Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C953B940FB5E11EC8099D90CC4F9AE02.roa
File: C953B940FB5E11EC8099D90CC4F9AE02.roa (raw, json)
Hash identifier: zp8K9dEugVyTcdIVEJgCgxyJM92xzvxrRTl+b0P02Xw=
Subject key identifier: 0E:F7:A1:79:4D:64:5C:B2:3D:3D:B8:C1:1F:0B:A3:45:99:48:8C:A5
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 8A44
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C953B940FB5E11EC8099D90CC4F9AE02.roa
Signing time: Thu 30 May 2024 16:02:17 +0000
ROA not before: Thu 30 May 2024 16:02:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 135684
IP address blocks: 103.180.220.0/24 maxlen: 24
103.180.221.0/24 maxlen: 24
2001:df0:fa40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35396 (0x8a44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: May 30 16:02:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a309-e46e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:4a:45:e6:a6:b2:aa:46:64:a0:97:5d:c4:7b:
9b:cc:0e:62:90:78:15:8d:8f:e2:7e:cc:bf:e4:ef:
33:6f:61:0e:cc:77:ce:21:60:c5:89:f1:27:b4:70:
0a:6b:fb:ed:df:53:89:0b:5c:af:86:13:5f:75:21:
a6:44:20:ec:23:4f:f9:f2:82:cb:c8:b8:b7:ce:54:
1f:a7:3b:29:e2:ce:cf:04:a8:dc:24:54:15:3b:67:
5e:50:f5:d8:6a:59:fd:09:67:a7:ef:c5:c1:b8:2b:
87:c3:05:55:8f:f0:87:00:8f:61:b4:4b:51:03:cd:
b1:ca:9f:a9:dd:f8:fb:e8:60:fd:c3:38:35:9b:d6:
a4:7e:9b:ec:57:74:3b:f7:5b:57:e6:c4:9d:11:b3:
3a:2b:e9:fc:8f:3a:13:1c:e7:e4:7f:72:6c:a4:f2:
cd:62:04:97:3a:e3:91:17:12:16:0a:82:a7:eb:b5:
3c:e8:17:a1:b0:53:c1:12:db:c6:24:35:e8:59:a0:
cd:e5:c2:4f:c6:05:b8:7e:86:e5:f5:ca:d0:80:b3:
50:57:cb:77:d7:0f:09:28:b1:1c:c9:70:68:f3:f1:
6c:88:01:9c:01:8d:9c:ff:05:02:a4:28:f3:dc:8e:
1f:65:cd:61:8b:52:2d:ba:8f:bf:10:74:ff:ff:74:
77:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F7:A1:79:4D:64:5C:B2:3D:3D:B8:C1:1F:0B:A3:45:99:48:8C:A5
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C953B940FB5E11EC8099D90CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.180.220.0/23
IPv6:
2001:df0:fa40::/48
Signature Algorithm: sha256WithRSAEncryption
ad:ff:36:1d:8c:ed:6a:64:75:de:ac:9b:ae:b6:0a:3a:7b:f9:
83:e8:bd:3f:6c:31:bb:1f:76:93:fe:db:2d:ea:07:28:c6:0c:
66:06:21:c8:93:9c:13:2d:b6:da:f6:94:79:e1:82:1e:37:07:
99:7e:1f:71:c3:5e:3e:64:6c:ec:17:5f:ab:ec:bc:ae:e9:6d:
56:44:05:2c:bc:39:d8:59:ac:72:2c:81:61:35:78:65:00:57:
3a:c8:91:e6:26:37:0b:9b:15:ae:bb:25:06:09:a7:1e:56:63:
6a:06:9f:e0:e6:6c:bf:2c:93:d7:0a:e9:93:47:e8:c9:e3:77:
94:4f:83:17:75:c2:31:7b:3c:f7:bd:ac:52:a3:2c:50:7c:95:
0c:fb:a0:03:18:35:68:d1:94:4e:e0:74:c1:1a:85:c7:ee:d6:
85:bf:28:ee:89:fd:9f:7e:1f:df:96:fb:25:00:d0:a0:4a:b9:
63:64:81:2f:3e:1e:90:b3:1c:b8:63:f0:83:34:79:8c:b4:66:
77:a6:dc:eb:f7:05:e5:7d:93:c7:b3:c8:57:ed:91:7a:8d:47:
3f:1b:35:02:31:01:40:56:f8:be:7c:67:7d:a6:0c:e1:09:2c:
f6:48:d3:77:a2:f3:15:fa:0b:e0:fd:d2:3f:d4:2f:ce:d4:49:
ff:b9:14:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:47:39 2025 by rpki-client