Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/FE32E0965F8E11EA935F3E69C4F9AE02.roa
File: FE32E0965F8E11EA935F3E69C4F9AE02.roa (raw, json)
Hash identifier: d+Wv9m/C3VN2mVgDQqfUIEcrhgDN8yDHTD/owFlOy7o=
Subject key identifier: A7:F9:E1:21:05:E9:50:F3:68:B1:80:5B:B6:80:5A:BE:EB:77:62:E2
Certificate issuer: /CN=A91559AC/serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821
Certificate serial: 0A38
Authority key identifier: 0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/FE32E0965F8E11EA935F3E69C4F9AE02.roa
Signing time: Tue 31 Dec 2024 19:58:12 +0000
ROA not before: Tue 31 Dec 2024 19:58:12 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 139755
IP address blocks: 103.144.160.0/24 maxlen: 24
103.144.161.0/24 maxlen: 24
2001:df1:cb80::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2616 (0xa38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91559AC
Validity
Not Before: Dec 31 19:58:12 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=67744cd4-9591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c5:4a:ac:94:c2:e9:c6:bc:d8:29:9b:c4:cb:
e8:6d:4a:c1:0f:a5:58:13:d0:ea:93:01:c1:95:ee:
bd:b3:29:a1:7a:8a:e4:d1:76:a3:c3:e1:b8:b0:78:
5e:24:30:66:a6:71:f2:73:f6:42:2c:88:6b:07:93:
76:c5:e5:bb:66:e9:ad:11:60:fc:4f:7d:87:ba:33:
3b:30:4c:0b:d0:de:2e:dc:44:8e:47:12:b8:1e:10:
d3:61:36:c1:04:bf:74:f7:6f:40:9f:14:fc:05:ac:
49:16:30:cc:6c:0f:8d:f8:01:b9:35:d5:f8:3c:34:
20:b0:c8:20:08:b7:a1:1b:a2:c8:8a:c0:72:1a:4c:
6e:ad:43:c7:db:ec:c1:44:4e:cd:3f:ed:82:c1:5c:
6f:44:a6:2f:aa:2a:d7:00:7b:89:0e:31:d5:07:7d:
bf:cc:bf:8b:e7:2a:c7:7d:83:9c:02:78:40:f8:c0:
b8:f7:00:cf:6c:75:f2:7f:8b:4d:12:18:4d:8e:53:
60:f5:19:2c:63:90:13:8f:9e:bf:06:af:f1:88:2b:
cf:d6:ac:cc:68:be:ce:7c:0e:d3:26:80:3d:36:21:
a9:2a:31:9f:6f:d0:34:6d:09:ca:99:9f:52:94:bb:
a3:c0:ff:dc:58:97:54:3e:85:37:35:0b:95:88:69:
c8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F9:E1:21:05:E9:50:F3:68:B1:80:5B:B6:80:5A:BE:EB:77:62:E2
X509v3 Authority Key Identifier:
keyid:0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/FE32E0965F8E11EA935F3E69C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.144.160.0/23
IPv6:
2001:df1:cb80::/48
Signature Algorithm: sha256WithRSAEncryption
05:c7:a6:84:d3:89:e2:9a:72:9a:a3:dc:9d:15:5f:10:69:eb:
1e:5d:47:51:93:09:4e:89:41:1e:8f:7b:71:37:0f:22:a3:b1:
9c:5c:ff:76:f3:12:aa:b0:73:ed:a6:7c:76:30:47:b7:bc:31:
04:5c:a0:7b:d8:c7:26:36:c8:6e:dc:f6:cb:c4:66:33:35:33:
d7:73:91:14:7c:75:71:38:db:ae:5f:ec:ee:e6:60:5a:b4:b5:
3b:72:04:bc:d9:41:e2:72:b5:0e:0a:2d:2e:8a:f3:7e:e3:94:
a4:ef:86:15:7e:9f:a6:19:de:28:8a:61:68:dd:b8:f1:0e:65:
03:a3:a1:d8:63:7f:76:5e:9b:2d:24:1b:83:7b:0d:91:de:b5:
2b:63:65:9b:32:e4:2e:f0:04:da:04:8a:77:76:25:37:31:ac:
36:9c:bc:5b:f6:7b:9d:8b:ce:61:ea:0c:b7:8a:cf:5e:30:4e:
49:49:8a:5d:dd:f3:31:74:62:78:07:49:b2:6b:04:b9:83:d9:
b4:9c:04:1e:79:c2:6a:63:bb:a8:9f:be:86:22:4a:6b:8e:a2:
db:09:3e:64:54:30:3b:a6:76:2b:ea:87:0b:6c:58:e2:cd:df:
13:b7:a2:08:c4:31:d7:56:4d:22:62:ff:cb:79:f1:2c:a5:a4:
3f:a1:ca:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 22:39:02 2025 by rpki-client