Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9113153/86077980ADB211E98DAEC479C4F9AE02/AE14DBAA997711EAB12AD74CC4F9AE02.roa
File: AE14DBAA997711EAB12AD74CC4F9AE02.roa (raw, json)
Hash identifier: xZ2PaQGP+pBdXoQTbN4GGQzo/uue2dUnNcJgd+re/CQ=
Subject key identifier: 00:A4:35:95:64:7D:B2:5C:70:EE:F1:15:DC:13:4F:B6:F5:2B:E8:CE
Certificate issuer: /CN=A9113153/serialNumber=48C27FFFB6424712FC6FC62871D536C531FEF19B
Certificate serial: 0D79
Authority key identifier: 48:C2:7F:FF:B6:42:47:12:FC:6F:C6:28:71:D5:36:C5:31:FE:F1:9B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SMJ__7ZCRxL8b8YocdU2xTH-8Zs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9113153/86077980ADB211E98DAEC479C4F9AE02/AE14DBAA997711EAB12AD74CC4F9AE02.roa
Signing time: Tue 06 Aug 2024 18:36:27 +0000
ROA not before: Tue 06 Aug 2024 18:36:27 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 134963
IP address blocks: 103.141.120.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3449 (0xd79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9113153
Validity
Not Before: Aug 6 18:36:27 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66b26d2b-0124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:42:21:83:87:7e:5f:9c:99:db:24:55:8f:11:
3b:0a:23:c5:55:6c:cb:e1:6d:43:dd:68:7d:5d:e7:
46:40:f1:1d:fb:65:f1:c4:f0:e7:f0:4e:4f:2d:0d:
d2:08:21:c9:cb:1c:43:5e:cd:fa:ab:32:36:d3:48:
92:9b:9a:9a:de:7f:70:40:67:34:74:6f:3a:d0:9f:
12:57:17:ad:10:4e:2c:f5:ef:76:60:3d:71:c1:d2:
cb:07:35:7b:c4:a3:16:95:c3:81:4d:02:aa:13:9f:
7f:4f:53:30:28:db:92:2e:45:a9:12:e0:ae:51:e2:
56:95:ec:c9:88:6e:a3:3f:e6:bc:b1:02:ae:c0:f1:
e4:08:f4:ae:e5:89:02:99:2a:74:38:b7:2e:4d:f9:
c4:1b:1c:e9:f6:ec:e2:89:a0:8c:4d:2a:d0:d8:c9:
b4:da:bd:e8:9e:49:4f:a8:8f:e1:56:46:c1:d8:3c:
57:ab:8f:24:ad:c8:07:89:df:9d:49:3a:0b:a5:f9:
f2:a1:ae:94:a1:04:66:d5:77:24:96:10:f8:6d:fa:
a6:66:99:64:25:71:05:ff:90:73:51:41:6a:8b:c8:
42:ac:9c:30:05:27:dd:7a:62:35:ff:4a:c3:e1:b4:
eb:58:c5:b4:65:8e:35:fd:6f:1f:5f:39:5d:8d:cd:
d7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A4:35:95:64:7D:B2:5C:70:EE:F1:15:DC:13:4F:B6:F5:2B:E8:CE
X509v3 Authority Key Identifier:
keyid:48:C2:7F:FF:B6:42:47:12:FC:6F:C6:28:71:D5:36:C5:31:FE:F1:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9113153/86077980ADB211E98DAEC479C4F9AE02/SMJ__7ZCRxL8b8YocdU2xTH-8Zs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SMJ__7ZCRxL8b8YocdU2xTH-8Zs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113153/86077980ADB211E98DAEC479C4F9AE02/AE14DBAA997711EAB12AD74CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.141.120.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:c6:fe:7f:1d:95:51:15:fc:b5:3c:e4:9d:d7:2d:85:3b:49:
93:a5:69:1f:2f:d9:d5:6a:49:1e:86:de:42:48:da:e8:9c:b1:
38:05:66:83:d8:33:a7:20:27:51:a1:f6:ea:ab:4a:14:54:3c:
d4:ea:33:ab:cd:fd:f3:be:9c:0b:00:2b:b5:7e:84:00:07:61:
8f:47:d6:9b:fa:71:b6:2e:13:85:3d:db:2b:64:58:86:c4:68:
25:37:f6:27:82:81:0d:bf:d1:9a:d3:f0:13:9e:92:6d:63:2d:
2f:fe:2f:df:0a:ab:b5:af:25:89:60:62:32:a8:ca:32:67:18:
89:6c:a9:eb:8d:97:8e:e1:df:01:12:fb:8d:9f:70:91:1c:ac:
62:c5:80:20:be:8d:d1:44:09:c3:80:ec:4f:3c:8b:59:e2:e0:
03:61:59:c1:0c:bc:b8:d8:5d:99:c1:86:3f:a4:53:55:83:a7:
2d:54:1a:b5:e3:e6:04:d6:ac:f5:d3:e5:b7:c1:f4:03:a1:c0:
9e:49:5c:0c:5a:65:af:de:bd:bc:ed:ea:f7:46:c8:b1:73:84:
0f:9e:8a:33:b2:78:82:49:1b:98:0b:d9:1a:0e:ba:e4:e3:3d:
2b:8f:61:31:7d:08:7d:e0:32:90:df:d4:00:59:9b:cf:3c:6a:
72:ad:10:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 20:09:03 2025 by rpki-client