Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/A445EAA0B5B911EC8AADD413C4F9AE02.roa
File: A445EAA0B5B911EC8AADD413C4F9AE02.roa (raw, json)
Hash identifier: fxFlUsOaGScQkl9QgTozAWohlmX4iM9s7uV5Ua++ETg=
Subject key identifier: E2:E4:30:27:12:68:FB:09:CA:14:5D:8E:FC:FC:34:D8:94:D3:C3:AF
Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D
Certificate serial: 033D
Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/A445EAA0B5B911EC8AADD413C4F9AE02.roa
Signing time: Wed 19 Feb 2025 02:54:21 +0000
ROA not before: Wed 19 Feb 2025 02:54:21 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 139743
IP address blocks: 103.84.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 829 (0x33d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9193339
Validity
Not Before: Feb 19 02:54:21 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67b547dc-a643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9d:96:ee:e7:bd:5d:62:81:47:7d:38:b4:00:
5e:87:8d:98:18:10:2b:c7:5b:f7:fb:3a:b3:f9:47:
06:37:22:ac:e2:6f:13:5e:21:d9:1c:c3:c5:20:56:
1a:be:84:d0:a7:54:75:fa:64:eb:f3:a3:64:2e:45:
3e:bd:1e:75:07:9d:76:1d:a5:49:e8:a3:6d:d9:61:
40:ad:57:4e:d1:62:cd:20:5d:d2:63:f5:39:1f:f4:
69:d9:95:17:17:d0:2f:7e:07:e5:f7:97:10:3b:0c:
4b:3e:64:64:60:73:61:bb:7c:aa:bb:23:c9:7d:52:
6b:e8:5a:7b:b5:2a:3a:85:3e:78:60:8a:32:af:27:
f1:e7:cc:38:92:bf:2a:ee:c0:2f:73:52:72:28:88:
fd:07:f0:0d:fa:38:64:66:eb:08:f3:f5:77:20:43:
d8:02:fa:6e:e6:af:2d:af:d2:90:27:e0:30:e0:64:
32:f9:77:22:ab:81:bf:44:6f:84:52:73:24:c5:32:
c1:f7:a7:c0:c8:ca:ee:56:39:31:53:f9:78:bf:65:
e8:d6:05:19:cc:28:fd:01:8c:91:c3:b0:b4:72:c7:
3c:bc:07:3d:18:34:e5:c3:22:a3:ec:ba:1e:2e:a3:
58:e7:50:08:25:78:79:14:88:09:93:06:01:41:25:
51:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E4:30:27:12:68:FB:09:CA:14:5D:8E:FC:FC:34:D8:94:D3:C3:AF
X509v3 Authority Key Identifier:
keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/A445EAA0B5B911EC8AADD413C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.84.136.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:78:d2:b4:d1:c8:7f:3f:9f:6f:d5:85:c5:f0:6e:96:29:e8:
09:80:fa:13:65:d5:cc:1b:ab:73:ac:03:07:12:f8:c1:67:aa:
a5:25:37:56:da:fe:99:7d:52:08:be:e5:2c:fc:c8:6c:ca:d6:
1b:6b:88:34:fd:34:e5:2c:a5:b2:b1:d9:cc:ae:6d:1f:cc:db:
cf:d2:a9:a6:fe:89:1d:4f:29:f8:2b:69:8e:5e:c7:5c:30:f5:
05:a3:95:7e:07:34:05:d3:87:3b:ae:2a:80:52:c9:e6:3f:85:
dc:e2:b0:f8:66:ff:86:e0:8e:b3:3a:71:3c:0d:bc:dc:e0:09:
44:07:97:49:71:cf:92:2a:1c:a1:01:01:69:c1:52:0c:45:89:
4f:6c:be:5f:07:7e:2c:cc:7f:e1:22:7c:bd:ee:64:36:29:e7:
43:21:89:c5:c0:ad:a3:71:a5:4e:f6:9f:3a:81:15:c6:2d:31:
f0:d3:68:92:0d:3c:c3:93:e6:0c:42:f6:f7:b8:13:08:0d:18:
5c:0f:fb:1c:73:19:70:26:4a:4b:46:3e:df:da:41:1a:09:83:
4a:a8:fc:b1:42:7b:45:b7:b9:ea:4c:7d:f2:bf:2b:4b:c5:73:
8a:12:cb:0d:04:9b:bf:bc:52:5e:fd:63:d7:b1:e4:fb:75:24:
3a:ec:c6:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:09:18 2025 by rpki-client