Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/C001E5861FCC11EEB409C35EC4F9AE02.roa
File: C001E5861FCC11EEB409C35EC4F9AE02.roa (raw, json)
Hash identifier: HsjfDSOih06ECrmd3NlukL0cYpkEm4olWRK90K810ck=
Subject key identifier: FE:60:10:E9:A9:47:0A:05:06:17:10:7B:4D:AE:CD:B9:4C:C1:34:A4
Certificate issuer: /CN=A911F627/serialNumber=71173EDA7305CCFD10BD78D83A9330E8C7640DF6
Certificate serial: B9
Authority key identifier: 71:17:3E:DA:73:05:CC:FD:10:BD:78:D8:3A:93:30:E8:C7:64:0D:F6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRc-2nMFzP0QvXjYOpMw6MdkDfY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/C001E5861FCC11EEB409C35EC4F9AE02.roa
Signing time: Mon 01 Jul 2024 06:07:30 +0000
ROA not before: Mon 01 Jul 2024 06:07:30 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 151466
IP address blocks: 103.230.42.0/23 maxlen: 24
2001:df2:a140::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 185 (0xb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911F627
Validity
Not Before: Jul 1 06:07:30 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=668247a2-ba01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a2:da:23:ab:ae:e9:98:58:65:30:e3:7d:f6:
ca:2e:ab:5d:93:1d:be:92:31:d4:de:28:c9:2c:7a:
70:2c:f4:ca:d3:de:48:2e:72:68:83:75:cf:bd:da:
6a:22:b1:82:3f:fc:4e:a4:72:6e:ae:cd:1f:17:7f:
1b:40:42:ae:87:56:d1:86:a9:41:cc:f5:e9:6a:ba:
9d:4d:31:c3:04:76:1f:b7:60:a9:0f:45:46:e3:c2:
e3:49:52:ff:c9:8e:2a:2a:ab:b7:75:99:f3:9e:79:
a3:48:38:c2:ad:b5:33:09:75:c4:78:1a:1b:9d:4f:
51:fb:88:da:24:98:42:fb:cc:05:93:03:b1:f8:04:
7e:28:7b:5d:78:de:17:cb:93:db:5a:7d:a8:b6:a7:
11:b7:49:79:73:8e:c3:11:77:f5:b6:6b:92:ef:a9:
67:45:82:43:ed:4a:8a:93:fc:f7:ad:99:67:22:ed:
49:67:53:ac:e0:42:e5:8d:bb:50:43:a1:55:31:26:
68:62:85:2d:a5:5c:75:57:9c:54:6f:f2:8a:46:fd:
b8:04:b0:4c:f8:e6:82:8b:90:15:e0:f1:61:5d:02:
0b:e5:78:c8:a1:eb:31:7d:31:9c:bf:8d:1e:41:62:
53:67:f2:e0:18:7a:10:2a:bf:6d:b2:93:6f:04:83:
ef:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:60:10:E9:A9:47:0A:05:06:17:10:7B:4D:AE:CD:B9:4C:C1:34:A4
X509v3 Authority Key Identifier:
keyid:71:17:3E:DA:73:05:CC:FD:10:BD:78:D8:3A:93:30:E8:C7:64:0D:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/cRc-2nMFzP0QvXjYOpMw6MdkDfY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRc-2nMFzP0QvXjYOpMw6MdkDfY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/C001E5861FCC11EEB409C35EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.230.42.0/23
IPv6:
2001:df2:a140::/48
Signature Algorithm: sha256WithRSAEncryption
51:b4:59:9e:4f:77:fd:d4:dc:ab:18:28:16:86:ec:c2:97:5b:
69:11:f9:d7:fd:30:93:6d:de:a5:a4:d6:31:a4:76:65:b2:4c:
0e:f6:2a:c8:de:65:48:8a:be:34:a9:5d:96:e4:b5:af:07:11:
44:af:55:52:bd:b1:21:3d:95:6f:96:2f:9c:87:ec:c4:a1:8b:
28:0c:20:55:22:66:86:3b:7b:e4:da:34:a6:7d:7e:7e:45:10:
3e:ab:54:ab:1d:8e:cb:40:8f:a9:97:2a:29:b3:b6:5a:b1:6b:
2e:72:a2:d8:b7:4a:7f:69:81:3e:5c:1d:d5:09:8d:82:46:c9:
4d:ef:45:a9:40:53:9d:c0:a1:ee:6f:a8:6d:b6:0d:46:ee:08:
45:88:68:e8:dd:34:ba:e5:3d:91:e1:8e:e3:ca:e2:ef:4a:b1:
b9:7b:03:c3:70:c0:f3:cc:a6:9e:71:87:17:dd:55:12:89:07:
f1:07:a6:d2:ea:e1:03:d8:a2:6b:7c:e2:e7:4c:c5:11:d4:f8:
d2:f2:ba:34:99:01:56:a5:49:a2:be:a6:97:49:6c:88:67:d2:
98:c5:20:b8:2c:bc:ac:df:72:b5:d4:89:ab:99:f4:1d:c3:26:
c1:54:31:00:b3:c6:04:46:87:9d:2f:2d:37:00:2c:cd:f1:e8:
f5:1e:e5:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:00:31 2025 by rpki-client