Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/28382F96644E11EEA1DCB653C4F9AE02.roa
File: 28382F96644E11EEA1DCB653C4F9AE02.roa (raw, json)
Hash identifier: tkC94LIcazFbktBOOWxjViOTNkAmC8Zs4gf9iesOvuI=
Subject key identifier: 48:52:89:81:F0:90:5F:B9:C2:31:0A:28:F0:1F:7D:58:31:12:16:B7
Certificate issuer: /CN=A9132B7A/serialNumber=87BFEEC8FF9FB2688020DB59A622C13A15E5AF20
Certificate serial: E5
Authority key identifier: 87:BF:EE:C8:FF:9F:B2:68:80:20:DB:59:A6:22:C1:3A:15:E5:AF:20
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/28382F96644E11EEA1DCB653C4F9AE02.roa
Signing time: Sun 08 Dec 2024 08:17:15 +0000
ROA not before: Sun 08 Dec 2024 08:17:15 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 151845
IP address blocks: 103.249.112.0/23 maxlen: 24
2401:4260:1::/48 maxlen: 48
2401:4260:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229 (0xe5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9132B7A
Validity
Not Before: Dec 8 08:17:15 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=6755560a-e002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5a:46:12:1b:f9:d7:16:d7:e5:23:53:b8:46:
6a:65:de:20:7f:6c:55:f8:dc:a2:65:4d:15:03:01:
32:37:7b:c8:00:e2:b2:70:08:d4:63:5d:c6:13:f2:
46:c8:47:8a:7a:6c:fe:c2:e4:78:1b:9f:70:20:c6:
77:47:31:16:c1:39:57:4b:42:11:3f:b4:89:b7:87:
eb:44:dc:e4:4c:c7:f0:62:ab:b7:33:09:81:74:3f:
7c:db:1a:50:a6:3e:10:57:72:92:26:67:ea:ac:32:
59:c5:73:4d:29:62:cd:b1:b5:8b:ad:fd:c9:18:f2:
88:47:77:bc:f4:09:c5:1d:32:49:2c:98:e5:65:80:
a8:fd:05:5e:34:09:64:17:94:7c:0b:5f:16:11:dd:
e0:d7:50:98:5a:40:93:28:39:b7:ff:47:58:d2:8b:
e4:04:1b:9d:d9:12:dd:5c:b3:31:25:f2:40:1a:4d:
bd:00:11:6f:92:f4:d3:97:11:f3:e1:14:60:4e:97:
78:e0:a4:dc:ae:29:17:4c:88:39:3b:b9:68:d0:6d:
af:46:3c:16:e5:cd:fe:fc:8d:34:32:af:75:a7:cb:
4f:35:64:42:af:a0:18:2b:85:b7:1d:70:1d:82:1b:
a7:67:68:cb:31:11:73:47:95:af:e5:db:7a:c9:dd:
f3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:52:89:81:F0:90:5F:B9:C2:31:0A:28:F0:1F:7D:58:31:12:16:B7
X509v3 Authority Key Identifier:
keyid:87:BF:EE:C8:FF:9F:B2:68:80:20:DB:59:A6:22:C1:3A:15:E5:AF:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/28382F96644E11EEA1DCB653C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.249.112.0/23
IPv6:
2401:4260:1::-2401:4260:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a2:4e:89:6d:81:73:ec:e5:43:64:9e:fb:eb:70:c6:8b:80:28:
af:cd:f3:91:7d:df:77:06:17:cd:ea:29:3a:77:80:e2:8d:27:
74:9d:81:9f:8f:0c:f7:76:7e:b0:41:ec:ef:53:8a:f8:75:4a:
ca:24:3a:d1:1f:ae:30:46:f3:11:ec:c4:4a:9c:82:51:9c:45:
0f:3e:12:26:4d:ac:d9:ab:a4:63:48:87:62:09:e9:34:a9:a7:
fc:4e:77:c3:69:19:87:b5:a5:1b:47:0c:aa:46:ec:9b:0c:46:
b8:82:f5:3e:48:15:fc:fc:69:62:05:c6:81:81:fb:9b:ad:46:
5f:3a:06:a1:86:63:fd:89:40:10:f8:38:3a:4c:27:2a:d6:95:
c3:f2:14:b1:21:27:6a:1d:d6:9f:e2:1c:77:1a:82:bd:7f:da:
61:d1:86:ca:85:70:5e:ed:fc:89:d8:cd:48:76:0e:14:4c:5e:
5d:97:2e:9b:5c:f9:81:57:2b:cc:d7:c6:09:e5:6a:bb:61:20:
d6:d7:fd:6b:81:ae:be:af:c9:44:c9:e3:70:0d:a4:88:43:dd:
24:9a:fe:a8:d6:cf:28:fc:a3:60:67:4d:9a:c4:9e:30:0f:55:
b3:8e:35:a5:9b:12:fe:54:25:4d:80:04:b9:dd:48:64:f9:e6:
21:8e:6c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:13:53 2025 by rpki-client