Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B6A829B003BD11EBB416B77DC4F9AE02.roa
File: B6A829B003BD11EBB416B77DC4F9AE02.roa (raw, json)
Hash identifier: anCQqN72sH75MH5wG2ENFdFqopIsQlbeqe1kf4PbpDc=
Subject key identifier: 87:3A:07:78:12:DC:6D:8B:D6:5E:AA:75:79:64:B1:CE:07:72:6E:15
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 8A90
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B6A829B003BD11EBB416B77DC4F9AE02.roa
Signing time: Thu 30 May 2024 16:03:33 +0000
ROA not before: Thu 30 May 2024 16:03:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 135787
IP address blocks: 103.85.76.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35472 (0x8a90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: May 30 16:03:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a354-b8fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f9:ce:e3:9d:74:3c:01:58:54:7d:18:0f:78:
dd:a3:2e:76:46:7e:c4:38:ec:b1:3f:b1:ab:5c:69:
a1:37:9e:09:2b:d1:bb:72:ed:2a:67:15:69:a7:36:
5c:83:6d:78:9b:c1:dd:b5:da:89:52:41:c3:14:a2:
46:97:ee:87:52:46:af:fc:33:0b:e3:8c:b5:73:a3:
47:85:3a:be:bf:57:ba:8b:27:ee:2e:58:61:7a:d7:
cf:37:71:f0:e3:fb:5f:51:d3:f4:c4:b8:7f:23:84:
c8:d0:64:65:69:cc:c0:0a:56:61:40:79:7a:6b:07:
4b:aa:79:8f:28:0a:4e:e9:bc:33:0e:6f:93:22:33:
6e:af:91:3d:e0:d8:45:d7:4c:f6:cd:8f:fd:7d:74:
25:31:7d:d2:af:a6:a4:fc:75:59:6f:1f:30:d1:45:
d5:35:b8:e7:9f:ca:61:fc:70:d1:55:13:38:7e:b9:
f2:6e:04:07:61:33:aa:38:01:08:49:48:d8:49:76:
f7:16:ec:16:aa:d3:48:10:b1:27:a5:00:01:bf:7f:
9a:ab:93:43:4b:75:3a:d5:94:52:8b:23:d6:33:fb:
58:6a:4e:c5:f1:3b:ca:bc:89:90:67:a6:72:8a:ef:
7e:67:80:5f:fd:0e:c3:22:4a:6c:b2:67:41:0a:95:
5c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:3A:07:78:12:DC:6D:8B:D6:5E:AA:75:79:64:B1:CE:07:72:6E:15
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B6A829B003BD11EBB416B77DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.85.76.0/23
Signature Algorithm: sha256WithRSAEncryption
17:bd:39:88:e4:9b:09:63:4a:62:7b:38:91:7d:38:df:3d:2f:
ee:dd:39:0f:5e:ef:db:d1:b1:97:78:24:ba:60:db:a6:85:8b:
08:e2:7b:d7:cd:10:f9:2e:1d:ac:05:15:01:5f:da:ee:86:3d:
65:b3:cf:dd:d2:b9:ad:43:a8:ab:a5:38:5c:26:36:84:d5:24:
7d:68:56:e4:f7:b9:d0:13:db:b5:1a:55:ec:94:f6:80:ad:ec:
e6:a7:bc:b1:b6:b8:a4:0e:c9:ec:97:7d:27:a5:1a:07:f8:43:
56:94:c6:cc:90:4d:15:2d:36:d2:77:91:2e:a4:76:24:0c:0d:
54:72:b6:4c:fd:23:d4:f6:77:56:f4:26:b5:4e:6a:6f:17:48:
63:93:ad:af:fd:c9:b7:3c:81:72:f5:fc:1a:db:61:12:a2:aa:
47:e5:7c:29:41:9d:da:59:d3:5d:dc:b0:9a:01:0e:bd:c3:93:
98:f9:f1:61:9a:d0:9d:fa:62:bb:6e:97:24:82:0b:d4:44:ea:
f0:a3:bc:25:1f:04:e1:bb:4d:fd:f3:1d:47:39:ba:16:2e:f6:
7a:c2:9e:14:02:c6:b5:4b:7c:6f:46:76:3f:70:f6:2c:7b:72:
13:fd:f8:9b:f0:3d:de:51:89:4e:a9:2e:28:a4:66:5a:23:e4:
79:51:a8:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:08:06 2025 by rpki-client