Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9193235/A4FC3B5A9FA011EB8042D537C4F9AE02/105A1F50778211EE997FD552C4F9AE02.roa
File: 105A1F50778211EE997FD552C4F9AE02.roa (raw, json)
Hash identifier: aQsHMdafTipMWqWSV46rK02/G7PlIH4QrZ4xAvLOfVg=
Subject key identifier: 51:3B:7A:BF:54:C3:3A:8E:78:52:94:2E:66:9F:1E:73:B5:D7:11:EB
Certificate issuer: /CN=A9193235/serialNumber=5A56F89F50812A810FF2DE845470F1092724A1AB
Certificate serial: D4
Authority key identifier: 5A:56:F8:9F:50:81:2A:81:0F:F2:DE:84:54:70:F1:09:27:24:A1:AB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wlb4n1CBKoEP8t6EVHDxCSckoas.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9193235/A4FC3B5A9FA011EB8042D537C4F9AE02/105A1F50778211EE997FD552C4F9AE02.roa
Signing time: Tue 19 Nov 2024 08:30:12 +0000
ROA not before: Tue 19 Nov 2024 08:30:12 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 140664
IP address blocks: 103.151.118.0/23 maxlen: 23
103.151.118.0/24 maxlen: 24
103.151.119.0/24 maxlen: 24
2001:df3:e080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212 (0xd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9193235
Validity
Not Before: Nov 19 08:30:12 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=673c4c94-3ce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:de:a6:36:af:2a:a5:21:d4:6b:88:aa:fa:58:
af:06:b1:d9:be:9c:25:54:1b:8f:d3:8c:da:2e:74:
89:76:80:d2:81:be:cd:10:95:dc:54:29:bc:3e:29:
89:41:f9:c7:28:73:14:06:d8:58:89:cf:d8:41:99:
35:44:a4:0d:88:0e:69:8f:eb:04:46:87:40:0b:36:
59:87:2a:c5:4b:11:f1:96:df:6a:3d:57:cc:84:89:
87:23:63:e2:28:9a:4e:42:80:60:b7:76:56:f7:a3:
97:40:b5:5a:16:e0:31:f9:58:0b:3e:31:c2:2a:ad:
33:c6:ff:68:20:f6:53:a2:7d:c1:03:3f:25:c2:25:
54:51:39:0e:9b:21:e9:4c:57:f1:da:da:5b:87:e9:
6a:ae:cb:cb:6f:e5:fe:a6:ef:45:06:7b:d8:c6:c5:
89:dd:5e:54:2d:3a:9f:d2:70:1a:e8:d5:b0:05:25:
43:6d:27:2b:0d:e2:21:ad:31:25:1e:74:62:76:7b:
f5:f2:83:e1:c4:13:5f:a9:e6:3e:41:cd:16:ae:2e:
a0:a0:65:fb:a1:e2:6a:2c:47:ff:e6:9f:09:ff:2f:
31:d7:d2:16:5d:b7:72:a4:10:4c:97:db:b0:da:ca:
88:49:7a:51:5c:ea:9d:3a:fb:0d:c7:b8:03:05:4e:
76:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:3B:7A:BF:54:C3:3A:8E:78:52:94:2E:66:9F:1E:73:B5:D7:11:EB
X509v3 Authority Key Identifier:
keyid:5A:56:F8:9F:50:81:2A:81:0F:F2:DE:84:54:70:F1:09:27:24:A1:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9193235/A4FC3B5A9FA011EB8042D537C4F9AE02/Wlb4n1CBKoEP8t6EVHDxCSckoas.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wlb4n1CBKoEP8t6EVHDxCSckoas.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193235/A4FC3B5A9FA011EB8042D537C4F9AE02/105A1F50778211EE997FD552C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.118.0/23
IPv6:
2001:df3:e080::/48
Signature Algorithm: sha256WithRSAEncryption
93:09:2c:86:45:b2:59:b0:60:85:92:1e:65:e6:dd:9a:d5:d2:
10:f4:8e:be:fa:c4:7d:a4:d8:ba:eb:15:66:1a:76:e0:23:d3:
d6:34:08:ad:e5:c3:d2:9f:28:24:64:fd:bc:d8:12:10:0f:ba:
cd:09:1a:36:1f:f1:60:86:60:ff:25:0a:7b:3d:f8:12:f0:ef:
61:7e:bb:f1:9b:ef:5d:0f:9e:9e:88:aa:00:03:26:d0:09:2d:
73:78:4e:ae:3a:59:b4:8e:fc:a9:42:54:60:b4:a0:be:23:bd:
0b:fb:d9:20:d2:6a:65:b7:fe:1a:b6:a5:4b:07:cb:0f:37:11:
63:6d:e7:26:71:bb:27:fd:66:3c:29:91:a1:26:5d:7f:ed:1d:
50:a2:33:24:bc:19:c5:f3:4c:f7:6e:50:2c:af:c5:b9:46:a2:
34:d8:7b:ec:c6:38:11:1d:4b:19:af:67:a3:fb:c4:8e:58:14:
7b:80:36:aa:16:81:c4:ab:0a:f4:93:3b:31:20:be:e6:6f:66:
87:d0:49:3a:68:52:e3:c0:bb:a2:da:38:26:5c:be:5c:1b:b8:
c9:1a:b0:ab:e2:df:de:10:c0:c6:1f:2a:95:44:db:1d:bf:d5:
7f:2f:2e:e4:8f:35:a0:38:bc:39:31:17:e0:aa:05:b6:f3:b3:
00:41:04:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 16:30:42 2025 by rpki-client