Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/AE0AC88EBBF511ECAA816D52C4F9AE02.roa
File: AE0AC88EBBF511ECAA816D52C4F9AE02.roa (raw, json)
Hash identifier: XcDFXjlfUG7gat5Mn2G5GUkU6QTMu4zYAY0E0LcWZ/I=
Subject key identifier: 07:0F:43:9F:0E:E2:51:C5:D4:20:84:B2:3F:8F:A7:CB:A5:33:61:B3
Certificate issuer: /CN=A919B63C/serialNumber=2585DA0B980A47FEBA0E235205DEEE402F20B3CB
Certificate serial: 3417
Authority key identifier: 25:85:DA:0B:98:0A:47:FE:BA:0E:23:52:05:DE:EE:40:2F:20:B3:CB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/AE0AC88EBBF511ECAA816D52C4F9AE02.roa
Signing time: Sat 06 Jul 2024 15:00:53 +0000
ROA not before: Sat 06 Jul 2024 15:00:53 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 132908
IP address blocks: 103.74.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13335 (0x3417)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919B63C
Validity
Not Before: Jul 6 15:00:53 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66895c25-1818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:90:38:01:07:84:13:09:81:05:af:3a:39:aa:
54:95:9a:0f:8d:c3:f6:af:c2:87:bb:49:f5:cc:c8:
60:9f:0c:70:15:b0:34:de:cf:37:ea:fa:0d:f8:4e:
57:68:3f:34:d3:d3:c9:23:9d:d1:02:79:37:89:e3:
df:6f:af:6f:90:aa:29:5f:57:84:e3:01:13:88:e8:
62:86:6b:6d:cc:3c:05:91:bc:d9:08:8e:31:d5:5b:
97:b5:92:73:a3:4c:37:7a:49:c5:d5:9a:96:5a:66:
ec:6e:6d:5a:71:62:f8:1a:98:bc:81:05:69:cf:8a:
cf:7f:04:64:47:65:97:d0:2c:a0:3f:02:08:2d:00:
11:bd:af:c2:38:af:36:00:4e:e0:e7:a3:1f:02:64:
db:d6:91:c7:9e:e8:a5:44:fa:da:6f:91:32:c4:d8:
a2:1e:2a:9f:4f:8c:0a:6d:e1:d6:01:06:05:75:09:
d8:aa:53:a7:ef:89:8f:ae:e7:f9:62:ee:f4:c4:bf:
48:de:53:a7:c7:97:2a:12:20:7d:a8:b3:01:ef:f2:
ce:a0:42:d7:e4:e1:e2:e4:39:86:7c:11:64:25:78:
9f:e4:e6:55:6b:d5:d0:3c:1a:66:22:2e:18:26:47:
08:ad:00:c1:d9:9d:18:c5:54:95:eb:59:d7:f9:7d:
de:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:0F:43:9F:0E:E2:51:C5:D4:20:84:B2:3F:8F:A7:CB:A5:33:61:B3
X509v3 Authority Key Identifier:
keyid:25:85:DA:0B:98:0A:47:FE:BA:0E:23:52:05:DE:EE:40:2F:20:B3:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/AE0AC88EBBF511ECAA816D52C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.74.240.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:ca:ae:78:f8:0d:a0:8d:b1:10:c1:18:a4:f4:12:6b:7a:da:
da:e7:2f:0f:e6:40:8b:42:a5:71:43:d1:3a:57:79:65:eb:28:
44:0a:3c:c6:a3:62:36:c2:92:86:76:40:ed:13:8a:2a:b3:a6:
33:1a:fb:1e:88:97:2b:f2:15:42:42:7e:1e:65:01:d7:91:a5:
bc:5b:fe:64:3b:c8:f9:92:1e:17:56:92:f5:8d:c0:38:37:b4:
16:c1:cb:b3:b2:3e:8d:db:3d:f9:25:80:6c:92:fd:55:3b:93:
77:a1:80:a2:f0:0c:93:01:d1:c6:13:fc:1c:fb:bb:57:bd:3c:
1a:43:11:a3:67:90:6d:76:51:76:c4:a3:28:05:d5:16:50:9f:
13:d1:f1:d4:99:ad:f1:2b:fe:c8:0f:1e:2f:8a:25:7c:4a:82:
42:c1:f1:e4:55:d7:3e:98:83:76:3e:31:f8:7b:0f:80:35:23:
be:c7:db:13:54:9d:bd:6e:34:82:e8:96:41:fb:f6:ae:05:ab:
8b:ed:eb:6b:96:bf:9e:86:5c:c1:e2:08:73:69:5e:82:55:f3:
e0:6c:97:71:0d:b3:05:fd:38:63:2e:cf:09:d0:51:ad:20:b8:
c6:69:e7:bd:20:da:96:ce:91:39:e9:ae:03:f0:68:d4:7f:3c:
f7:c0:a8:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 22:36:12 2025 by rpki-client