Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/980A0D7254B511EBAC30E864C4F9AE02.roa
File: 980A0D7254B511EBAC30E864C4F9AE02.roa (raw, json)
Hash identifier: PrgqmGPVCZutr73KuPF9z7k4L5rKkcCQ9HWUA608bqU=
Subject key identifier: 1F:B0:4B:56:AF:55:66:52:02:30:56:21:C9:5F:62:C2:4A:2B:DD:0B
Certificate issuer: /CN=A91167F7/serialNumber=44C0B3E55E8F4D58318605E721349C02B289C2FD
Certificate serial: 065F
Authority key identifier: 44:C0:B3:E5:5E:8F:4D:58:31:86:05:E7:21:34:9C:02:B2:89:C2:FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RMCz5V6PTVgxhgXnITScArKJwv0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/980A0D7254B511EBAC30E864C4F9AE02.roa
Signing time: Mon 30 Sep 2024 22:41:39 +0000
ROA not before: Mon 30 Sep 2024 22:41:39 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 137819
IP address blocks: 103.100.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1631 (0x65f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91167F7
Validity
Not Before: Sep 30 22:41:39 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66fb2923-32a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:aa:3e:42:f4:cf:ea:d1:20:5f:cd:31:58:58:
c0:f9:fd:1b:49:09:5d:63:1c:32:8f:04:7f:bc:96:
0f:f7:cb:d4:c7:b4:54:a1:35:39:7f:82:32:9b:7e:
47:45:e8:f5:93:cc:9d:65:16:1d:c9:13:29:5a:27:
7e:3f:d7:67:01:37:c5:d9:1e:ae:ce:d5:89:44:48:
7d:f0:b5:7d:e5:46:7e:c4:7e:b7:77:13:68:19:0a:
6e:b3:87:aa:bc:8b:51:81:58:2d:d2:a8:91:2b:73:
d3:1e:f3:b7:04:a7:ea:04:f4:52:9b:c7:70:93:1d:
91:6e:68:6b:24:c7:02:97:82:f4:06:ae:4b:fc:5b:
2f:2c:8e:78:fe:ba:7c:e2:39:a7:5a:c3:a2:49:4a:
df:b7:6f:d9:c7:b5:b7:f1:68:39:5a:db:8e:c5:3d:
38:ca:5e:9f:86:ea:6d:1d:d5:ea:eb:91:bb:69:f0:
fc:98:e2:df:ff:84:95:2e:4f:90:e5:22:e9:28:3b:
1d:f9:75:54:d4:ea:9b:3a:52:56:42:d9:cd:e5:e2:
26:e8:dd:f5:33:99:0e:12:f4:e7:45:c4:74:1a:68:
14:9d:c0:df:18:68:c4:56:57:75:53:9b:ea:1e:3c:
3e:4b:3b:6b:83:61:15:57:c3:0c:91:d2:7e:84:ff:
5c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:B0:4B:56:AF:55:66:52:02:30:56:21:C9:5F:62:C2:4A:2B:DD:0B
X509v3 Authority Key Identifier:
keyid:44:C0:B3:E5:5E:8F:4D:58:31:86:05:E7:21:34:9C:02:B2:89:C2:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RMCz5V6PTVgxhgXnITScArKJwv0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/980A0D7254B511EBAC30E864C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.75.0/24
Signature Algorithm: sha256WithRSAEncryption
84:53:d7:28:c6:f0:54:e5:ab:95:c4:20:cc:f3:9e:b2:45:f8:
85:08:0f:77:91:bf:a7:56:19:5c:a8:da:8f:33:8e:59:cd:83:
79:cc:21:3a:05:3f:d1:74:34:55:2a:1f:55:25:15:e1:58:b5:
e6:bc:2f:41:37:2c:98:a5:14:d5:42:9d:5c:db:f9:3e:04:39:
4c:fa:49:eb:ff:08:04:42:10:2b:2d:cd:8c:6c:f6:7f:25:e9:
94:67:64:9a:1a:4a:a8:17:b5:09:54:e9:74:67:a5:79:d6:e2:
d9:86:2e:a1:f2:7f:41:72:1d:0a:7b:6b:e0:87:16:93:c2:a8:
e0:fc:a3:74:ec:62:0e:3d:d7:1d:45:8b:80:92:27:5d:0f:30:
c9:ca:3d:e0:d9:88:bb:ed:bd:ac:21:29:1b:1d:0e:d8:13:dd:
ba:ec:ae:36:e2:f5:a9:54:d9:8c:04:fd:77:8c:6b:1f:bf:55:
52:e4:b9:52:37:ad:ac:dd:56:1b:6c:3f:52:74:b9:3a:da:61:
02:e3:7a:dc:ab:20:96:61:cc:3a:7f:10:9e:49:fd:16:04:72:
5d:de:32:c4:3c:98:d9:18:87:08:b9:e7:99:1e:01:c9:d8:85:
ff:47:08:05:6b:73:13:43:c5:bb:2b:c2:67:2a:c2:6e:6b:7e:
52:93:18:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:42:19 2025 by rpki-client