Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/2ADC134C973F11EEA24DBE15C4F9AE02.roa
File: 2ADC134C973F11EEA24DBE15C4F9AE02.roa (raw, json)
Hash identifier: 8/z6rgF6teVFhicWWNTVjQYLZN9iyUUhAVzuykrg5Nc=
Subject key identifier: 16:C7:AB:ED:4E:3E:B9:25:84:28:84:DA:D6:76:6A:68:FE:6C:DC:B0
Certificate issuer: /CN=A91C7672/serialNumber=51569B48C03891454E469853A67DB909BEC2CAD6
Certificate serial: 1C07
Authority key identifier: 51:56:9B:48:C0:38:91:45:4E:46:98:53:A6:7D:B9:09:BE:C2:CA:D6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UVabSMA4kUVORphTpn25Cb7CytY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/2ADC134C973F11EEA24DBE15C4F9AE02.roa
Signing time: Fri 02 May 2025 16:24:39 +0000
ROA not before: Fri 02 May 2025 16:24:39 +0000
ROA not after: Tue 02 Sep 2025 00:00:00 +0000
asID: 135882
IP address blocks: 103.78.252.0/24 maxlen: 24
103.78.253.0/24 maxlen: 24
103.78.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7175 (0x1c07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C7672, serialNumber=51569B48C03891454E469853A67DB909BEC2CAD6
Validity
Not Before: May 2 16:24:39 2025 GMT
Not After : Sep 2 00:00:00 2025 GMT
Subject: CN=6814f1c7-3859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:03:d2:53:ad:83:08:75:4a:e8:c4:7e:c2:2e:
42:79:d6:55:7a:f3:bf:5a:49:73:22:37:19:e6:81:
e8:7e:57:ed:f5:5c:64:e4:60:e7:0f:c5:8e:66:ba:
c7:e0:e2:0e:ff:de:af:ee:29:3a:14:b1:b5:eb:86:
c6:c2:75:33:9b:8a:3b:3c:35:fc:88:ae:ac:87:42:
b0:34:aa:62:d1:ea:60:c6:10:05:0a:19:7a:63:11:
0d:9e:25:be:e2:c7:af:2c:7c:7d:8d:ec:e1:c1:6c:
1e:31:b8:1a:9d:b5:32:46:c9:27:e2:93:55:70:e6:
de:70:db:a8:cf:20:73:a6:0d:00:86:c6:84:f7:c7:
55:83:4c:22:e4:0c:44:a8:dc:aa:40:a7:97:76:02:
d4:2b:d8:df:56:61:9a:05:00:10:53:12:76:20:58:
6a:73:fd:e3:d2:2a:f3:ed:28:e8:1e:52:69:d6:00:
9e:b5:98:3d:58:d7:31:65:ea:9d:d3:f2:84:a6:9f:
04:3a:6f:2a:6f:ce:7a:25:1c:1e:f9:06:db:67:7c:
6f:89:31:a2:48:ca:2a:5b:42:fb:36:1b:c6:63:bc:
48:a7:2c:98:d9:be:be:0b:57:04:66:59:9b:78:17:
30:ed:0f:d4:92:bc:9e:20:ad:2d:07:d1:18:f6:3d:
cf:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:C7:AB:ED:4E:3E:B9:25:84:28:84:DA:D6:76:6A:68:FE:6C:DC:B0
X509v3 Authority Key Identifier:
keyid:51:56:9B:48:C0:38:91:45:4E:46:98:53:A6:7D:B9:09:BE:C2:CA:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/UVabSMA4kUVORphTpn25Cb7CytY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UVabSMA4kUVORphTpn25Cb7CytY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/2ADC134C973F11EEA24DBE15C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.78.252.0-103.78.254.255
Signature Algorithm: sha256WithRSAEncryption
7f:10:ce:50:01:72:44:87:93:bf:dd:8d:ed:52:76:20:16:a6:
35:bc:5b:b5:11:f3:5e:15:6d:dc:7d:6d:00:60:17:24:7f:fd:
c4:8a:6f:4d:1b:ec:aa:6e:a2:17:c0:a0:33:c7:59:bc:46:43:
3a:44:75:9c:88:b7:f7:4d:78:2e:d3:dd:4f:72:61:e3:d6:83:
fc:ea:92:2d:5f:9f:d2:f1:9c:70:42:f6:2f:41:3c:77:97:57:
27:2d:f0:00:ba:30:59:4d:15:e2:7c:12:f1:6b:0c:9c:dd:f0:
a4:f9:92:94:26:7d:0e:20:56:90:9f:e7:30:2a:40:18:73:60:
4d:89:0a:49:77:2f:4b:51:41:80:ba:e9:36:94:c4:90:9b:23:
29:21:91:f6:c7:09:f5:67:33:89:4b:a5:f8:3a:04:78:af:3c:
5d:12:d8:47:84:7f:88:a2:20:52:2b:99:fb:7f:d3:5c:7d:f2:
a9:af:0f:bc:3a:65:3d:a8:d6:ca:67:32:8e:a4:ae:2a:fa:89:
a4:1f:e1:0a:a5:8a:5b:ed:f2:a0:e8:3b:74:c3:af:c4:e9:68:
ad:6e:dd:cb:eb:90:eb:75:c7:b4:b0:2f:42:0d:42:72:de:ca:
f5:bd:80:df:a0:5f:6a:4a:f2:34:8a:c3:e4:5b:f0:1d:e0:5e:
33:b8:88:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 23:44:40 2025 by rpki-client