Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa
File: 9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa (raw, json)
Hash identifier: jqqBqCZOKu2qIALXNmkWZIy2E6GEnPXSik4fgBrMrDA=
Subject key identifier: 38:42:DB:31:F7:92:D8:28:84:10:B0:EE:9D:42:33:D2:9F:28:AB:37
Certificate issuer: /CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5
Certificate serial: 0A45
Authority key identifier: 89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa
Signing time: Thu 26 Sep 2024 19:48:45 +0000
ROA not before: Thu 26 Sep 2024 19:48:45 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 16509
IP address blocks: 103.39.86.0/23 maxlen: 23
103.39.112.0/24 maxlen: 24
103.211.172.0/24 maxlen: 24
202.8.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2629 (0xa45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9196F73
Validity
Not Before: Sep 26 19:48:45 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66f5ba9d-0d15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:99:63:86:44:a7:05:e5:4c:5e:d6:88:89:33:
68:07:88:b3:06:92:3c:fd:bf:17:92:0a:0f:2d:a0:
1f:a9:da:16:95:e6:6d:12:f5:a7:a3:2d:fb:59:e5:
1b:20:8d:b1:90:cc:da:dc:02:48:70:c0:75:a6:45:
8f:4a:ac:ca:34:fe:7a:fd:67:90:69:65:ca:7e:dd:
ff:ad:00:57:5c:eb:2b:3b:4f:2b:fd:af:36:b5:1b:
f5:2f:1f:18:1d:c9:58:0e:40:4e:f7:e3:1f:a4:70:
3b:19:60:93:3d:45:76:32:e4:fa:8a:6c:4c:81:f9:
a7:45:9b:ca:34:98:d1:25:89:0f:8d:cd:b7:78:45:
64:37:cc:c3:97:21:51:09:03:d2:b1:8c:df:36:d1:
df:d8:7e:d8:44:cf:f2:eb:3b:97:4e:a5:66:2a:b1:
60:99:a8:bb:e6:69:c7:34:96:82:25:57:38:a0:d4:
f6:22:86:84:7b:84:30:c2:34:8e:27:5c:af:fe:06:
94:31:8e:60:ff:fe:d0:b2:08:f1:7c:4d:a9:41:a5:
7d:fd:58:5f:03:28:da:44:11:c5:df:17:1c:96:1a:
85:6c:51:44:57:3e:57:12:5f:24:6c:a6:66:13:f1:
cb:4b:0a:e5:ab:a8:b9:a6:22:7d:78:fb:b4:a7:a4:
a7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:42:DB:31:F7:92:D8:28:84:10:B0:EE:9D:42:33:D2:9F:28:AB:37
X509v3 Authority Key Identifier:
keyid:89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.39.86.0/23
103.39.112.0/24
103.211.172.0/24
202.8.25.0/24
Signature Algorithm: sha256WithRSAEncryption
48:29:5d:53:a3:aa:b7:c4:ed:53:d3:de:64:c3:08:41:e8:6f:
e0:99:b2:4a:08:60:01:b3:ed:f0:ec:4f:16:27:f7:21:38:38:
d4:46:03:20:33:c1:37:36:69:71:08:39:43:b6:b3:05:5e:d8:
16:58:32:2a:0d:a8:fa:ac:9d:73:34:60:10:ac:d9:0d:f5:8b:
3c:08:21:13:6f:7d:ad:18:bf:31:60:ce:9c:94:60:60:52:55:
6a:5f:5f:9d:17:8f:71:d7:98:05:50:d8:b8:73:fb:50:f8:a9:
ea:62:30:6e:b0:bd:d3:25:1e:db:e2:a5:6e:5d:8b:62:da:c3:
b6:fb:bf:d1:af:a4:9a:25:b1:6c:93:0e:85:05:e8:0f:b4:16:
8d:11:8b:4e:67:93:e3:b8:1d:27:2c:99:78:53:97:e4:d4:83:
45:cd:2b:f5:77:52:48:7a:8d:85:45:99:89:63:0b:92:a6:f3:
0d:34:ab:56:05:de:c2:9a:5d:11:1f:b2:47:db:ce:9e:0d:b0:
d0:33:1f:bb:b4:58:38:9f:a9:bc:b3:b2:1f:c8:17:72:c8:5a:
9b:ce:7c:4b:5f:e3:38:9b:36:59:10:01:ad:ac:a9:f8:29:8a:
d5:2e:ef:04:b6:a9:3c:45:2c:15:58:58:9a:fd:34:ea:6a:41:
a4:ec:27:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:37:59 2025 by rpki-client