Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9136385/7B22C7424E1A11EE93DCD767C4F9AE02/557745EE4E1B11EEBA53316CC4F9AE02.roa
File: 557745EE4E1B11EEBA53316CC4F9AE02.roa (raw, json)
Hash identifier: kc35Syn08c4EtuwoQYpFr9xOBj5+HU59IWuBenhwr1A=
Subject key identifier: 14:CA:F9:CE:09:EE:60:C9:5E:A7:60:F9:79:81:DF:D5:C7:D8:79:35
Certificate issuer: /CN=A9136385/serialNumber=1B24895624C0F52D1A823B2F29DADC08E2A62661
Certificate serial: D2
Authority key identifier: 1B:24:89:56:24:C0:F5:2D:1A:82:3B:2F:29:DA:DC:08:E2:A6:26:61
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GySJViTA9S0agjsvKdrcCOKmJmE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9136385/7B22C7424E1A11EE93DCD767C4F9AE02/557745EE4E1B11EEBA53316CC4F9AE02.roa
Signing time: Tue 15 Oct 2024 04:28:55 +0000
ROA not before: Tue 15 Oct 2024 04:28:55 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 139515
IP address blocks: 103.71.108.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210 (0xd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9136385
Validity
Not Before: Oct 15 04:28:55 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=670def87-cf9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d1:f4:61:9b:89:ed:d8:c5:0b:7d:d2:db:32:
ab:53:a5:f7:6f:0a:de:c5:63:30:9a:81:b7:a1:82:
3a:7a:f5:1f:ae:95:1c:ef:7c:42:d6:ee:b1:bc:75:
8e:52:8d:48:c2:7a:fb:61:00:75:bb:2b:6c:44:82:
2c:87:e3:05:5b:f4:98:c2:08:8d:92:f8:c5:06:64:
15:45:3a:57:d9:93:a1:3c:8b:bd:e0:fe:86:57:a7:
f1:1b:8a:d7:b0:4c:8c:dc:58:0b:5e:0d:28:6d:04:
c7:85:51:51:5a:9e:ae:6c:d7:78:e1:1c:87:c2:e7:
33:19:10:44:2e:4a:c5:fb:d5:31:b0:dd:a7:a6:b7:
0d:37:c0:5e:a1:bf:ec:a6:8a:93:8b:4d:50:ca:8f:
26:a3:51:d6:de:e7:7c:a2:e8:37:f9:d2:90:9a:d4:
dc:15:af:cd:72:7f:77:c3:97:53:1a:c0:b3:4d:80:
c9:44:16:2d:86:eb:3c:9a:ea:61:cc:ea:59:18:34:
e5:d0:03:7b:31:c1:a5:12:4e:23:13:b5:8e:cb:81:
f4:71:89:f6:7e:22:89:50:bb:ca:18:73:c3:5a:10:
42:e4:cc:3a:21:32:9a:a5:b9:53:0c:1a:49:6f:03:
d5:3e:24:35:34:da:63:d4:98:c7:82:e2:71:1d:69:
a0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:CA:F9:CE:09:EE:60:C9:5E:A7:60:F9:79:81:DF:D5:C7:D8:79:35
X509v3 Authority Key Identifier:
keyid:1B:24:89:56:24:C0:F5:2D:1A:82:3B:2F:29:DA:DC:08:E2:A6:26:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9136385/7B22C7424E1A11EE93DCD767C4F9AE02/GySJViTA9S0agjsvKdrcCOKmJmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GySJViTA9S0agjsvKdrcCOKmJmE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136385/7B22C7424E1A11EE93DCD767C4F9AE02/557745EE4E1B11EEBA53316CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.71.108.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:13:f7:d4:a7:fc:c2:3f:29:40:99:34:c3:88:f3:41:6c:20:
80:77:39:2f:6d:22:9a:a0:45:50:22:d2:7c:9d:28:a5:a5:94:
0d:1f:9f:4d:3d:94:b3:47:b8:43:92:dd:71:7c:b2:83:fe:41:
b6:3c:64:66:22:1a:22:0d:bd:2e:bb:8f:e7:51:df:47:6e:c6:
be:e2:df:c6:e8:05:36:47:3c:1d:cf:69:66:1a:76:57:e9:2d:
16:13:0f:cb:08:cc:18:58:0f:0a:12:e6:5d:d7:d8:99:89:8b:
8d:4d:a9:e9:25:54:3e:71:86:c7:bd:7a:4f:8f:e0:bd:2e:01:
1e:1c:27:3f:63:0b:a9:da:eb:49:8f:8a:0b:83:07:94:78:64:
4f:32:95:66:7b:1b:d8:59:77:ff:e7:2b:65:96:3a:a6:ed:24:
4c:1c:be:d0:17:22:bc:68:2e:ad:fa:87:49:d6:84:c3:8e:9c:
8f:4a:ba:08:e0:d2:e1:ea:89:11:a2:1e:5a:5e:66:31:c8:16:
61:d2:82:ed:de:52:0e:92:fc:4e:35:48:38:83:ef:25:64:8b:
36:9e:4a:03:df:c2:69:95:f1:bd:91:82:69:10:cc:6c:58:f7:
03:63:17:ee:98:21:a4:eb:40:cd:d8:a6:5f:e8:b0:d9:82:de:
ce:df:ce:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:10:02 2025 by rpki-client