Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B55C/E916D2EEF85C11ECAB6E2E65C4F9AE02/57BB8E50AF1D11EF9CB35387C4F9AE02.roa
File: 57BB8E50AF1D11EF9CB35387C4F9AE02.roa (raw, json)
Hash identifier: bzAyLuYRUMBSf4vl6Z05UJcWg+7dmLiTXnPYXge8oFY=
Subject key identifier: D9:B4:DE:89:55:BD:5D:73:44:F0:3C:E3:83:ED:77:0C:4E:D1:10:34
Certificate issuer: /CN=A911B55C/serialNumber=A1DA15BA2B3BB662A178E26D966815A22A2E4699
Certificate serial: 0264
Authority key identifier: A1:DA:15:BA:2B:3B:B6:62:A1:78:E2:6D:96:68:15:A2:2A:2E:46:99
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/odoVuis7tmKheOJtlmgVoiouRpk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911B55C/E916D2EEF85C11ECAB6E2E65C4F9AE02/57BB8E50AF1D11EF9CB35387C4F9AE02.roa
Signing time: Sat 30 Nov 2024 13:16:43 +0000
ROA not before: Sat 30 Nov 2024 13:16:43 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 149995
IP address blocks: 103.190.84.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 612 (0x264)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911B55C
Validity
Not Before: Nov 30 13:16:43 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=674b103b-270b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:99:5e:6d:df:d5:a1:ee:90:fa:b9:14:f6:0c:
1a:f5:8b:31:77:5b:22:ee:1d:dc:ce:f9:17:13:e2:
46:9d:18:bd:ad:ab:6b:ae:06:f5:26:3e:45:70:18:
9a:1d:57:f4:d3:c3:fc:31:b6:f3:6f:65:6f:38:08:
a5:8c:0f:a4:6b:36:28:e5:47:4f:2a:c9:73:8a:11:
01:bf:38:fb:1e:7a:a8:f1:d5:c0:43:a4:05:60:a4:
59:ee:a9:19:15:38:6c:28:69:ef:48:04:d5:d6:a6:
49:a3:62:f5:a0:2d:a5:dd:08:a0:66:ef:a7:2f:0d:
bb:ce:6c:ca:97:c7:a0:95:16:8f:4e:a0:88:b9:81:
b9:43:9b:44:ee:f4:94:be:ac:c0:89:53:3e:d8:de:
04:9d:89:a9:8e:d2:77:14:5d:cc:8c:d7:15:6f:70:
c5:e1:32:c9:fa:2f:84:de:41:f3:1c:3a:e3:e3:9b:
30:be:59:48:2d:2b:3c:32:d0:4c:11:9d:48:3c:1b:
91:24:fc:7f:3d:8d:a3:43:63:29:ea:14:25:e6:4c:
bc:30:1b:d1:a2:fb:ab:42:11:c9:54:4e:86:a3:df:
e4:ec:8b:4b:80:6f:d8:5f:00:e5:4d:9a:53:b7:4c:
75:3d:a1:32:22:10:f6:1b:99:53:aa:3f:c9:fd:ca:
93:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:B4:DE:89:55:BD:5D:73:44:F0:3C:E3:83:ED:77:0C:4E:D1:10:34
X509v3 Authority Key Identifier:
keyid:A1:DA:15:BA:2B:3B:B6:62:A1:78:E2:6D:96:68:15:A2:2A:2E:46:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911B55C/E916D2EEF85C11ECAB6E2E65C4F9AE02/odoVuis7tmKheOJtlmgVoiouRpk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/odoVuis7tmKheOJtlmgVoiouRpk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B55C/E916D2EEF85C11ECAB6E2E65C4F9AE02/57BB8E50AF1D11EF9CB35387C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.190.84.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:a3:63:6f:1a:57:1d:9f:64:66:38:d4:80:d6:f2:dc:c1:9f:
e4:1a:cd:4e:b0:ac:a5:3b:f6:95:77:15:70:6c:45:66:c0:85:
38:76:7c:3e:65:c4:bf:d0:3f:d7:6d:91:27:fb:b7:03:be:6b:
6a:fd:3c:34:8c:29:8d:fe:62:19:fa:2c:9a:a3:bf:56:09:20:
1b:0a:27:ad:bc:0e:f1:fd:74:c4:4c:6a:36:bc:60:ca:59:4e:
46:23:36:7c:4c:8f:51:94:05:f0:3d:92:66:f4:19:2f:cd:69:
1c:57:4b:91:0f:6e:1f:de:06:08:bf:07:2e:46:b7:86:55:16:
54:9f:2d:14:2f:a0:fe:e3:ea:8f:4d:52:45:4b:0b:b0:83:bb:
36:3e:cc:94:be:f7:ed:00:0c:5f:64:e3:e8:0e:c8:7f:a4:12:
b6:2d:e1:1d:0b:91:91:68:d1:dd:9c:17:4f:4e:b4:b0:7c:72:
5c:69:b4:8d:d9:8b:07:80:c2:01:0a:53:f3:cb:65:8b:62:83:
67:f6:fe:92:83:91:1c:d5:4b:71:d1:cf:e2:25:44:07:d8:6e:
b5:5f:55:d9:37:df:b5:d6:3e:c8:0e:f1:d0:dc:db:41:d8:57:
e1:bf:32:b5:33:af:3e:73:f5:9f:d8:79:c7:77:17:b1:b9:d0:
05:3e:33:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:50:39 2025 by rpki-client