Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A341/9A7EAC4A098F11ECA633E13BC4F9AE02/EF3517E8099311ECAD398842C4F9AE02.roa
File: EF3517E8099311ECAD398842C4F9AE02.roa (raw, json)
Hash identifier: 70nUVsPI/eDiHF1rN+y5OKRTGHTL9/bXu36vYcff6Yo=
Subject key identifier: AA:BE:84:3A:8D:96:B5:85:D5:80:09:B2:94:34:FA:C3:1A:BE:51:57
Certificate issuer: /CN=A918A341/serialNumber=4722165A290C0FADB038E8CD2C63AEC71E8F83EC
Certificate serial: 0497
Authority key identifier: 47:22:16:5A:29:0C:0F:AD:B0:38:E8:CD:2C:63:AE:C7:1E:8F:83:EC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RyIWWikMD62wOOjNLGOuxx6Pg-w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918A341/9A7EAC4A098F11ECA633E13BC4F9AE02/EF3517E8099311ECAD398842C4F9AE02.roa
Signing time: Tue 08 Oct 2024 23:53:07 +0000
ROA not before: Tue 08 Oct 2024 23:53:07 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 142644
IP address blocks: 103.171.212.0/24 maxlen: 24
103.171.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1175 (0x497)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918A341
Validity
Not Before: Oct 8 23:53:07 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=6705c5e3-7fec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f6:21:7c:b5:fb:35:2f:e6:7f:45:7b:61:c1:
84:cd:b3:b2:67:2b:2e:ca:5a:c3:37:7e:ba:44:94:
47:88:02:c3:01:35:5d:03:cb:dd:de:cf:f0:06:cc:
9d:08:7c:91:78:23:d2:76:31:ff:e6:ae:f2:d1:c1:
a3:cf:3e:a7:f5:0a:d5:2d:a0:61:5d:36:06:b2:e2:
06:26:2d:59:f9:16:0a:02:62:ce:57:16:8b:1d:ef:
f5:f2:ed:f6:76:54:6a:71:73:f1:fa:24:23:2f:45:
53:5e:df:af:03:a4:5a:64:18:42:39:4b:df:e8:29:
93:6e:d3:0e:7f:bc:48:84:f2:86:6f:cd:fb:71:80:
62:37:8e:2b:be:84:9f:50:59:43:3b:63:f7:74:bf:
69:84:58:90:05:3c:0f:64:6d:70:d1:51:a9:5a:8b:
3d:c6:1e:66:37:1b:24:f2:a9:95:1d:1e:fa:27:4e:
55:61:50:8e:af:1a:ba:f5:9c:5f:c6:4e:cb:f2:47:
7c:51:50:ab:f6:cb:ac:65:6d:eb:55:d0:aa:f9:da:
b6:9d:d0:c8:a5:0d:31:65:3f:09:4d:da:a5:e9:8a:
1a:23:4b:0f:77:91:18:76:bf:5f:02:db:43:2f:73:
b7:c5:c3:32:eb:43:ea:35:74:f1:f4:25:b6:d4:d2:
f0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:BE:84:3A:8D:96:B5:85:D5:80:09:B2:94:34:FA:C3:1A:BE:51:57
X509v3 Authority Key Identifier:
keyid:47:22:16:5A:29:0C:0F:AD:B0:38:E8:CD:2C:63:AE:C7:1E:8F:83:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918A341/9A7EAC4A098F11ECA633E13BC4F9AE02/RyIWWikMD62wOOjNLGOuxx6Pg-w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RyIWWikMD62wOOjNLGOuxx6Pg-w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A341/9A7EAC4A098F11ECA633E13BC4F9AE02/EF3517E8099311ECAD398842C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.171.212.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:c9:ea:be:41:f6:44:63:69:13:60:fb:70:89:ac:82:63:04:
94:39:cd:cb:ee:20:a1:b1:5b:36:70:91:fa:42:d9:c2:0e:93:
d1:88:a0:b9:a9:3d:14:ce:72:7d:76:dc:aa:f8:e2:e3:50:1d:
f3:c6:de:b5:de:c9:a4:33:1a:60:85:d2:06:ad:31:5f:85:56:
05:9d:f5:4f:7e:00:3e:b1:12:d8:41:53:df:b3:d0:7d:05:ce:
bc:fe:44:cb:eb:30:b2:bd:64:34:29:ee:8b:3d:c1:cc:05:18:
90:e7:85:b6:2e:26:6a:56:71:f5:16:00:2b:94:34:64:9b:f0:
29:30:8d:4d:32:9e:dc:1a:2d:4f:fd:96:39:f8:43:8a:ae:bb:
d8:72:3b:a1:46:ba:48:ae:9c:f6:96:d5:72:48:87:b4:28:9d:
77:a6:4b:33:1a:d4:88:3e:65:0c:2f:a1:2f:42:cd:57:b8:3f:
19:9d:2d:13:bf:bf:c4:ab:4e:02:7b:bc:b2:9e:c6:bc:4c:a2:
13:fb:73:e1:fe:84:63:cc:66:4d:25:77:20:45:a7:0e:08:6b:
1f:8f:9c:88:5e:8a:38:a2:bf:fe:49:0b:b8:9a:2a:80:f1:8f:
e7:9c:d9:f1:92:bc:79:45:0d:e8:ed:8d:17:2e:7b:31:ac:17:
d1:6b:42:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:27:10 2025 by rpki-client