Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9136E69/DCFCB1C0537A11EE90D40B5CC4F9AE02/7ABDC516537B11EEBBB89E5DC4F9AE02.roa
File: 7ABDC516537B11EEBBB89E5DC4F9AE02.roa (raw, json)
Hash identifier: fQ0Wv2YD60Yo4ln05PtaRg2v4/R5zwKrC/7wYHWQM3c=
Subject key identifier: DF:67:C8:5F:BA:87:E2:A6:89:3B:49:E0:E5:AF:68:A8:B9:81:4F:3A
Certificate issuer: /CN=A9136E69/serialNumber=5D1E681F144C85E72675243A8047F809C634C7C1
Certificate serial: C7
Authority key identifier: 5D:1E:68:1F:14:4C:85:E7:26:75:24:3A:80:47:F8:09:C6:34:C7:C1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XR5oHxRMhecmdSQ6gEf4CcY0x8E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9136E69/DCFCB1C0537A11EE90D40B5CC4F9AE02/7ABDC516537B11EEBBB89E5DC4F9AE02.roa
Signing time: Sat 05 Oct 2024 04:38:28 +0000
ROA not before: Sat 05 Oct 2024 04:38:28 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 137829
IP address blocks: 103.218.176.0/23 maxlen: 24
2001:df2:ef40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199 (0xc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9136E69
Validity
Not Before: Oct 5 04:38:28 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=6700c2c4-fd1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:01:2a:d9:cd:97:8d:26:05:84:9f:8a:68:fe:
f0:3e:97:f5:4d:1c:4a:1b:32:06:97:ef:63:1a:ff:
49:cf:85:47:fa:f5:f1:88:e1:46:ee:b0:4c:97:f9:
19:8b:37:cd:1c:fc:bb:6b:4f:6d:f9:54:ad:22:03:
fc:86:71:f7:db:5f:03:0c:0f:f6:b8:9a:46:3e:10:
4f:ba:51:65:e1:ba:b9:d4:e6:d5:3c:1a:b5:60:d1:
2f:9f:5e:45:92:92:fb:6d:f2:0e:e6:fd:09:b3:0d:
53:f0:b1:f0:45:0d:4a:d1:0b:19:c0:97:86:68:82:
ab:d6:e1:db:c0:ce:c4:9b:76:cb:69:56:49:02:70:
d5:90:3b:45:b9:4d:bd:e1:c8:d6:88:c1:f8:e5:00:
24:c4:6c:16:53:cb:b9:85:af:85:7c:81:6a:9d:16:
f0:20:7a:59:30:4b:05:3b:04:46:50:53:4b:0c:21:
50:d7:de:91:48:81:c7:02:1b:1a:1a:b7:2a:ab:25:
4f:98:67:8f:43:b6:4c:a1:26:6d:12:29:64:67:4e:
a4:cf:13:4e:39:96:2b:89:e3:55:39:32:d7:80:a5:
3b:bd:1b:7d:f0:24:43:4f:1a:68:f7:4f:9f:9a:01:
a1:df:82:ae:a8:a2:d9:66:7f:35:c8:a8:50:ad:31:
2a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:67:C8:5F:BA:87:E2:A6:89:3B:49:E0:E5:AF:68:A8:B9:81:4F:3A
X509v3 Authority Key Identifier:
keyid:5D:1E:68:1F:14:4C:85:E7:26:75:24:3A:80:47:F8:09:C6:34:C7:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9136E69/DCFCB1C0537A11EE90D40B5CC4F9AE02/XR5oHxRMhecmdSQ6gEf4CcY0x8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XR5oHxRMhecmdSQ6gEf4CcY0x8E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136E69/DCFCB1C0537A11EE90D40B5CC4F9AE02/7ABDC516537B11EEBBB89E5DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.218.176.0/23
IPv6:
2001:df2:ef40::/48
Signature Algorithm: sha256WithRSAEncryption
95:bd:16:3d:f9:69:a3:5f:05:fc:23:d2:c6:2d:41:9e:01:04:
a2:99:4d:83:76:a5:e4:d7:5b:eb:49:33:99:0f:fb:54:cb:07:
d2:26:7d:c2:e0:97:5f:58:26:83:b9:7a:0e:d3:c5:d1:30:70:
f0:59:ef:fa:ec:48:89:e0:68:f5:6e:7f:6d:d2:c7:22:42:fa:
a1:dc:9d:76:8f:b0:db:c2:08:fe:6b:72:31:a4:d1:43:e5:30:
c0:4d:36:11:18:fa:73:05:88:43:81:20:26:5c:0e:95:07:84:
21:9e:5f:cb:9a:9a:4f:b0:5d:9f:34:30:aa:56:58:ed:6f:4d:
fa:ee:32:f2:c5:8e:4f:68:ce:90:67:2e:fc:84:61:d4:5a:29:
7f:93:f5:9a:88:e9:3e:94:d6:f4:e8:e8:91:79:82:d3:c3:27:
84:b0:51:79:b3:6c:95:ef:0b:68:5e:9b:0a:99:07:99:cd:ae:
64:b4:8a:03:6e:51:a7:0f:f8:89:9c:03:4e:f1:30:99:59:b2:
17:e7:d4:4c:da:29:ca:7f:67:85:5f:76:52:98:76:ff:e4:d7:
8a:65:bb:d8:a1:cb:66:c6:80:7a:ae:ca:75:24:91:f2:db:8c:
17:82:8d:ef:a6:5b:76:99:e3:f5:12:00:b1:cf:38:f7:d7:b2:
96:a9:ab:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 04:52:15 2025 by rpki-client