Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91206B5/0F5A014082F011EAAADA7354C4F9AE02/7F4DB79C82F211EAAC592A59C4F9AE02.roa
File: 7F4DB79C82F211EAAC592A59C4F9AE02.roa (raw, json)
Hash identifier: va8pqMs4sYFejLTjLiG9L4kNj9tDd61/iWoaglCLNt4=
Subject key identifier: CE:9B:E3:75:21:A7:5C:33:1E:C0:BB:B8:D8:CD:A8:DB:99:AD:14:5C
Certificate issuer: /CN=A91206B5/serialNumber=F3012CED1768DEAA64C4E936B86CB31E16CEFCBA
Certificate serial: 08E4
Authority key identifier: F3:01:2C:ED:17:68:DE:AA:64:C4:E9:36:B8:6C:B3:1E:16:CE:FC:BA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8wEs7Rdo3qpkxOk2uGyzHhbO_Lo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91206B5/0F5A014082F011EAAADA7354C4F9AE02/7F4DB79C82F211EAAC592A59C4F9AE02.roa
Signing time: Sat 30 Mar 2024 21:30:29 +0000
ROA not before: Sat 30 Mar 2024 21:30:29 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 133936
IP address blocks: 103.51.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2276 (0x8e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91206B5
Validity
Not Before: Mar 30 21:30:29 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=66088475-ee81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ff:63:6b:5e:fe:1b:81:1e:32:df:c9:ce:0b:
00:31:d3:58:8b:5e:09:5b:af:a3:a4:e4:43:c0:ab:
d0:fc:25:a2:dd:65:ab:6e:03:95:98:c2:5c:19:5d:
a8:d4:83:57:a6:1c:5e:c9:fb:fc:d5:24:5c:7a:9c:
fb:d5:a2:36:fe:d4:f7:f7:bd:39:b0:85:e9:75:c1:
bb:d7:fb:0c:af:95:9a:ca:85:a9:69:e7:8e:52:19:
e6:d7:c0:a9:74:c7:c8:51:22:28:33:44:fb:8b:85:
51:33:6f:a6:22:7f:32:a9:2f:43:27:14:8f:8a:66:
6d:99:ad:28:d3:9a:14:7d:fc:8d:fa:69:d6:a8:03:
a4:a4:69:b0:d2:11:08:be:0c:c9:0e:82:60:ec:98:
73:f1:5e:bd:ae:8c:4f:f4:c1:71:b8:b4:6d:f7:a9:
ca:30:2d:3d:d7:f2:94:7c:e7:1c:ee:fd:8d:53:0d:
b8:87:96:64:50:0b:71:17:75:8a:a1:75:9a:2e:7a:
e1:da:22:98:cb:c3:f3:a0:12:e5:d9:36:ed:ec:d5:
93:d9:de:8b:7d:21:a6:06:51:8f:a7:ab:9f:75:c8:
f1:a5:27:5e:5e:98:92:2a:e8:6b:0a:a9:10:76:ce:
40:c3:8c:6a:e8:a9:f8:11:f3:97:3b:40:11:f1:b3:
25:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:9B:E3:75:21:A7:5C:33:1E:C0:BB:B8:D8:CD:A8:DB:99:AD:14:5C
X509v3 Authority Key Identifier:
keyid:F3:01:2C:ED:17:68:DE:AA:64:C4:E9:36:B8:6C:B3:1E:16:CE:FC:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91206B5/0F5A014082F011EAAADA7354C4F9AE02/8wEs7Rdo3qpkxOk2uGyzHhbO_Lo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8wEs7Rdo3qpkxOk2uGyzHhbO_Lo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91206B5/0F5A014082F011EAAADA7354C4F9AE02/7F4DB79C82F211EAAC592A59C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.51.41.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:0a:13:fd:c1:a2:f3:43:11:96:7d:73:5e:a7:b2:84:f0:f7:
f9:d4:5e:3e:9d:5b:7d:f6:70:f4:e6:8a:b3:3e:0a:c1:fc:1a:
a1:80:9b:51:7d:fb:32:36:dd:f3:6e:f7:65:d6:b5:a5:39:eb:
cd:dc:6d:50:2b:59:7f:96:2c:07:4f:32:34:35:24:ce:8f:35:
9c:8e:54:9c:89:82:da:78:3c:ec:31:23:6a:09:6b:5f:f4:ea:
e6:ed:82:83:cd:f4:10:ef:54:28:d8:f5:77:ae:e1:c2:a2:b7:
24:0b:0b:59:79:69:27:91:be:e3:83:48:41:f5:a9:42:38:2d:
1b:56:d1:04:b9:8f:e0:aa:bb:12:e9:56:cd:ce:e2:21:94:b4:
ac:0d:d3:91:fc:a3:97:a3:de:1d:58:48:9e:b9:46:30:8d:d4:
56:35:df:0d:4c:72:09:6f:b2:fd:36:b2:57:ff:bc:6d:ad:ad:
f9:f7:59:10:2f:d6:f1:a6:ee:6f:f7:95:11:43:19:b9:6d:c2:
33:b0:39:26:44:e4:8a:b3:2a:8c:ee:05:50:5a:d4:74:42:44:
13:f0:ff:99:03:04:3f:55:07:d2:dd:91:19:01:e8:48:b8:51:
d8:9f:4c:e5:05:a6:28:80:60:89:e7:32:cc:b2:7f:43:5a:ee:
87:e8:3a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:48:03 2025 by rpki-client