Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91A/61E70D86161811EE80B9414EC4F9AE02/ADAEBBD6161F11EE9C6E4529C4F9AE02.roa
File: ADAEBBD6161F11EE9C6E4529C4F9AE02.roa (raw, json)
Hash identifier: ILJNwfctE8vz94dN4sqCXyGqVPp+jFILIkyEGBsl1xQ=
Subject key identifier: EF:38:D6:4A:85:C8:CB:94:53:48:4E:1A:A4:BF:B5:CC:32:24:85:4C
Certificate issuer: /CN=A913C91A/serialNumber=AB8789C70C742EAF959F46A1B974E5454C0AFFAF
Certificate serial: 012D
Authority key identifier: AB:87:89:C7:0C:74:2E:AF:95:9F:46:A1:B9:74:E5:45:4C:0A:FF:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q4eJxwx0Lq-Vn0ahuXTlRUwK_68.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913C91A/61E70D86161811EE80B9414EC4F9AE02/ADAEBBD6161F11EE9C6E4529C4F9AE02.roa
Signing time: Tue 17 Dec 2024 00:30:21 +0000
ROA not before: Tue 17 Dec 2024 00:30:21 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 24305
IP address blocks: 103.215.15.0/24 maxlen: 24
202.0.75.0/24 maxlen: 24
203.8.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 301 (0x12d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913C91A/serialNumber=AB8789C70C742EAF959F46A1B974E5454C0AFFAF
Validity
Not Before: Dec 17 00:30:21 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=6760c61c-b55e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d1:46:01:8d:fd:43:94:db:52:00:50:53:0b:
c4:a1:40:d3:fe:52:8f:03:a9:6a:2a:96:8a:ef:6a:
05:ab:40:e4:0c:22:e2:2d:02:71:a2:e3:3f:47:66:
6f:fe:e7:98:c6:19:9b:21:39:4c:70:bf:8a:74:62:
0a:ad:c3:bd:f6:70:0f:a0:8a:b0:db:1a:d4:f3:e3:
bc:29:46:c8:09:27:02:79:1a:d9:ca:63:f5:23:b7:
e1:83:e7:05:e5:0c:9c:02:54:70:9d:59:ba:bb:9b:
a8:19:a7:0a:87:6f:50:76:fb:d5:74:09:82:15:f2:
48:c1:86:80:df:8c:15:ab:59:23:59:67:87:0f:a9:
b1:5e:87:37:31:ca:1b:7e:48:19:ba:b9:78:90:48:
7d:d6:7b:e7:91:c3:ad:2e:58:18:92:17:0e:48:97:
db:45:3d:e4:02:ed:a1:a1:83:6c:4b:77:87:34:ba:
f1:d5:5c:e8:e7:38:85:33:f4:29:d7:c9:9f:6e:88:
8c:dc:c0:2d:67:b8:a9:f7:dd:0e:3b:80:59:3c:7f:
4f:5e:bb:1a:3c:71:11:f5:35:27:a5:8b:bc:f2:6f:
5b:d2:21:c9:e9:7d:85:07:4f:72:1e:c0:88:45:b6:
3b:94:f3:58:93:72:45:16:06:cf:c4:33:4e:c9:d7:
a8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:38:D6:4A:85:C8:CB:94:53:48:4E:1A:A4:BF:B5:CC:32:24:85:4C
X509v3 Authority Key Identifier:
keyid:AB:87:89:C7:0C:74:2E:AF:95:9F:46:A1:B9:74:E5:45:4C:0A:FF:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913C91A/61E70D86161811EE80B9414EC4F9AE02/q4eJxwx0Lq-Vn0ahuXTlRUwK_68.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q4eJxwx0Lq-Vn0ahuXTlRUwK_68.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91A/61E70D86161811EE80B9414EC4F9AE02/ADAEBBD6161F11EE9C6E4529C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.215.15.0/24
202.0.75.0/24
203.8.161.0/24
Signature Algorithm: sha256WithRSAEncryption
19:25:cc:2d:ab:39:34:76:00:71:fb:65:c9:b6:5f:bf:6a:fd:
dd:c8:de:65:df:85:52:aa:4f:9d:a4:1e:c6:33:07:ce:9b:91:
74:af:86:ee:31:ea:eb:7e:26:98:fb:97:18:ee:1a:1a:9a:e7:
10:26:9a:74:e2:b7:8e:59:e3:dd:34:fc:21:8a:cd:b1:28:88:
4e:80:8f:56:41:9b:9c:63:5a:b9:5c:91:b0:5a:b5:e0:48:14:
eb:9a:6d:af:7d:87:e3:5f:f3:4d:86:67:d3:4a:09:f0:1d:55:
c4:45:00:a5:a4:82:2c:89:4f:fb:94:ea:af:f8:5d:c4:fd:f5:
ba:c0:00:11:3a:e4:48:12:79:10:3c:9e:30:2f:d6:3c:cd:4d:
a5:44:26:e9:e3:8d:30:a0:65:68:16:bc:29:2d:71:e8:7c:da:
a4:8d:73:28:84:3e:d3:f9:05:82:94:de:29:93:f7:06:26:bf:
bc:3a:13:1b:b4:06:c6:2a:db:f3:cf:0a:8c:bf:b9:cd:65:e5:
e8:89:1f:77:bc:05:28:39:68:10:a9:fd:d9:55:40:89:e5:c9:
2e:cd:e7:e6:af:a2:a3:c2:5a:b4:02:23:49:e9:38:76:48:93:
4e:34:81:14:fe:07:c2:ee:21:6b:c4:4e:fd:ba:db:32:7a:f8:
ba:df:79:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 01:12:56 2025 by rpki-client