Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/E043A9A4B14511E5B83D2120C4F9AE02.roa
File: E043A9A4B14511E5B83D2120C4F9AE02.roa (raw, json)
Hash identifier: QfOFkTtfD/JlyUCDGr1ycwluY2IPcNmYuET79lfR5ic=
Subject key identifier: 3D:A1:13:1E:D1:3F:CF:5F:86:97:E8:FC:16:C2:F7:C0:01:96:50:87
Certificate issuer: /CN=A9179581/serialNumber=6478EE7115A3661B071BB9BA526E5073578B139C
Certificate serial: 2230
Authority key identifier: 64:78:EE:71:15:A3:66:1B:07:1B:B9:BA:52:6E:50:73:57:8B:13:9C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/E043A9A4B14511E5B83D2120C4F9AE02.roa
Signing time: Wed 08 May 2024 16:33:59 +0000
ROA not before: Wed 08 May 2024 16:33:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 134119
IP address blocks: 103.54.68.0/24 maxlen: 24
103.54.69.0/24 maxlen: 24
103.54.70.0/24 maxlen: 24
103.54.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8752 (0x2230)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9179581
Validity
Not Before: May 8 16:33:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=663ba977-caa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:cb:ea:ce:e9:b3:5d:41:07:a2:3c:97:06:74:
46:4a:80:60:56:92:2a:37:70:89:97:47:6f:ea:5e:
7f:25:07:dd:e4:5c:44:fe:ce:3a:3d:65:6f:a9:6d:
0b:22:ad:d3:e5:ce:5b:c6:8d:67:22:8b:03:c0:80:
e4:d2:a2:84:68:25:1c:2b:ea:4e:3b:00:8b:99:70:
26:b4:89:e8:b9:d5:1c:b1:c8:be:2b:f2:1e:06:56:
02:45:c5:5f:cd:aa:17:ee:2d:46:0b:3d:e8:2a:d6:
ce:40:da:42:e1:ad:a3:9b:15:6c:bc:f4:c1:1b:82:
b2:06:44:ac:b4:96:05:0e:0b:53:0c:db:ab:42:c7:
2f:8e:a6:3c:85:4f:27:09:d4:c5:88:83:e4:c3:c6:
41:1d:b2:ab:a0:dc:b9:b3:60:73:d1:33:17:15:9e:
f7:92:48:3d:0a:31:10:ac:4f:ed:d3:a0:e8:3e:3e:
d6:db:a9:a3:40:7f:f8:29:25:18:5f:0e:ce:c1:36:
7e:dc:ae:45:e8:97:c3:24:28:8b:9e:ae:0c:38:ca:
43:9c:4c:c7:f3:57:20:88:12:a2:9e:3e:e1:9d:42:
1a:8a:9a:b6:60:19:be:89:d2:99:57:43:8c:f0:f7:
ab:64:d0:86:75:f4:94:56:fe:6b:78:b2:c4:9a:62:
53:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A1:13:1E:D1:3F:CF:5F:86:97:E8:FC:16:C2:F7:C0:01:96:50:87
X509v3 Authority Key Identifier:
keyid:64:78:EE:71:15:A3:66:1B:07:1B:B9:BA:52:6E:50:73:57:8B:13:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/E043A9A4B14511E5B83D2120C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.54.68.0/22
Signature Algorithm: sha256WithRSAEncryption
11:9e:7b:e6:90:90:b0:84:ce:28:72:63:a0:1b:e8:33:ef:93:
ee:27:f0:60:a3:de:c6:b4:53:52:3b:4b:95:13:ca:9e:3c:d0:
3b:25:9e:b8:d0:83:ac:71:35:3f:2e:18:bc:ec:a1:f2:1f:b6:
8d:6c:af:54:c5:48:9b:c2:86:ca:0b:30:fa:f9:11:be:59:a0:
5e:7f:7f:ba:a9:fc:6f:9c:64:44:01:8a:0e:f4:f8:1b:ac:2e:
58:ba:a1:63:e5:81:e4:b0:99:a5:dc:64:65:45:14:50:4b:a5:
98:3f:aa:11:21:5c:32:44:d8:a8:31:58:88:e0:46:a5:f1:b7:
2b:aa:28:04:3d:3c:57:17:66:2d:74:a4:25:ce:9f:90:fb:5c:
3d:21:ef:92:c1:01:69:e0:2e:29:b8:c2:0d:a3:60:17:80:51:
b3:03:3c:85:8a:64:fd:a1:28:c4:47:1f:09:a4:54:f4:bb:32:
3b:47:5f:fb:55:dd:db:bf:c9:f8:aa:06:f3:54:a8:90:eb:cf:
1b:3c:f4:a2:75:8d:5c:e1:14:44:1e:2b:40:27:b9:b8:dc:0b:
33:04:55:64:91:8a:ef:8b:49:ad:72:4d:3a:fe:ad:65:bb:f6:
99:b4:b7:e5:b8:9f:c3:ac:b0:c6:b1:6f:74:d2:82:85:a5:ed:
e8:bc:56:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:00:20 2025 by rpki-client