Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155001/DD1CBD72603E11EF866FE83EC4F9AE02/9FB99556604111EFB4652062C4F9AE02.roa
File: 9FB99556604111EFB4652062C4F9AE02.roa (raw, json)
Hash identifier: gAXZmB2qUQ7sV8azWi6YJhPEFVxj4U+stV/Xuikiv/k=
Subject key identifier: 72:FB:49:11:A7:5C:0A:F0:23:06:79:B7:74:AF:C5:1C:F7:81:A3:2D
Certificate issuer: /CN=A9155001/serialNumber=565C8EC4E83447ECFFA69E1DEE1637C15F45A3FE
Certificate serial: 09
Authority key identifier: 56:5C:8E:C4:E8:34:47:EC:FF:A6:9E:1D:EE:16:37:C1:5F:45:A3:FE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VlyOxOg0R-z_pp4d7hY3wV9Fo_4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9155001/DD1CBD72603E11EF866FE83EC4F9AE02/9FB99556604111EFB4652062C4F9AE02.roa
Signing time: Thu 22 Aug 2024 05:02:21 +0000
ROA not before: Thu 22 Aug 2024 05:02:21 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 7545
IP address blocks: 103.65.233.0/24 maxlen: 24
103.220.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9155001
Validity
Not Before: Aug 22 05:02:21 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66c6c65d-2f3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fa:3a:9b:92:97:49:61:56:2b:8b:3c:f4:b0:
21:21:cb:36:c3:c8:86:df:78:58:2e:48:05:6b:2f:
35:54:fa:54:27:f5:f3:88:af:4c:2f:13:a6:9e:56:
9c:c1:19:d9:95:4d:53:4f:20:2c:3a:4f:6b:d9:1a:
c2:51:e4:a2:06:ca:c9:94:31:bf:7e:bb:1b:f7:47:
fd:5c:31:28:f7:3f:ad:68:ee:16:be:3d:90:d7:24:
11:eb:89:1c:51:42:f5:e8:a2:67:1b:e3:5e:a6:ad:
3b:de:9b:1d:19:46:fe:12:01:d7:34:88:e4:57:3e:
69:2e:96:bc:87:57:a4:a4:28:6f:ab:74:7d:bc:dc:
b3:a4:43:51:6c:0a:10:76:04:18:eb:1f:cf:3f:82:
71:79:70:be:72:d7:cb:c7:bd:13:7e:68:d4:5f:95:
b4:4a:84:72:6e:b6:47:c3:a8:cd:17:7b:2a:ed:de:
78:7d:d7:b6:23:93:3c:4f:ae:6a:8b:11:23:4d:2c:
8c:bf:83:aa:72:eb:f5:df:95:2e:a2:cf:f0:0e:0a:
9f:90:75:61:a5:c3:5f:09:e9:eb:a5:a6:78:63:3d:
b9:e3:4d:cf:45:b8:e3:fe:99:f8:60:2d:38:b2:4e:
e6:34:52:ad:87:e4:79:df:07:da:f8:0d:29:dd:21:
a1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:FB:49:11:A7:5C:0A:F0:23:06:79:B7:74:AF:C5:1C:F7:81:A3:2D
X509v3 Authority Key Identifier:
keyid:56:5C:8E:C4:E8:34:47:EC:FF:A6:9E:1D:EE:16:37:C1:5F:45:A3:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9155001/DD1CBD72603E11EF866FE83EC4F9AE02/VlyOxOg0R-z_pp4d7hY3wV9Fo_4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VlyOxOg0R-z_pp4d7hY3wV9Fo_4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155001/DD1CBD72603E11EF866FE83EC4F9AE02/9FB99556604111EFB4652062C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.65.233.0/24
103.220.46.0/24
Signature Algorithm: sha256WithRSAEncryption
31:13:ca:92:9b:65:d1:6e:d9:19:f0:18:e3:c2:69:33:13:6f:
e1:66:44:53:95:5a:75:0c:51:eb:4d:7c:3c:26:b3:ff:d2:78:
98:0e:38:5f:fb:59:9e:23:26:fb:d4:1a:49:6e:d5:d6:f3:9b:
d4:56:42:f0:88:82:53:4d:6b:fa:c0:af:78:ee:43:80:92:91:
04:d5:98:8b:5e:d1:42:ec:ab:bd:5e:b4:05:fa:f4:b1:82:eb:
76:17:c3:4e:09:3d:27:22:dd:84:22:f5:2f:b6:ac:71:33:24:
f7:a2:95:51:2a:f9:0d:b9:31:d6:8f:7c:a4:40:a5:fa:4b:a5:
86:ea:1c:65:d6:71:e8:56:ab:79:ee:b0:0b:39:d2:5f:5b:4c:
3f:a3:ee:b3:ad:52:b8:4f:96:2f:ca:19:38:7b:70:eb:84:d3:
d5:94:b3:58:77:35:e7:76:0e:c4:26:d1:11:81:28:47:8c:8a:
ab:84:39:da:96:22:9b:00:53:af:ca:71:9b:be:49:42:d6:fa:
6e:ad:eb:b1:44:f5:05:74:38:7f:55:29:18:4e:a2:34:90:b8:
dc:4d:b6:8d:f4:6b:84:80:99:6c:89:0c:98:13:53:02:54:16:
50:be:d1:1c:44:17:ac:e3:a5:b8:a5:39:c5:a1:5c:fa:d5:2a:
2d:2d:12:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:15:09 2025 by rpki-client