Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91982FB/994D6DA6FE8711EBB9FA7263C4F9AE02/0006ED8263DD11EC9A50031BC4F9AE02.roa
File: 0006ED8263DD11EC9A50031BC4F9AE02.roa (raw, json)
Hash identifier: wRribXkCp4s0JF1oTM02hSLF0pchc7JmKUBHKJxUnUY=
Subject key identifier: D7:AD:0D:E5:DF:17:F6:27:4F:09:81:35:5B:C4:0E:31:C2:30:BB:5D
Certificate issuer: /CN=A91982FB/serialNumber=4649B249E426C2B8FAAFF62F2790F2E67B00FC5B
Certificate serial: 04C2
Authority key identifier: 46:49:B2:49:E4:26:C2:B8:FA:AF:F6:2F:27:90:F2:E6:7B:00:FC:5B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RkmySeQmwrj6r_YvJ5Dy5nsA_Fs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91982FB/994D6DA6FE8711EBB9FA7263C4F9AE02/0006ED8263DD11EC9A50031BC4F9AE02.roa
Signing time: Fri 25 Oct 2024 00:14:38 +0000
ROA not before: Fri 25 Oct 2024 00:14:38 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 141164
IP address blocks: 103.155.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1218 (0x4c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91982FB
Validity
Not Before: Oct 25 00:14:38 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=671ae2ed-afd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:57:b6:7f:d3:35:cf:9e:09:dc:1d:43:e6:75:
37:b7:74:56:ec:21:4a:ba:99:03:4b:85:a9:d0:62:
0a:86:89:08:75:21:35:f7:3f:0e:dc:39:3a:cf:a3:
6d:be:a5:32:ab:8c:ac:0e:65:73:b7:b8:f9:32:9f:
32:3b:05:ed:97:cd:fd:7c:19:00:c5:5d:b6:6c:d2:
03:0f:c4:76:56:3a:6f:6c:70:39:2e:8c:0c:f9:43:
92:71:df:60:7a:c0:73:c7:48:23:30:05:b1:fc:1c:
9e:df:86:2d:92:73:01:38:05:a5:6a:0d:45:95:1b:
41:73:67:70:dd:38:ab:04:e0:6f:28:5c:3c:e4:1b:
9b:18:04:63:97:ee:2e:57:af:88:c2:bc:56:33:5b:
bf:3e:38:83:b4:ea:21:ad:93:3d:e3:ed:72:8a:b8:
10:2a:97:18:d4:bb:36:34:2b:2c:30:df:31:78:c3:
e7:13:5c:3e:0c:5e:fc:3e:18:ba:48:11:48:bc:33:
88:7d:61:a2:09:6f:a7:a3:cd:78:52:5b:a7:ff:98:
f2:3c:fb:c8:b3:71:f1:9e:72:14:d0:95:b0:3e:a2:
60:e6:f5:b8:99:d9:b5:aa:fc:3f:7e:86:4f:89:a7:
c8:46:9c:10:9e:78:3a:71:b2:49:c2:8b:52:41:ae:
20:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:AD:0D:E5:DF:17:F6:27:4F:09:81:35:5B:C4:0E:31:C2:30:BB:5D
X509v3 Authority Key Identifier:
keyid:46:49:B2:49:E4:26:C2:B8:FA:AF:F6:2F:27:90:F2:E6:7B:00:FC:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91982FB/994D6DA6FE8711EBB9FA7263C4F9AE02/RkmySeQmwrj6r_YvJ5Dy5nsA_Fs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RkmySeQmwrj6r_YvJ5Dy5nsA_Fs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982FB/994D6DA6FE8711EBB9FA7263C4F9AE02/0006ED8263DD11EC9A50031BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.155.145.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:ce:73:9f:b0:ae:0e:dc:35:3c:d2:ff:87:64:8a:f1:84:27:
31:38:87:21:9b:58:10:8c:e4:37:13:a0:5c:04:49:a2:e7:e5:
86:44:55:e1:77:25:26:0d:64:4f:a9:36:db:58:a5:5e:50:69:
2b:3f:5a:7a:fc:2c:9d:da:4c:06:dc:cf:62:a0:bc:e0:62:7e:
1d:58:fc:4b:db:a1:da:68:16:64:7d:8f:61:b9:f7:de:15:74:
ce:fe:03:cb:45:ee:cb:f2:7f:b6:c9:fc:0e:20:39:13:a5:82:
93:42:2e:97:eb:20:d6:84:a3:93:8f:f9:ca:78:56:64:78:49:
2b:47:24:d3:cb:1c:88:bf:34:ac:fe:90:e4:65:84:66:7d:25:
be:ae:91:70:78:7e:3b:2e:6f:10:64:73:e6:47:f7:6f:24:ed:
70:c5:d1:11:3e:c6:81:a9:3c:57:ae:4a:09:39:57:a4:fa:d6:
73:cd:03:6d:05:51:2f:60:74:48:7a:ac:92:94:0a:56:ff:ed:
da:36:10:f6:b4:96:e7:66:96:26:e7:d1:90:58:92:b2:f3:34:
c0:38:2e:ae:6c:1d:84:d7:0c:5c:72:93:df:25:41:87:1c:d6:
3d:b4:7f:2b:a4:96:9f:63:7f:5c:30:68:6b:f8:9e:78:80:ce:
34:a2:27:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:14:08 2025 by rpki-client