Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/4A93DB1068F511EF8E131B43C4F9AE02.roa
File: 4A93DB1068F511EF8E131B43C4F9AE02.roa (raw, json)
Hash identifier: kqYwhkwqrnPwUBbzCMbRJ6+BU/s1Jp8YtMASUL3cC6Y=
Subject key identifier: 8F:DA:6F:11:66:BE:52:44:E0:65:B5:68:0A:ED:F0:76:A8:1E:30:2B
Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570
Certificate serial: 02E4
Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/4A93DB1068F511EF8E131B43C4F9AE02.roa
Signing time: Wed 27 Nov 2024 01:34:59 +0000
ROA not before: Wed 27 Nov 2024 01:34:59 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 141715
IP address blocks: 103.245.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 740 (0x2e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912442A
Validity
Not Before: Nov 27 01:34:59 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=67467742-a096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a9:35:8c:b5:1f:b4:0a:f8:6a:53:fc:c8:8e:
48:d4:40:7b:1a:31:97:ce:9c:59:ef:de:8c:8a:12:
1c:ea:46:9f:b0:e1:1a:74:85:71:1b:3d:0f:da:0a:
42:71:27:7a:be:5e:32:c3:c9:4f:a6:be:b3:d6:ba:
a0:b1:f2:8c:bd:b6:88:c6:c6:12:06:87:85:7f:1e:
7e:b7:70:87:c3:39:e9:88:69:ce:b5:74:31:72:99:
26:90:79:4f:1f:69:bb:50:4c:06:44:d0:71:a5:28:
7a:52:e8:3a:2d:fb:a2:c0:fa:06:27:9e:d4:0f:21:
79:48:7b:fa:2e:a9:a9:49:a2:82:65:c4:d2:9e:01:
72:31:3f:cc:5f:3e:9c:a5:d2:cd:3a:47:6d:16:69:
8a:47:2e:8c:df:1a:7e:a9:b6:77:51:b9:92:19:79:
d0:34:2e:ef:35:e6:cf:b7:a7:b8:4a:a7:d5:e2:78:
ec:5f:7a:ba:7b:a8:71:12:82:57:a1:78:87:26:a3:
ea:a8:89:84:04:82:ab:55:96:65:ae:df:56:e2:72:
2f:65:3d:54:15:e4:76:9c:1a:aa:55:56:34:b7:49:
03:c2:4a:8a:78:8c:c8:d8:20:55:9c:5a:79:5e:93:
c6:e3:94:b5:cf:2e:d8:9f:ad:07:ad:61:51:92:a2:
18:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:DA:6F:11:66:BE:52:44:E0:65:B5:68:0A:ED:F0:76:A8:1E:30:2B
X509v3 Authority Key Identifier:
keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/4A93DB1068F511EF8E131B43C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.245.112.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:14:fc:ea:f3:6f:31:05:0e:ab:e3:99:77:8d:50:0f:91:e9:
c8:ee:fc:d1:e3:4a:a0:05:2c:dc:91:4a:72:15:c7:5f:61:fe:
54:fd:23:35:de:f9:f6:28:30:50:ba:45:80:f7:ad:f4:3d:b7:
18:08:f7:b2:56:a4:89:23:f1:29:01:9e:bd:a0:d1:77:e8:a2:
2e:e3:81:f0:4c:1a:f4:4c:c0:fc:7d:0c:6e:ef:43:56:e2:41:
8a:6f:b1:77:70:92:be:6e:73:5a:99:39:dc:ce:38:58:67:59:
fb:1d:1a:c9:3d:0c:3f:79:64:c6:80:fb:88:84:24:f6:c0:09:
ec:ce:b9:fc:4b:54:60:ae:d6:0f:71:2b:36:b0:2b:b9:c9:af:
5f:3f:92:02:be:40:6b:13:2c:13:5d:f2:29:f9:fe:4d:32:36:
8d:06:a8:24:12:b4:8e:29:86:58:e0:6c:f1:a2:61:37:15:19:
c5:c8:0b:69:16:61:27:9a:12:22:33:23:1e:8d:b1:d6:8e:cc:
1d:21:6a:b1:d9:26:b2:e5:48:e8:02:61:a2:00:83:ff:9b:9a:
7e:fe:d8:70:46:98:f1:af:7c:65:03:62:33:76:23:e3:13:de:
a2:18:4c:27:02:28:fb:19:0b:5b:1d:48:9c:96:15:42:b1:bf:
b9:50:87:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:30:57 2025 by rpki-client