Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912A517/2B19FFB8F50011E8A93A8E63C4F9AE02/414227D6F03711EBB93D0345C4F9AE02.roa
File: 414227D6F03711EBB93D0345C4F9AE02.roa (raw, json)
Hash identifier: zcse+3V6ypo9qMai/JVipYWLsvmfpHazMGh7GCulYY0=
Subject key identifier: 24:B2:2C:ED:7F:FB:6B:02:97:D2:03:7B:7D:98:97:D0:27:89:E6:A7
Certificate issuer: /CN=A912A517/serialNumber=104113CE8F5E01751AF4D0F24968D83924A6C807
Certificate serial: 1191
Authority key identifier: 10:41:13:CE:8F:5E:01:75:1A:F4:D0:F2:49:68:D8:39:24:A6:C8:07
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEETzo9eAXUa9NDySWjYOSSmyAc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912A517/2B19FFB8F50011E8A93A8E63C4F9AE02/414227D6F03711EBB93D0345C4F9AE02.roa
Signing time: Thu 12 Dec 2024 17:35:31 +0000
ROA not before: Thu 12 Dec 2024 17:35:31 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 142602
IP address blocks: 103.26.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4497 (0x1191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912A517
Validity
Not Before: Dec 12 17:35:31 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=675b1ee3-3069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:49:b4:74:42:13:57:c4:a0:f3:53:e8:41:32:
3d:d3:33:05:39:12:5a:1c:ae:07:48:a0:73:de:b2:
a7:e1:48:cf:2d:79:07:51:21:3f:dc:cd:9b:88:4d:
83:c7:e7:1b:e3:bf:ec:ac:85:15:7a:c2:2e:6a:d0:
9e:8a:a7:1e:48:d8:b9:88:3a:ac:7e:5a:78:5a:18:
9c:b3:b0:f2:e6:e1:a1:ac:47:26:dc:67:af:be:20:
02:9b:56:39:ac:2a:4c:4d:42:ef:9d:62:37:90:28:
79:5e:af:05:02:60:56:00:e6:e6:76:82:fd:98:3f:
f5:43:c9:c7:0b:f3:9e:bb:c7:ed:b3:6a:6d:4f:2e:
32:d8:2d:a2:6d:39:19:0f:71:49:c1:a6:01:0e:74:
6f:a9:13:d2:20:7e:67:db:65:e6:d2:0b:ae:79:1a:
29:37:fd:51:66:13:99:64:49:60:d1:79:e8:72:3e:
f4:d9:49:cf:a5:92:f3:ba:8f:13:85:14:b6:9b:05:
4b:ca:b8:18:4d:4c:d8:84:87:f8:92:cd:42:e6:96:
c0:1a:c7:c9:43:bf:55:dc:8b:6f:f1:3a:46:61:40:
4f:a5:29:21:81:bd:a0:a5:f6:81:cf:a8:ae:70:1a:
61:eb:6c:31:ca:40:a6:43:ed:0a:30:01:69:cb:f9:
53:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:B2:2C:ED:7F:FB:6B:02:97:D2:03:7B:7D:98:97:D0:27:89:E6:A7
X509v3 Authority Key Identifier:
keyid:10:41:13:CE:8F:5E:01:75:1A:F4:D0:F2:49:68:D8:39:24:A6:C8:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912A517/2B19FFB8F50011E8A93A8E63C4F9AE02/EEETzo9eAXUa9NDySWjYOSSmyAc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEETzo9eAXUa9NDySWjYOSSmyAc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A517/2B19FFB8F50011E8A93A8E63C4F9AE02/414227D6F03711EBB93D0345C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.26.203.0/24
Signature Algorithm: sha256WithRSAEncryption
36:0d:98:f2:e0:40:85:5b:ed:4e:63:6c:55:1c:90:49:ad:56:
89:05:0d:7a:83:dc:eb:67:86:8d:83:09:d2:50:49:c2:25:98:
51:0c:63:67:c1:bf:3f:a6:b9:13:92:8a:a2:46:0c:b9:bc:09:
5e:b1:91:04:e1:b6:df:45:0f:8e:f2:b3:f1:15:34:d0:55:69:
31:b7:62:79:d4:9a:e4:05:7a:e9:f1:67:c4:15:0f:7d:e9:dd:
e7:2b:ca:8a:bd:d8:02:0b:52:b6:df:6a:90:e2:28:9f:82:b6:
f6:d5:70:f9:8b:f7:80:c4:3d:cc:87:ad:29:45:b4:b8:4b:65:
72:ff:07:3c:92:a0:b7:6f:6e:15:45:73:3a:21:e4:dd:e8:5b:
52:0d:d7:49:65:34:e7:4f:81:42:2b:4a:7a:d3:c9:36:f1:c7:
e6:db:9f:83:0d:e3:ce:ab:ea:68:82:ad:42:71:43:93:fc:d2:
98:84:6a:ae:8f:5d:72:36:d6:bb:1a:e7:e5:7f:1e:0a:ee:e8:
a3:13:41:9e:f7:68:01:6a:36:ac:57:16:76:7d:29:21:89:a1:
9b:57:d2:c7:e4:02:64:53:3a:ed:ba:6e:c5:ed:be:b9:09:f9:
cb:98:07:55:e7:db:dd:d3:67:74:a8:db:7a:a2:a6:da:90:87:
b6:38:eb:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:51:59 2025 by rpki-client