Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/B4961A7A5F9911EE8FA1D64AC4F9AE02.roa
File: B4961A7A5F9911EE8FA1D64AC4F9AE02.roa (raw, json)
Hash identifier: IYNo7n7duMkkS2cUgGEYYc8/JhVxgYOXYktaY4z2PJ8=
Subject key identifier: B5:2A:A7:45:C1:D0:B1:2A:37:52:F8:F8:B3:7C:BF:9B:70:17:27:54
Certificate issuer: /CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208
Certificate serial: 028A
Authority key identifier: 64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/B4961A7A5F9911EE8FA1D64AC4F9AE02.roa
Signing time: Sat 11 May 2024 04:10:39 +0000
ROA not before: Sat 11 May 2024 04:10:39 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 132422
IP address blocks: 103.215.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 650 (0x28a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91462B5
Validity
Not Before: May 11 04:10:39 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=663eefbf-07ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:80:e0:ab:99:66:1e:95:df:24:b4:e0:f0:71:
8c:2b:82:79:8f:13:1d:31:8f:1a:9b:05:c0:0d:48:
f1:13:c7:c5:4f:7f:1d:56:55:18:ad:84:0e:2e:45:
bb:69:0c:49:19:6a:e1:79:9a:7a:d0:b3:a0:19:52:
cd:ec:ff:55:8c:7f:76:45:29:53:8f:88:3e:ee:61:
28:e6:61:6a:e2:bc:ef:81:4b:a5:5f:ca:82:29:99:
79:04:c8:30:cc:f4:a9:8a:b0:8b:c2:7e:c0:16:54:
ee:01:93:fd:a4:01:61:7f:8f:2e:d6:51:37:8b:5e:
1f:e9:6a:86:59:19:2b:f0:b6:c2:c9:2b:bb:06:40:
a4:ee:1a:0e:09:7e:55:fb:e3:dd:9c:6b:dc:8f:04:
a6:bc:8d:66:56:9a:55:0c:ed:49:5d:f3:09:ba:29:
83:a2:bb:90:86:e3:6b:0c:7f:54:e3:2b:f0:75:b3:
cd:0b:51:ce:dd:24:c8:c6:87:58:89:b6:23:16:9b:
59:2e:82:74:6b:66:9c:68:7a:4b:74:ff:0d:d3:06:
64:72:9e:23:26:7b:1f:e1:a2:45:4c:8c:19:2e:64:
4a:82:8a:f8:9d:8c:92:8b:0f:dd:c0:e8:7d:9e:05:
ca:f3:53:1f:2f:52:4f:4b:f9:51:d0:45:1e:f6:eb:
f1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:2A:A7:45:C1:D0:B1:2A:37:52:F8:F8:B3:7C:BF:9B:70:17:27:54
X509v3 Authority Key Identifier:
keyid:64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/B4961A7A5F9911EE8FA1D64AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.215.124.0/24
Signature Algorithm: sha256WithRSAEncryption
39:af:0d:eb:89:99:4d:f3:0a:57:a1:fd:98:de:ac:f3:f9:be:
77:a0:c3:14:27:ec:7d:7d:13:55:da:84:f7:f8:e9:c9:6a:7d:
a2:f6:1f:78:7d:a3:15:de:3e:7d:8e:97:55:ec:9e:9c:aa:c4:
d3:eb:88:14:54:fd:75:58:7a:12:1e:fb:ab:cd:ae:6b:7c:88:
25:88:09:57:52:14:2c:c7:8a:29:7c:68:19:39:a8:bd:94:b9:
0f:7a:96:07:e5:39:82:cb:f4:5c:8f:ec:10:45:b9:9a:a5:5d:
ad:5a:2a:c9:7e:16:5b:88:5f:1b:76:46:b8:9b:7e:85:0c:2f:
e2:5d:74:9a:ab:58:c8:40:cd:0e:0b:59:93:70:96:42:f4:f4:
32:30:07:73:6d:8c:40:de:ba:5d:a1:da:a5:49:fb:d8:7d:b3:
4d:9b:83:d2:44:fe:c2:35:6c:6e:e9:2c:88:16:9a:1b:38:22:
e3:f4:77:8b:87:29:06:1d:74:38:2c:58:26:73:f1:ae:35:b7:
66:27:1c:43:e3:da:aa:18:ee:c8:dc:87:39:c4:9f:09:15:55:
94:7f:c7:13:59:8c:88:22:1a:c6:29:23:22:00:b6:f3:2f:90:
32:33:82:1c:ec:b1:8d:c3:28:23:28:c3:2e:a8:3e:7f:fa:01:
5e:f7:9b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:35:43 2025 by rpki-client