Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/44FBB466A03911EC9AD2F840C4F9AE02.roa
File: 44FBB466A03911EC9AD2F840C4F9AE02.roa (raw, json)
Hash identifier: u8Y2qHn4dP492v5Q3muwggQyuBR/yx2lsL2jNNDR8KY=
Subject key identifier: 05:1C:70:41:72:A6:7D:D5:59:89:3E:A7:3B:F8:0D:82:DC:F3:3A:86
Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890
Certificate serial: 0331
Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/44FBB466A03911EC9AD2F840C4F9AE02.roa
Signing time: Fri 15 Nov 2024 00:43:31 +0000
ROA not before: Fri 15 Nov 2024 00:43:31 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 149173
IP address blocks: 103.177.206.0/24 maxlen: 24
103.177.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 817 (0x331)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9137B39
Validity
Not Before: Nov 15 00:43:31 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=67369932-e30c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5c:85:76:79:d3:0a:f7:27:61:7e:58:41:06:
b6:74:b5:40:54:c1:2d:84:99:d9:8e:ab:bc:1b:ef:
5e:84:3c:3d:37:89:ac:42:74:dc:50:82:69:67:d5:
c4:13:d0:64:44:3b:20:54:bd:2b:e5:03:78:4a:07:
fb:4f:cb:bf:57:01:b1:a7:aa:b0:e4:ce:f5:15:0f:
5d:e7:d0:b0:f5:25:1d:e4:cc:48:4e:69:19:c2:9b:
25:b1:88:f3:6e:17:ca:aa:4d:86:bd:8e:77:43:11:
95:c2:1f:1e:0d:25:af:1e:c1:a8:94:c2:4a:a8:15:
91:60:c4:dc:0a:2f:12:2d:db:c2:52:de:f5:c9:b8:
3b:e2:e8:5a:bc:a3:7f:30:57:e9:5e:6f:21:f8:fa:
d5:4e:fd:4d:30:04:3f:77:c2:cc:6c:b2:3b:06:4e:
1b:6d:68:1a:f6:fa:a8:03:72:17:6a:c3:46:5c:b4:
7e:12:37:49:c9:32:f7:0f:a6:38:b0:42:5a:94:48:
55:91:c5:f6:31:27:9c:46:8a:83:a2:39:ea:3b:cb:
d9:d2:53:d3:21:cc:8d:7a:39:f2:38:6c:e0:dd:a6:
bc:8d:17:b6:81:52:16:24:5b:61:9c:6c:fc:48:a7:
1b:35:51:74:6f:b2:86:7c:93:9e:e5:49:9b:6b:e9:
14:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:1C:70:41:72:A6:7D:D5:59:89:3E:A7:3B:F8:0D:82:DC:F3:3A:86
X509v3 Authority Key Identifier:
keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/44FBB466A03911EC9AD2F840C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.177.206.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:eb:fa:6a:88:4f:d5:96:8f:fe:35:17:bf:93:15:d4:96:c3:
43:79:79:b7:44:cf:26:51:a2:b8:d5:8d:db:ac:12:66:ca:1e:
60:2e:71:bf:86:bd:44:d5:b4:28:e1:fe:9e:b8:6d:de:5e:39:
d7:20:6f:37:6e:a0:e2:0c:bd:dc:79:29:7e:c2:00:c8:5e:07:
fd:d5:09:fc:06:47:a8:d3:da:24:a2:d2:11:0f:7f:6a:c0:31:
b3:5d:17:ce:a8:63:49:07:dc:b2:8b:6c:6c:f6:0b:dc:a3:e3:
e1:23:55:d8:72:77:76:89:32:a5:38:f1:a8:a0:90:42:26:f3:
46:aa:00:71:a1:0c:ed:49:33:ef:e6:64:ea:c1:82:7c:7d:d2:
39:05:1b:39:76:6a:d6:bb:b1:a4:08:cc:42:bd:f9:ea:ea:c3:
19:d2:ae:c1:d4:4f:62:36:96:48:be:6a:87:46:56:06:64:c0:
9b:c4:8d:0c:10:b1:5b:c0:42:59:5a:44:d2:9a:98:24:7d:9b:
6e:d9:34:3b:cc:a3:0a:88:11:b3:b6:dd:9f:db:d7:e2:86:d7:
4c:05:fc:8f:c3:14:f2:25:61:b9:11:20:de:bb:04:15:21:68:
04:b8:53:db:25:19:9f:67:d9:08:57:e8:d2:0a:a1:45:32:a8:
03:68:4c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:39:51 2025 by rpki-client