:40:c4:bd:18:84:01:0f:
96:35:1c:23:3d:47:36:ca:26:eb:22:a4:9e:5e:f9:c4:9b:e3:
34:5f:a6:1f:80:ca:15:8d:49:de:c3:6b:9c:f8:e0:c5:e1:02:
42:8b:38:7e:87:d3:80:e3:84:c0:d9:e9:3f:93:a3:ca:6d:70:
b0:17:d7:4c:40:e1:e8:c6:81:d9:66:23:16:59:b5:05:a1:0e:
78:4b:f6:48:d4:dd:69:8c:45:df:40:ad:1b:a9:62:12:5a:fe:
f3:5c:91:52:5a:99:2f:c9:05:31:e0:14:cb:b8:40:ee:fc:db:
d3:b9:64:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:09:25 2025 by rpki-client