Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/728286AE27BF11EDA6A02960C4F9AE02.roa
File: 728286AE27BF11EDA6A02960C4F9AE02.roa (raw, json)
Hash identifier: DvV5HozP+sR1ACB5NUpTfiC/G52OiXFRlLclsmTMjHI=
Subject key identifier: 40:4A:47:FA:CB:43:C1:EC:99:CE:BA:97:6D:CC:93:99:18:13:25:5A
Certificate issuer: /CN=A91977F9/serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E
Certificate serial: 01FC
Authority key identifier: AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/728286AE27BF11EDA6A02960C4F9AE02.roa
Signing time: Fri 31 Jan 2025 02:16:46 +0000
ROA not before: Fri 31 Jan 2025 02:16:46 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 134475
IP address blocks: 103.160.129.0/24 maxlen: 24
103.185.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 508 (0x1fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91977F9
Validity
Not Before: Jan 31 02:16:46 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=679c328e-786e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:a3:26:7f:a4:64:8f:a3:8f:b7:d5:e8:8d:f1:
fd:ef:db:9d:7c:3a:82:0c:b7:84:df:98:06:68:f6:
89:d6:8c:fa:1a:77:88:55:7d:6f:f3:44:fc:49:a1:
e0:a0:53:0e:4c:d0:dc:fd:05:a5:b4:24:21:57:2b:
f3:9d:fc:5b:f6:20:b2:da:b2:26:57:15:0e:83:d4:
5a:92:f2:d3:7e:57:d0:18:dc:eb:bb:37:7f:f9:69:
e5:a3:ce:6a:c0:3c:52:6e:6d:0b:65:8d:0f:89:e6:
04:86:3f:74:bd:24:6e:e8:a6:70:43:18:8e:c9:43:
4c:d3:57:b9:b2:b7:33:54:d3:9c:d9:1a:87:69:91:
a7:c5:22:42:ed:16:66:fe:9e:ae:86:b8:d2:b9:ac:
8e:3f:bc:5f:f5:4e:8e:18:07:11:c3:7d:ad:af:d0:
80:e3:20:40:80:03:27:6b:2b:0b:a0:17:01:7a:69:
70:de:1f:25:f2:a6:e8:cd:21:67:c5:2a:2b:4d:43:
20:5f:1a:72:57:31:03:44:51:78:40:07:76:13:df:
fc:2e:e8:81:92:cf:66:2d:33:4c:1f:f0:18:e3:ba:
e0:b3:f3:93:36:87:a9:52:ca:22:d2:a5:92:8f:c8:
a3:19:b3:40:53:9f:da:2e:92:96:e8:f8:f6:59:8f:
49:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:4A:47:FA:CB:43:C1:EC:99:CE:BA:97:6D:CC:93:99:18:13:25:5A
X509v3 Authority Key Identifier:
keyid:AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/728286AE27BF11EDA6A02960C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.129.0/24
103.185.192.0/24
Signature Algorithm: sha256WithRSAEncryption
25:08:ec:b7:39:33:85:fa:0e:46:b1:9d:2f:c9:f5:e8:3e:76:
6d:de:31:80:b4:f8:d6:d3:69:6a:49:2b:d6:68:f6:7e:2a:ff:
7d:c7:ed:7e:96:1f:e1:6e:b1:51:9a:7b:9a:89:77:90:4b:5f:
c7:eb:de:ee:b6:55:e3:f8:83:39:9f:f2:a7:37:fa:6a:d2:33:
0d:5a:ba:44:54:a1:d5:84:15:d7:0c:1b:a3:48:66:a8:13:cd:
8f:f3:45:f5:5e:94:cb:5c:f6:00:3b:b0:10:c1:5c:c2:b8:38:
b5:4f:44:73:37:c4:af:ee:e7:7b:84:c7:08:99:c6:6a:84:c0:
d2:6e:cc:e9:03:89:d5:36:e4:bf:21:fb:a8:48:ca:1a:46:6d:
22:81:d7:df:b5:0b:18:af:ef:8a:05:2f:39:d5:60:2d:45:96:
b6:ab:6a:2a:c9:16:39:fc:cf:bd:01:92:0f:0b:04:1b:ef:76:
85:ff:2b:b5:1c:f5:be:03:ff:0a:12:a6:3c:e2:5d:8b:48:41:
46:0a:fe:bf:5e:b1:0f:d5:97:61:f8:c1:2c:36:97:36:b1:26:
12:f7:d3:9e:ab:5e:c3:af:32:eb:d9:08:f1:5d:f0:26:be:7d:
81:1f:42:4d:84:1c:07:5b:43:9e:18:a1:14:3e:d6:ae:76:9d:
12:54:b8:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:52:14 2025 by rpki-client