Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919905B/166FC886D3E711EB99501D24C4F9AE02/7B16F590D3EA11EB99BAC229C4F9AE02.roa
File: 7B16F590D3EA11EB99BAC229C4F9AE02.roa (raw, json)
Hash identifier: 8hqvaN3hvlkWTiAFriU5tZiN/3ujG/aVXQcge+TLoA8=
Subject key identifier: E5:B0:62:1E:3E:84:38:FF:E2:22:69:95:8F:01:BF:6B:D3:7B:14:D5
Certificate issuer: /CN=A919905B/serialNumber=ACA91EA4097D9E9F31F56EFAC6BD48F016BE98D3
Certificate serial: 04ED
Authority key identifier: AC:A9:1E:A4:09:7D:9E:9F:31:F5:6E:FA:C6:BD:48:F0:16:BE:98:D3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKkepAl9np8x9W76xr1I8Ba-mNM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919905B/166FC886D3E711EB99501D24C4F9AE02/7B16F590D3EA11EB99BAC229C4F9AE02.roa
Signing time: Fri 05 Jul 2024 00:42:14 +0000
ROA not before: Fri 05 Jul 2024 00:42:14 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 38588
IP address blocks: 103.168.140.0/23 maxlen: 24
2407:9040::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1261 (0x4ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919905B
Validity
Not Before: Jul 5 00:42:14 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66874165-2c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:24:36:29:84:87:fd:23:12:e8:57:b7:31:8e:
85:44:41:22:33:08:35:2a:0b:17:9e:b6:26:64:59:
f9:e9:84:92:4a:1e:25:d6:e2:1e:b3:6d:ea:61:10:
11:ea:a2:36:c2:ea:ed:f5:4f:8b:b7:e0:51:90:bc:
a1:bd:7e:70:0b:2b:4f:4d:62:86:2f:08:4a:80:b8:
d6:89:dc:70:e1:13:3b:c4:df:79:d4:1c:81:e5:49:
ad:00:06:f6:b5:23:28:d2:0e:8c:ca:cf:82:5c:14:
2f:86:86:ef:7f:b4:01:b6:a5:23:5f:e9:ab:ca:83:
bf:c5:fd:13:c5:2f:e9:5d:56:92:5f:b1:38:f7:be:
8a:cf:4b:eb:e3:b8:f0:77:83:e5:27:0e:94:9d:c6:
a1:a1:03:30:d7:29:af:af:76:aa:2d:8a:5c:72:ec:
70:0f:a8:e5:b8:63:84:03:9b:8d:14:b9:a7:c3:e1:
04:e8:d0:df:6b:cb:2b:43:5b:1a:cb:06:c1:1d:8c:
26:83:ea:fe:ba:cc:a6:75:ce:21:a4:e6:58:07:3d:
c9:27:fd:01:7e:de:ee:36:3e:bb:46:a2:53:db:62:
96:5c:37:d3:b3:8d:9c:56:51:37:e8:63:a8:ef:00:
7f:f1:3f:e2:99:ce:f8:a2:22:58:a9:26:45:ae:71:
05:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B0:62:1E:3E:84:38:FF:E2:22:69:95:8F:01:BF:6B:D3:7B:14:D5
X509v3 Authority Key Identifier:
keyid:AC:A9:1E:A4:09:7D:9E:9F:31:F5:6E:FA:C6:BD:48:F0:16:BE:98:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919905B/166FC886D3E711EB99501D24C4F9AE02/rKkepAl9np8x9W76xr1I8Ba-mNM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKkepAl9np8x9W76xr1I8Ba-mNM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919905B/166FC886D3E711EB99501D24C4F9AE02/7B16F590D3EA11EB99BAC229C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.168.140.0/23
IPv6:
2407:9040::/32
Signature Algorithm: sha256WithRSAEncryption
9f:23:21:f2:ac:9c:5f:99:bd:71:15:0b:78:8b:9e:16:bf:5b:
b5:34:e7:93:04:3a:35:51:a8:4a:db:ff:f7:e1:b5:ad:e6:94:
d1:c9:d5:25:d0:5f:41:0b:99:75:3e:6c:19:c2:8e:ba:6a:e7:
b4:87:2a:6c:a2:82:ff:f3:df:79:b7:25:96:aa:65:5b:74:2b:
d0:8b:4e:72:65:89:4f:23:9e:1b:c7:af:51:cb:db:13:d0:f4:
5b:1c:23:b0:d8:3c:bc:64:ca:ea:3f:6d:ed:c9:de:05:61:49:
20:35:b6:5e:52:a5:1b:fa:f3:a3:04:fc:c0:14:0f:97:57:0b:
55:8a:65:6b:c0:13:bf:ba:43:d2:de:bf:f1:49:6c:79:d9:ff:
fc:31:a9:2e:af:31:7f:c3:a9:d4:be:43:d9:2f:1b:7b:a1:d5:
3e:8f:c2:52:82:14:e4:59:ac:96:c6:ae:df:34:45:4f:d3:f3:
f5:ce:3d:7b:24:3b:d2:e8:75:7a:9c:9b:17:89:ed:b9:de:4e:
18:ef:c0:cd:83:59:ac:58:dd:8d:31:7c:96:c6:1e:32:bc:e2:
9a:4c:db:02:68:da:f2:24:5a:5b:c0:8d:28:44:be:32:ff:14:
6c:75:30:45:c4:6a:d1:1a:70:dc:1c:70:aa:cd:42:da:e0:94:
56:2c:b1:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:06:48 2025 by rpki-client