Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/05E078B2A5D211EDBC42DA12C4F9AE02.roa
File: 05E078B2A5D211EDBC42DA12C4F9AE02.roa (raw, json)
Hash identifier: 949cDrd9O3ejSTUuoxYP0yKZgFwRWnkdff/N9Ay5rNE=
Subject key identifier: 01:97:BE:85:A8:73:C2:0C:E1:37:18:DC:19:C6:1C:5F:69:4A:A2:C5
Certificate issuer: /CN=A91828F3/serialNumber=76661008DAC89284C537F2DCE0A920BA94E078CF
Certificate serial: 0158
Authority key identifier: 76:66:10:08:DA:C8:92:84:C5:37:F2:DC:E0:A9:20:BA:94:E0:78:CF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmYQCNrIkoTFN_Lc4KkgupTgeM8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/05E078B2A5D211EDBC42DA12C4F9AE02.roa
Signing time: Tue 03 Dec 2024 02:45:43 +0000
ROA not before: Tue 03 Dec 2024 02:45:43 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 150427
IP address blocks: 103.96.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 344 (0x158)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91828F3
Validity
Not Before: Dec 3 02:45:43 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=674e70d7-245d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b4:ca:aa:24:85:fc:ec:24:0f:48:82:0b:59:
90:c3:ec:88:f5:db:ad:4a:a9:19:61:0c:01:d3:14:
08:76:24:6e:e3:05:f1:2b:6c:72:b9:ad:ef:96:72:
25:fc:de:96:f4:b9:42:61:11:a0:b9:98:1d:9a:4d:
74:cf:53:fc:ae:33:03:7e:cb:dd:e7:b7:39:db:2f:
5a:66:00:c0:5f:f1:24:7c:95:c1:1f:45:bc:a7:6b:
b5:5c:83:bf:8d:5d:f4:d2:10:ce:0c:82:72:c1:d7:
d7:27:ed:f7:88:93:c0:cf:c7:74:85:3b:3c:a9:86:
c9:d4:e1:cf:db:aa:ef:5a:ad:2f:43:a1:95:c0:d8:
d0:17:03:d1:c5:b4:1a:79:4f:3c:c4:52:c8:67:c1:
43:d2:a1:10:99:a9:ec:d4:3d:8c:48:21:c1:77:1f:
18:41:af:ba:41:dd:c3:d5:19:1c:48:c3:59:f2:8c:
c4:87:8d:76:aa:65:d3:ee:83:27:bb:38:4d:09:43:
46:53:54:04:ba:9f:ba:38:60:17:2b:e7:8e:c9:09:
5b:5a:c7:4f:0d:dc:d2:cf:8e:8a:e8:11:46:96:1f:
1d:1c:7e:b6:ec:42:36:e6:11:3a:19:3b:a4:03:8a:
df:47:d2:ab:4e:af:86:29:91:8c:89:54:56:7b:5b:
ba:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:97:BE:85:A8:73:C2:0C:E1:37:18:DC:19:C6:1C:5F:69:4A:A2:C5
X509v3 Authority Key Identifier:
keyid:76:66:10:08:DA:C8:92:84:C5:37:F2:DC:E0:A9:20:BA:94:E0:78:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmYQCNrIkoTFN_Lc4KkgupTgeM8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/05E078B2A5D211EDBC42DA12C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.96.88.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:70:aa:fe:fa:93:3e:8c:58:94:93:e9:78:b5:17:bf:63:56:
4c:8d:d6:e8:ac:6b:9a:ab:f1:18:fd:ad:b3:97:ac:d7:49:c0:
63:43:9f:24:8c:7e:41:4b:9a:c3:28:dd:ba:17:3a:de:7c:a7:
95:9d:ed:0e:c6:ce:2b:50:94:a8:a7:d7:ba:c6:e0:00:e1:10:
00:16:63:36:15:3f:0a:62:00:a2:10:b8:31:02:a2:1d:d7:54:
ba:fe:40:ed:2b:14:6e:93:40:ff:ab:15:c0:15:a2:8f:d8:ab:
f3:4e:4d:56:d3:cb:87:99:d3:3c:3c:53:c7:6c:ec:93:57:3e:
bc:16:96:8b:6a:e9:20:7d:36:f7:6b:f6:63:26:dc:d1:32:d5:
fb:ba:98:f1:35:73:b6:c1:55:1a:c1:5f:11:59:81:9c:fd:ae:
7e:ee:14:05:96:32:2f:66:22:58:cf:cc:e4:46:d7:fb:e4:37:
8f:62:04:e8:1b:af:ee:29:e8:6c:86:1e:a3:51:58:e6:0c:eb:
1a:53:c2:31:3e:f8:45:2c:d2:8f:23:ea:91:4c:29:49:bd:9a:
d5:6a:14:fa:bc:4a:be:d1:e9:58:65:8f:5b:e9:f0:5c:33:85:
4b:fa:4b:01:90:63:84:a3:32:64:18:6c:35:6f:b8:7c:a8:d7:
8d:bc:4d:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:32:20 2025 by rpki-client