Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/76CA0E007B7711E9B2348367C4F9AE02.roa
File: 76CA0E007B7711E9B2348367C4F9AE02.roa (raw, json)
Hash identifier: Aqjk/ey4kfQ9KmDeGfHlcEni3U1JZA62YkQHgWZ63GE=
Subject key identifier: 7A:D9:B2:B5:58:68:8A:6D:B4:41:CE:EF:B8:96:F9:4E:8B:EC:A1:17
Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7
Certificate serial: 34C8
Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/76CA0E007B7711E9B2348367C4F9AE02.roa
Signing time: Fri 24 Jan 2025 16:02:31 +0000
ROA not before: Fri 24 Jan 2025 16:02:31 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 36492
IP address blocks: 103.86.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13512 (0x34c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9186214
Validity
Not Before: Jan 24 16:02:31 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=6793b997-14a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9b:57:83:85:90:ff:2f:3d:03:ee:ad:8b:ba:
c6:40:9c:02:ec:65:2a:0d:fa:7a:28:46:bb:aa:20:
9c:81:d2:43:ca:0a:dd:85:7f:3f:2b:a5:df:93:ec:
5f:47:fd:ab:1d:78:c5:ab:b3:6b:02:f7:cc:91:d5:
4a:c6:1e:59:33:46:7d:f4:08:2b:13:88:55:df:00:
08:a2:22:b1:ee:e7:13:80:2e:e5:91:b6:8c:02:fa:
a0:56:14:4b:74:2e:2e:42:24:15:15:2c:a4:aa:dd:
88:97:37:46:ab:4e:ca:a2:58:11:48:fc:00:9c:9c:
0f:d4:91:e8:b9:84:42:76:bd:17:d7:51:29:80:2e:
04:5a:2e:55:19:da:d8:8d:eb:3d:19:1d:7d:3a:76:
0b:a7:28:15:c9:45:d9:c7:15:eb:4d:cd:b7:8e:74:
cb:c9:4a:23:5d:1e:29:19:8d:bd:b9:d6:57:65:e1:
97:a9:e5:59:1a:62:0a:b3:70:8d:31:25:fc:8e:db:
75:9b:9c:07:a1:fc:4e:36:36:9b:b1:1c:d5:5a:73:
f6:bb:b4:40:9e:91:34:25:c2:70:fc:57:9a:a3:a2:
b4:4d:c3:d5:13:7f:0d:18:24:76:7e:97:0e:2e:c1:
36:b0:5b:97:b6:da:2d:99:7a:20:91:48:73:be:9b:
d2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:D9:B2:B5:58:68:8A:6D:B4:41:CE:EF:B8:96:F9:4E:8B:EC:A1:17
X509v3 Authority Key Identifier:
keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/76CA0E007B7711E9B2348367C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.86.148.0/24
Signature Algorithm: sha256WithRSAEncryption
01:b2:3c:b4:f1:ee:d8:b0:18:f8:b1:f5:07:ba:1a:99:d0:2a:
31:09:e4:10:29:c5:69:4d:90:20:09:76:3e:6b:a7:a6:60:18:
1b:f7:61:af:f9:0e:66:50:eb:50:66:2f:2f:24:2d:66:1c:34:
8d:6a:34:95:00:0b:cb:55:73:f2:57:dc:0c:dc:3e:cf:9a:c6:
87:8d:ad:ad:cc:7a:8b:5f:d2:6c:be:ea:a9:20:72:f3:3b:65:
02:3b:5d:e6:16:73:a1:79:fe:30:1c:15:93:e5:ad:62:c7:00:
b9:e3:96:cb:c0:ce:c3:00:16:e6:da:ea:fb:4c:63:63:79:0d:
07:6a:5a:0c:1b:6b:00:3f:3a:a5:3d:b4:8a:ed:f4:d7:fb:5d:
75:dc:19:02:12:eb:3c:2d:60:73:9b:11:42:00:cf:1b:8c:1e:
e3:71:8c:fb:9d:52:1c:18:fd:26:11:51:43:b0:47:86:75:d7:
0a:93:91:88:42:81:ba:35:98:1d:23:da:08:17:2c:05:f4:99:
68:56:18:a9:d1:fd:32:38:3f:8f:47:a0:b6:d5:a3:ff:35:61:
a4:cb:a7:1a:cf:6a:96:37:2c:a1:b1:89:15:17:86:09:39:89:
e5:6e:1f:9e:46:d9:fa:c1:d0:8f:e3:56:16:6a:e8:a6:9a:62:
66:b0:0b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:17:17 2025 by rpki-client