Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/44CF316C29DA11EEAC070054C4F9AE02.roa
File: 44CF316C29DA11EEAC070054C4F9AE02.roa (raw, json)
Hash identifier: 0HkSWoIqELp3ylHO6VoceHK/AkbpkOqVqSCheHiI6Uo=
Subject key identifier: 60:0B:8F:53:48:ED:C7:7D:1A:13:0C:3C:97:B0:04:84:63:BA:4D:5E
Certificate issuer: /CN=A918A996/serialNumber=8386BE861BDBDB6D0165087DC044A07FA4D4F089
Certificate serial: 014E
Authority key identifier: 83:86:BE:86:1B:DB:DB:6D:01:65:08:7D:C0:44:A0:7F:A4:D4:F0:89
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4a-hhvb220BZQh9wESgf6TU8Ik.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/44CF316C29DA11EEAC070054C4F9AE02.roa
Signing time: Wed 05 Feb 2025 03:16:33 +0000
ROA not before: Wed 05 Feb 2025 03:16:33 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 17794
IP address blocks: 103.247.92.0/24 maxlen: 24
103.247.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 334 (0x14e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918A996
Validity
Not Before: Feb 5 03:16:33 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67a2d811-c354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:67:82:c9:4f:97:ee:14:8e:93:13:d0:37:eb:
45:1e:64:a3:c8:e5:47:41:97:bf:fb:56:72:e5:7e:
06:4e:84:b0:89:b6:45:b1:f4:e1:a0:64:e1:fb:a3:
e8:50:87:eb:30:7a:70:f2:b3:78:f0:af:3d:9c:75:
28:33:91:42:9a:5a:02:42:3b:c6:c2:b8:7c:d8:2b:
9a:30:49:15:50:1b:2e:fe:1f:7e:18:5f:48:0f:1f:
95:c9:48:14:3b:71:98:ff:6c:37:45:2b:0b:c3:dd:
a5:1b:ed:77:ea:14:c4:36:7d:36:71:2d:95:17:41:
f2:16:d0:30:1d:30:96:ac:74:5b:cc:06:03:b7:8a:
6d:36:32:0c:1d:e1:59:25:bc:2f:6c:f2:04:70:1f:
da:11:48:4c:24:38:81:de:54:1c:ba:5c:f4:68:4e:
7f:80:ff:b4:75:00:72:59:de:80:64:b4:03:14:3f:
43:7e:84:c4:eb:f0:2f:f9:71:f1:f0:4e:d9:6d:cc:
05:92:e5:ff:d6:33:34:4e:9b:af:9f:69:bf:06:9b:
cb:03:5c:f7:22:fb:58:08:8d:59:0a:b2:c4:5a:c8:
eb:10:58:13:29:bc:88:5f:af:b5:9b:d9:8e:68:f8:
0c:ed:31:c5:e9:f0:5e:9e:13:4d:de:b6:1a:06:09:
2e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0B:8F:53:48:ED:C7:7D:1A:13:0C:3C:97:B0:04:84:63:BA:4D:5E
X509v3 Authority Key Identifier:
keyid:83:86:BE:86:1B:DB:DB:6D:01:65:08:7D:C0:44:A0:7F:A4:D4:F0:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/g4a-hhvb220BZQh9wESgf6TU8Ik.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4a-hhvb220BZQh9wESgf6TU8Ik.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/44CF316C29DA11EEAC070054C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.247.92.0/24
103.247.94.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:4e:db:c4:7c:73:f7:a6:c3:4c:f5:15:d9:9a:20:91:84:b6:
89:80:ea:b8:51:69:57:9f:1e:40:10:9f:7c:5d:21:a5:3e:4a:
3e:98:a9:1c:a2:a2:f5:f2:03:20:c1:19:c2:ff:a5:4a:9b:bd:
d6:d1:14:1a:66:2d:fd:66:be:dc:b5:7b:13:ff:fa:61:d1:bc:
eb:37:59:8c:79:be:03:b8:ed:f5:57:0b:77:53:3e:99:8b:ca:
7f:69:1a:14:db:86:da:a1:e8:69:44:12:83:e6:39:f9:9e:1c:
5a:05:bc:ff:a6:40:a6:bf:8e:6a:18:89:2e:89:fb:03:72:70:
6f:91:5b:ba:bc:86:fd:d1:a0:0b:11:b5:aa:73:19:8b:37:2b:
e5:2e:b8:67:59:d9:f1:a2:45:82:f1:01:82:8c:1f:23:11:60:
c8:9d:7d:0e:8f:bb:31:83:46:e7:03:29:3b:7e:28:95:2a:17:
22:6a:5f:2d:60:44:53:dd:6c:25:2b:19:2e:ae:f6:f3:35:35:
2d:02:17:7d:01:dd:af:70:a8:59:3f:39:99:50:75:ea:62:7c:
a6:6e:18:f5:dc:14:d8:21:b3:bd:99:6d:21:23:9c:d2:3a:71:
3d:3f:5e:75:7b:ba:82:45:6b:fa:02:4d:c0:e1:ff:15:c3:e8:
74:de:4f:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:13:51 2025 by rpki-client