Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/823433125F0C11EC8C2C2820C4F9AE02.roa
File: 823433125F0C11EC8C2C2820C4F9AE02.roa (raw, json)
Hash identifier: SeaNTqd0MT2Mb0YJWYURazfx/oLk37QwRX3zpyKaSjw=
Subject key identifier: F6:AC:FC:D9:8C:33:97:1F:29:F3:E2:A5:FA:D7:71:CE:55:1D:2A:91
Certificate issuer: /CN=A9114D2E/serialNumber=E43C821FBB9CEEA67EBA7A2E505CC5DD7F766055
Certificate serial: 0A0A
Authority key identifier: E4:3C:82:1F:BB:9C:EE:A6:7E:BA:7A:2E:50:5C:C5:DD:7F:76:60:55
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DyCH7uc7qZ-unouUFzF3X92YFU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/823433125F0C11EC8C2C2820C4F9AE02.roa
Signing time: Thu 02 May 2024 21:09:44 +0000
ROA not before: Thu 02 May 2024 21:09:44 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 0
IP address blocks: 103.115.193.0/24 maxlen: 24
2001:de9:4000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2570 (0xa0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9114D2E
Validity
Not Before: May 2 21:09:44 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66340118-917e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:77:ff:be:f9:3d:b1:88:5c:73:27:08:fb:92:
c6:5f:5c:cd:a3:54:1e:00:bc:f7:7e:3e:dd:7c:a4:
b0:04:6d:55:b1:5e:a8:13:96:10:e2:9a:9f:bf:64:
c6:bb:65:00:f5:bd:57:9c:41:30:11:bb:4d:8d:8e:
33:16:98:9c:5c:af:66:c1:6b:e6:0e:dd:c3:9a:8c:
df:d0:63:0e:f1:21:53:0d:36:bc:18:a9:61:5a:8a:
54:d8:3e:68:77:3f:44:af:5e:fb:1c:45:35:78:ca:
fd:d1:bf:4d:79:2f:8a:ea:db:d2:ac:1c:dd:f9:76:
b0:7f:97:bf:7c:b4:c1:25:07:d3:cc:71:1d:9c:80:
1f:e9:f4:ab:ee:9e:0c:51:35:33:97:25:5d:f7:3f:
9e:b4:16:14:09:20:75:87:85:96:f1:2d:c8:23:56:
37:b6:6e:39:85:f4:7a:4e:00:85:f3:a4:46:18:5c:
0f:85:16:6c:aa:99:5e:ef:71:c9:a3:5d:78:6a:89:
e4:a0:17:e7:96:09:00:a9:04:3e:69:7c:d9:10:55:
76:ee:ab:63:c6:7d:44:2a:5b:9d:45:b9:ae:85:88:
68:bc:98:4c:96:4f:fd:a6:a6:e3:b4:9a:93:3b:2b:
0d:2d:94:64:7c:e7:cd:2c:d4:86:64:73:5a:bf:29:
55:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:AC:FC:D9:8C:33:97:1F:29:F3:E2:A5:FA:D7:71:CE:55:1D:2A:91
X509v3 Authority Key Identifier:
keyid:E4:3C:82:1F:BB:9C:EE:A6:7E:BA:7A:2E:50:5C:C5:DD:7F:76:60:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/5DyCH7uc7qZ-unouUFzF3X92YFU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DyCH7uc7qZ-unouUFzF3X92YFU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/823433125F0C11EC8C2C2820C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.115.193.0/24
IPv6:
2001:de9:4000::/48
Signature Algorithm: sha256WithRSAEncryption
a1:41:e3:68:d6:9c:43:eb:65:0b:65:d1:47:59:6e:36:d8:d1:
de:c1:26:2b:0b:87:0d:51:8e:57:22:36:54:78:83:af:f1:79:
9f:df:2b:43:8b:3c:8b:be:77:86:8e:4d:f8:cf:5c:0f:86:6e:
63:c6:33:04:04:73:12:75:13:31:57:5d:aa:82:fe:19:45:42:
b9:d5:de:fe:dc:1b:19:e4:6d:a0:33:be:d6:72:99:d8:84:6f:
bd:ea:ad:b0:0a:c3:a5:78:50:b0:f5:38:bb:d1:e8:0f:60:fd:
f6:a5:db:d7:25:f7:c5:14:8d:75:29:78:3c:9e:18:9d:77:d4:
e5:ea:65:dd:4b:a3:f3:21:e7:3c:1b:04:36:4f:c9:27:3c:e0:
1f:de:ca:c6:42:76:4d:f3:11:21:72:78:81:b4:86:6d:26:a8:
c5:07:99:7c:fa:f6:98:3a:89:62:72:df:8a:0a:3f:9d:f9:bf:
c4:8e:bc:8a:4e:d3:34:3d:c0:42:62:fe:9b:12:cd:fc:81:27:
ed:c0:26:bc:0a:ba:70:dd:3c:b0:d8:7b:76:81:2b:ca:91:ac:
a7:50:59:b3:fc:74:51:b1:c7:2b:ed:21:46:dd:bb:ec:fd:4e:
7f:51:d2:9f:3e:07:44:41:52:96:3f:37:d7:07:c8:b9:ca:eb:
e1:53:b0:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:19:21 2025 by rpki-client