Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/F593443851B011ECB5188E24C4F9AE02.roa
File: F593443851B011ECB5188E24C4F9AE02.roa (raw, json)
Hash identifier: CA35rH85+j+YJMr1xe8QwPujExClO3AIGNQ5xuf0vDw=
Subject key identifier: 18:4F:9E:C0:93:7F:C9:87:3B:6A:DE:A9:75:67:FF:C8:F7:C4:46:A8
Certificate issuer: /CN=A916C4BC/serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B
Certificate serial: 040B
Authority key identifier: 4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/F593443851B011ECB5188E24C4F9AE02.roa
Signing time: Wed 25 Dec 2024 00:02:17 +0000
ROA not before: Wed 25 Dec 2024 00:02:17 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 149028
IP address blocks: 103.176.248.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1035 (0x40b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C4BC
Validity
Not Before: Dec 25 00:02:17 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=676b4b89-2486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:17:d3:dd:96:39:48:ce:3b:65:12:2c:9e:fb:
29:d6:eb:04:9b:6b:d3:d8:f3:d7:43:05:aa:48:19:
3c:71:59:d6:68:45:f3:01:18:e9:ea:0b:78:a6:47:
48:ad:cb:a1:1e:ef:78:9c:80:40:2e:b6:f1:59:64:
60:78:7c:36:e2:85:47:3e:9f:12:79:69:fe:0d:05:
f4:da:13:85:e3:9b:da:6f:6e:de:1a:81:b5:57:0d:
9f:e9:81:c7:c4:8c:2b:83:17:8a:8f:53:99:3e:ca:
15:c1:b7:63:24:4b:24:7e:04:1b:f3:34:34:4c:72:
8f:29:97:43:59:e2:a9:cd:38:94:5a:92:77:52:db:
26:7e:32:90:2d:62:d0:4b:dd:3a:ee:13:b5:dd:90:
2b:3c:84:38:8b:92:b7:e8:c7:48:d2:e4:19:e2:a3:
23:c2:7f:17:5e:0f:33:ea:c4:9b:b3:79:30:34:a6:
bf:25:ff:59:37:fd:62:98:46:e9:f9:b7:6d:6e:ad:
18:9c:d5:b2:3a:d9:a5:f5:59:a7:7b:5c:0b:91:78:
9b:ce:29:74:c2:36:3f:ae:d9:59:ad:11:d4:e1:d7:
6b:fe:62:dd:c6:e5:55:4c:34:4e:cf:a3:24:8c:63:
8a:14:88:11:ce:31:42:26:ae:5a:94:4b:62:fe:1e:
6d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4F:9E:C0:93:7F:C9:87:3B:6A:DE:A9:75:67:FF:C8:F7:C4:46:A8
X509v3 Authority Key Identifier:
keyid:4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/F593443851B011ECB5188E24C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.176.248.0/23
Signature Algorithm: sha256WithRSAEncryption
42:ed:d9:67:be:a1:c6:39:d3:a8:ac:5f:ce:15:f6:bf:d6:a1:
5c:a4:17:41:c6:e1:11:b8:54:1a:65:74:e3:19:ec:6d:73:0d:
2a:9c:4b:26:7f:e6:1c:f1:16:85:74:84:91:88:aa:0b:8e:fe:
a5:f4:6e:95:b8:e6:26:bb:49:6b:05:5b:08:c0:a6:19:31:8c:
a8:f5:2b:64:ac:63:59:72:60:b7:25:a7:1e:1d:7d:ee:b6:98:
5b:0d:ca:94:49:de:9e:62:9d:57:44:a3:41:35:1f:0a:1f:bc:
4f:9b:a5:97:5d:28:b6:43:23:8b:c5:0c:15:f7:9f:6b:22:e1:
6a:ab:e8:63:03:ce:07:96:43:da:d8:3e:f9:a4:9a:d0:db:aa:
39:04:1a:15:05:0f:b9:45:83:96:04:70:29:c3:33:dd:74:a9:
67:5f:cc:ee:c9:d9:64:9e:e3:9f:51:ec:ea:7d:82:80:d6:0e:
ce:d6:9a:34:a9:4f:c3:80:d7:c0:ef:aa:63:70:91:bb:28:68:
35:0a:48:47:b2:23:e5:f2:36:fc:25:59:0d:56:c7:4f:64:a9:
02:61:30:cb:8a:8a:98:c1:9b:3d:70:c0:3f:d1:53:4d:ad:fb:
0c:d7:b7:0d:06:b3:ee:93:25:4b:fc:70:ca:b8:37:c9:77:b5:
3a:ce:66:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 14:41:37 2025 by rpki-client