Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/650CB2EE081C11EFA47C4687C4F9AE02.roa
File: 650CB2EE081C11EFA47C4687C4F9AE02.roa (raw, json)
Hash identifier: 0WQaR8S054hLwCn1MoV1G9i5V6cDOsk2ngljhs03hhU=
Subject key identifier: FC:4C:15:71:CC:DC:40:29:F9:AD:4A:FC:20:FA:5A:6E:04:33:80:77
Certificate issuer: /CN=A9122B0D/serialNumber=3E9358DCF2C53F6621052B3AA852454E2FB31C18
Certificate serial: 014D
Authority key identifier: 3E:93:58:DC:F2:C5:3F:66:21:05:2B:3A:A8:52:45:4E:2F:B3:1C:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PpNY3PLFP2YhBSs6qFJFTi-zHBg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/650CB2EE081C11EFA47C4687C4F9AE02.roa
Signing time: Sat 04 Jan 2025 06:31:58 +0000
ROA not before: Sat 04 Jan 2025 06:31:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 151054
IP address blocks: 103.121.184.0/24 maxlen: 24
2001:df3:bf40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 333 (0x14d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9122B0D/serialNumber=3E9358DCF2C53F6621052B3AA852454E2FB31C18
Validity
Not Before: Jan 4 06:31:58 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6778d5de-ac54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:fd:3c:1e:e6:d0:22:41:8c:43:fe:6f:be:05:
74:54:3d:f9:59:ce:18:dd:72:2b:87:22:9d:25:24:
d3:90:5f:0a:3b:f1:97:2f:cb:7d:e7:f6:65:48:1a:
39:ca:51:01:ea:ef:2f:a3:b1:66:0c:76:d1:ed:2a:
5c:05:3b:1d:21:7d:c0:59:f3:83:bb:13:ca:8d:07:
84:21:49:23:ac:31:53:29:71:30:87:47:fb:e3:95:
cf:27:31:ca:8c:28:53:c2:70:32:c8:b1:d1:a4:22:
24:a0:96:dd:ac:f5:97:9c:8d:68:e2:11:34:e4:68:
ec:ee:d4:9f:bd:db:22:28:a3:4b:5e:7b:e6:4d:72:
98:6a:6c:2e:54:60:c4:6a:49:76:55:fc:2f:37:21:
bc:1d:98:d0:86:c5:ef:8d:89:78:c6:d6:49:30:83:
e4:4d:35:0a:40:10:c4:f2:6b:01:c8:ce:62:c3:6e:
31:48:20:c3:1e:29:ee:8e:1b:49:7d:cc:a1:87:63:
97:72:e3:1c:f2:38:bb:f3:fa:24:1f:90:3d:67:ac:
75:cd:76:44:bb:51:79:90:54:db:b4:58:94:fb:26:
2d:13:93:ee:fe:5b:fb:c3:ed:f4:bd:02:26:65:fa:
85:91:10:3b:b3:b2:99:13:5f:7d:a1:51:11:97:07:
66:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:4C:15:71:CC:DC:40:29:F9:AD:4A:FC:20:FA:5A:6E:04:33:80:77
X509v3 Authority Key Identifier:
keyid:3E:93:58:DC:F2:C5:3F:66:21:05:2B:3A:A8:52:45:4E:2F:B3:1C:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/PpNY3PLFP2YhBSs6qFJFTi-zHBg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PpNY3PLFP2YhBSs6qFJFTi-zHBg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/650CB2EE081C11EFA47C4687C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.121.184.0/24
IPv6:
2001:df3:bf40::/48
Signature Algorithm: sha256WithRSAEncryption
30:54:6f:0d:90:99:a2:24:fe:01:e8:56:29:fc:28:fe:08:8e:
47:f4:db:05:9b:02:54:a6:ec:5b:17:54:1c:a5:67:24:f3:24:
ff:13:17:5a:f7:e0:5b:73:d2:61:b5:5f:34:04:67:71:0c:21:
4e:a5:14:22:d9:d1:ee:de:5d:8b:0c:0c:e1:b8:80:08:ce:41:
19:7c:1e:75:fa:39:bc:84:47:14:7f:5f:fe:f3:21:b8:fd:96:
c6:f9:a0:ab:59:aa:d4:1f:09:35:3e:1c:7e:19:a0:08:e7:f0:
26:4b:5b:99:19:71:8c:8f:6a:5b:85:98:59:5f:fd:54:35:d9:
67:d4:df:5e:da:a6:7c:7a:40:4c:05:be:5b:92:8c:a6:f7:12:
9c:0d:76:f2:89:d2:27:d0:c7:c8:b8:eb:1a:bc:b2:98:be:30:
ea:00:24:3c:f4:42:04:12:8b:ed:e6:75:76:99:0f:ae:b6:2e:
bd:f3:32:14:ca:0a:0f:7e:60:60:38:04:fc:b3:4f:a1:79:91:
04:43:c5:72:62:71:7f:0e:d6:f2:57:37:b7:2a:dc:40:7f:b1:
60:b4:92:bb:f6:01:0c:2a:cf:6f:9b:e5:d8:74:74:3f:8c:3c:
94:70:2f:62:0f:29:4c:63:58:c8:65:f7:9c:8b:b5:7f:0f:b4:
4b:71:84:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:43:06 2025 by rpki-client