Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91736B7/4054701A7B4B11EBA8B3523CC4F9AE02/006626AEDB1F11EB91006D71C4F9AE02.roa
File: 006626AEDB1F11EB91006D71C4F9AE02.roa (raw, json)
Hash identifier: 20i7SUN+ILtvpk7iV/YzHa7IC6zBka4WdUDNuP/C6/U=
Subject key identifier: 37:DF:0D:FC:87:7D:05:90:12:A1:37:C5:5A:E7:EC:07:52:EF:78:25
Certificate issuer: /CN=A91736B7/serialNumber=49EC39F91BC07EAF122AFAAA0BDB7B53D8810C07
Certificate serial: 062E
Authority key identifier: 49:EC:39:F9:1B:C0:7E:AF:12:2A:FA:AA:0B:DB:7B:53:D8:81:0C:07
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sew5-RvAfq8SKvqqC9t7U9iBDAc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91736B7/4054701A7B4B11EBA8B3523CC4F9AE02/006626AEDB1F11EB91006D71C4F9AE02.roa
Signing time: Wed 18 Dec 2024 22:41:45 +0000
ROA not before: Wed 18 Dec 2024 22:41:45 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 141004
IP address blocks: 103.145.50.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1582 (0x62e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91736B7
Validity
Not Before: Dec 18 22:41:45 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67634fa9-be5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4a:8a:d9:2c:30:98:8e:16:8a:4c:e3:df:eb:
28:c5:f1:56:8e:1a:3d:9e:c8:e1:23:9d:5d:37:9d:
7f:f3:29:bf:04:10:5a:b5:46:57:f8:1f:ab:01:f4:
ea:e7:33:8a:91:28:29:a3:88:03:fd:77:7d:e7:03:
a3:f8:44:1f:a2:37:69:b9:84:e2:79:37:ae:c5:a0:
77:2e:9c:4a:b1:33:bc:2b:58:e7:dd:60:71:1d:d2:
07:a5:e8:31:dc:94:cf:09:87:4f:1c:a7:f2:f4:3a:
0d:e8:3b:c3:b9:9b:69:39:3a:b7:34:49:67:95:56:
4c:e6:8f:c2:30:a8:c9:2a:b5:66:57:b5:2e:04:7c:
5c:df:76:7b:b8:af:8f:9b:e8:ad:13:ea:08:9d:d5:
45:b2:e9:ab:45:b4:59:62:a3:3c:31:51:b8:a9:24:
89:56:81:67:58:16:0d:58:b5:1b:1e:af:0a:5e:1e:
e5:48:95:c0:57:4b:03:7e:ca:50:31:82:40:5c:79:
22:6a:70:39:c4:63:5f:10:84:d2:51:51:5f:a0:7e:
93:90:3e:57:86:00:6b:a9:02:27:d9:a4:b9:35:fc:
bb:fe:5a:a7:a4:df:d2:0a:c8:8f:2a:3e:32:bc:b1:
cb:b5:a6:dd:c3:03:64:35:0c:79:54:14:40:e1:bb:
0b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DF:0D:FC:87:7D:05:90:12:A1:37:C5:5A:E7:EC:07:52:EF:78:25
X509v3 Authority Key Identifier:
keyid:49:EC:39:F9:1B:C0:7E:AF:12:2A:FA:AA:0B:DB:7B:53:D8:81:0C:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91736B7/4054701A7B4B11EBA8B3523CC4F9AE02/Sew5-RvAfq8SKvqqC9t7U9iBDAc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sew5-RvAfq8SKvqqC9t7U9iBDAc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736B7/4054701A7B4B11EBA8B3523CC4F9AE02/006626AEDB1F11EB91006D71C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.145.50.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:5e:82:4d:8e:82:18:6b:8b:36:05:d9:e3:68:30:e5:d7:1f:
07:1b:d5:8d:ad:2e:dd:2e:d6:f5:86:13:f5:01:3b:18:1f:39:
56:29:ab:41:ec:db:56:36:ec:d0:e7:99:21:f2:f7:ba:f2:22:
28:4c:72:0b:a1:5c:25:ff:92:b1:0e:62:47:e4:15:96:07:44:
a8:82:69:47:ea:28:55:77:54:b1:db:15:ef:9a:d1:3d:41:f1:
59:6e:d1:dc:ed:23:df:f6:66:53:97:b9:ef:ea:ce:97:5e:ec:
88:46:4f:bc:b1:71:d6:d9:50:6f:f6:5a:64:4c:a3:02:ac:d1:
13:e4:08:ed:97:72:7c:cc:d6:f1:f0:00:89:13:3c:e7:2b:b1:
d6:f2:f4:db:78:2a:04:41:3f:28:04:1a:85:b5:35:c0:98:5f:
99:06:e3:5f:0c:a8:e4:f9:1a:8a:af:af:25:91:60:0a:b4:69:
3f:2f:d9:cb:9b:3c:dc:27:96:d3:0e:80:90:f4:78:bf:75:32:
ca:f3:db:48:7d:b1:b7:42:c4:ba:30:30:7e:d6:74:cc:c6:67:
d4:a8:07:64:2c:7a:15:59:79:d5:af:cd:db:79:24:90:5b:47:
fd:e3:cd:51:40:0e:a2:24:48:00:28:b9:63:58:c7:d5:a3:ee:
d8:e1:17:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:34:24 2025 by rpki-client