Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/70209C04129A11EEA43CFD46C4F9AE02.roa
File: 70209C04129A11EEA43CFD46C4F9AE02.roa (raw, json)
Hash identifier: nqUdT8fSP64rZLSY1/wkpS2Yrj4Lt5FPiI2VaD7t1zs=
Subject key identifier: 32:49:99:6A:57:99:66:9E:4C:F6:B4:D0:53:B0:98:78:49:9B:E1:C5
Certificate issuer: /CN=A91415AA/serialNumber=16C01D9CA0FFBEFAE0BB010E5144507AEA410D03
Certificate serial: 06FD
Authority key identifier: 16:C0:1D:9C:A0:FF:BE:FA:E0:BB:01:0E:51:44:50:7A:EA:41:0D:03
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FsAdnKD_vvrguwEOUURQeupBDQM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/70209C04129A11EEA43CFD46C4F9AE02.roa
Signing time: Sat 24 Jun 2023 14:21:41 +0000
ROA not before: Sat 24 Jun 2023 14:21:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 150178
IP address blocks: 103.160.158.0/27 maxlen: 27
103.160.158.32/27 maxlen: 27
103.160.158.64/26 maxlen: 27
103.160.158.224/27 maxlen: 27
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1789 (0x6fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91415AA
Validity
Not Before: Jun 24 14:21:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6496fbf5-c77f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:cc:7a:0d:ab:da:d3:c0:5c:d9:59:c0:4b:8a:
dc:04:35:ff:6b:68:90:f9:81:76:e5:9f:e6:71:04:
b4:7f:7e:7a:c3:37:79:fd:e1:ea:bb:6f:ae:7d:48:
8a:cd:6c:af:38:2b:c8:a2:b2:42:4d:c3:cc:34:d8:
9d:87:fb:26:c9:4a:00:e1:ee:df:92:b6:bd:ac:c7:
0a:4d:0d:45:e4:1c:4b:45:68:af:f4:5d:ce:b3:05:
d1:fe:2d:4d:11:dd:63:52:36:1f:0a:bf:fb:f0:43:
df:db:15:37:d5:e7:41:59:3d:5c:2a:b7:59:9b:b4:
a5:01:d1:85:33:98:11:f3:5b:fe:de:16:32:05:99:
75:35:3d:0a:f8:02:7a:6b:c2:e3:29:80:35:43:89:
ea:27:b8:62:99:09:ee:1d:70:14:01:48:19:62:d2:
2f:0c:b1:48:a3:58:39:36:da:92:6f:6c:0b:f4:40:
db:f8:7a:b8:e2:ec:18:67:e3:20:e9:12:e6:04:39:
ed:e4:0f:7c:6e:69:d2:09:fb:e5:9e:1e:60:46:5f:
69:53:bf:d5:97:05:78:2c:a3:6f:a7:ca:22:7c:91:
a7:2f:4e:57:6d:0d:e2:fb:a7:39:a3:66:40:22:c7:
2f:db:9c:1a:87:e8:64:d3:6c:95:fe:2c:8d:79:e7:
07:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:49:99:6A:57:99:66:9E:4C:F6:B4:D0:53:B0:98:78:49:9B:E1:C5
X509v3 Authority Key Identifier:
keyid:16:C0:1D:9C:A0:FF:BE:FA:E0:BB:01:0E:51:44:50:7A:EA:41:0D:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/FsAdnKD_vvrguwEOUURQeupBDQM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FsAdnKD_vvrguwEOUURQeupBDQM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/70209C04129A11EEA43CFD46C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.158.0/25
103.160.158.224/27
Signature Algorithm: sha256WithRSAEncryption
71:7b:c7:7e:f2:2f:34:21:80:90:ff:fa:c3:6a:f1:3f:e7:34:
51:66:90:29:0f:9f:d7:b0:f6:e8:a7:6c:d3:10:29:87:db:99:
9b:62:b6:10:40:91:79:52:38:19:cb:9b:18:4a:28:29:13:28:
ea:c8:60:60:a3:a9:08:89:8e:06:1d:e1:9c:cf:2e:4f:ca:cf:
e7:d1:3b:13:d1:82:21:24:f7:8a:97:95:26:71:04:a7:31:e5:
fa:8f:e5:58:45:da:b5:37:6a:1d:05:1d:79:42:1c:88:75:ac:
78:82:16:69:93:b6:5b:e0:8b:f4:91:26:55:6f:09:4c:f8:01:
e5:c6:65:54:b4:c6:74:43:a3:d3:fb:5a:19:f0:0f:1d:50:42:
08:5c:6d:11:a9:69:56:aa:0b:d7:28:ad:c0:94:1b:cc:4d:c4:
05:7b:4a:c7:96:1d:28:39:c3:79:b1:19:fe:b5:32:b7:85:11:
90:6f:42:8b:cd:1e:69:cc:54:20:9a:4d:2a:63:1b:39:03:06:
96:a8:1d:a6:6f:50:aa:21:f9:c4:39:3e:56:00:93:84:2c:69:
77:d0:ba:9c:9c:ed:3c:a8:34:50:d3:89:51:1d:7b:a3:3f:b6:
56:fa:3e:b6:fd:6a:5e:b2:ff:f5:8d:f2:e9:c7:44:d9:6f:f8:
a8:99:83:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:43:46 2025 by rpki-client