Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/EDBD93FE9E6F11EE85A6B84EC4F9AE02.roa
File: EDBD93FE9E6F11EE85A6B84EC4F9AE02.roa (raw, json)
Hash identifier: /DTvOzCxzqSPZ3Y9r1E+ZaauKupsblc8p2z5X3vzC38=
Subject key identifier: 84:6C:9B:48:DE:57:77:BF:C7:13:C3:FA:27:63:35:D0:FD:46:25:A0
Certificate issuer: /CN=A916BFAB/serialNumber=0583A85FE313FC0D6366E22C4466B293EAD45AE4
Certificate serial: DF
Authority key identifier: 05:83:A8:5F:E3:13:FC:0D:63:66:E2:2C:44:66:B2:93:EA:D4:5A:E4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYOoX-MT_A1jZuIsRGayk-rUWuQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/EDBD93FE9E6F11EE85A6B84EC4F9AE02.roa
Signing time: Tue 27 Aug 2024 05:19:21 +0000
ROA not before: Tue 27 Aug 2024 05:19:21 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 140594
IP address blocks: 103.251.254.0/24 maxlen: 24
103.251.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223 (0xdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916BFAB
Validity
Not Before: Aug 27 05:19:21 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66cd61d9-0b04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ac:3c:14:bd:ae:c3:55:d1:20:03:c1:19:dc:
a4:d1:1f:fb:8e:f5:5d:57:0e:d2:e0:70:97:83:76:
9e:f8:e1:5c:8c:04:b4:00:e8:1e:72:69:2a:71:aa:
0a:4a:77:95:3d:4c:db:ac:2b:54:11:de:ef:00:2e:
47:ba:29:47:a1:56:bf:58:f2:3d:51:94:cb:d1:a3:
f1:6f:58:4c:10:f1:20:43:21:87:a9:b0:17:1a:14:
74:d5:41:1f:45:70:be:47:60:18:0c:fc:e0:fe:16:
2a:f5:98:70:91:96:6e:d8:44:23:e0:2f:9c:ea:3c:
9a:3e:e6:32:ca:a3:77:ef:ee:df:bb:41:43:4a:90:
4c:b6:53:e8:b9:6a:80:ce:28:e6:bf:ac:f8:47:f4:
d2:b8:c9:a3:61:f0:f4:b4:2f:cc:be:c9:a7:08:d5:
e0:b8:b9:55:5d:23:73:59:6c:b3:92:14:6c:82:54:
ef:b5:34:f2:31:79:da:05:ec:45:6d:3d:79:83:a4:
b4:ac:11:5e:0a:35:2d:e0:d9:de:19:66:a7:8a:98:
85:99:00:ae:10:34:51:41:0c:6c:84:7d:23:e7:22:
23:f3:52:87:1f:49:b7:da:c6:4d:e8:f5:86:64:03:
6a:95:3d:c0:01:4c:a1:23:a6:70:b7:92:4b:0d:e0:
4a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:6C:9B:48:DE:57:77:BF:C7:13:C3:FA:27:63:35:D0:FD:46:25:A0
X509v3 Authority Key Identifier:
keyid:05:83:A8:5F:E3:13:FC:0D:63:66:E2:2C:44:66:B2:93:EA:D4:5A:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/BYOoX-MT_A1jZuIsRGayk-rUWuQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYOoX-MT_A1jZuIsRGayk-rUWuQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/EDBD93FE9E6F11EE85A6B84EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.251.254.0/23
Signature Algorithm: sha256WithRSAEncryption
51:4e:a4:c4:56:cb:89:75:cb:67:e2:b2:5f:90:5f:8b:21:1c:
9a:78:b4:04:26:78:aa:17:ce:71:b4:e9:ee:f5:0b:a9:ad:7a:
aa:66:04:21:8f:44:9b:ec:7c:a3:c6:18:88:a5:ac:35:08:60:
11:dd:b3:73:7d:d5:d9:54:2a:f9:fc:30:5d:5d:ab:f5:44:0d:
be:42:7e:93:e7:b2:59:97:cd:d1:25:9e:c7:b4:3d:3f:75:09:
4f:91:b3:29:53:a8:67:c4:46:52:68:8d:ad:d5:e7:95:54:02:
c6:26:30:e1:a1:e7:ce:2b:18:16:9a:a1:c6:d9:92:b8:5c:17:
40:d7:89:46:86:d8:f3:cc:81:38:d5:e0:28:16:6f:8c:60:96:
05:33:8b:0d:01:2d:76:42:c4:78:ff:8f:10:ad:7d:97:7b:1a:
4c:08:97:c0:fe:15:e6:46:10:98:a2:ad:11:e5:82:58:2f:92:
0f:01:2c:1b:47:3f:df:0d:0c:f3:90:6c:be:fe:95:e4:a3:46:
ef:91:39:7d:c1:f7:30:17:37:d2:1f:23:35:53:31:37:9d:10:
c8:a8:6d:a9:5b:17:dd:98:2d:80:3b:88:d7:8e:49:30:67:0b:
1a:fa:b3:48:dc:11:ea:9b:59:19:c5:68:3a:a0:f3:4d:33:85:
f5:6f:e0:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:29:19 2025 by rpki-client