Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C355/22E76B442F5911EEB957EA72C4F9AE02/63884D122F5911EE8D896A87C4F9AE02.roa
File: 63884D122F5911EE8D896A87C4F9AE02.roa (raw, json)
Hash identifier: 4AwkRBSah0q0zkuKlGnrqVF3ZLdqCQgqioJ/w/eqAGc=
Subject key identifier: EB:7E:74:C0:5A:63:E3:A3:F4:D5:98:94:AA:06:AA:01:71:81:D2:77
Certificate issuer: /CN=A919C355/serialNumber=E8029C842A2C1B0EAB8D2162DB7F7F44DE1C7028
Certificate serial: 012B
Authority key identifier: E8:02:9C:84:2A:2C:1B:0E:AB:8D:21:62:DB:7F:7F:44:DE:1C:70:28
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6AKchCosGw6rjSFi239_RN4ccCg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919C355/22E76B442F5911EEB957EA72C4F9AE02/63884D122F5911EE8D896A87C4F9AE02.roa
Signing time: Tue 25 Feb 2025 05:39:40 +0000
ROA not before: Tue 25 Feb 2025 05:39:40 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 4826
IP address blocks: 103.61.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299 (0x12b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919C355
Validity
Not Before: Feb 25 05:39:40 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67bd579c-3d48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:7a:4c:0d:3c:9b:15:00:5a:1d:6f:a7:d2:e5:
f9:6c:21:e2:8f:54:ff:79:72:dd:24:ba:2f:84:95:
a7:99:32:7b:3a:1e:91:4d:00:6a:e6:66:52:d5:6a:
b4:fc:17:7a:1f:cf:d7:c9:db:b9:f5:70:e6:4b:33:
c4:35:26:b7:55:80:10:77:dd:81:d3:a7:ba:f0:fd:
03:f3:e8:1d:25:c4:23:45:27:ca:a2:76:4e:f4:17:
af:5e:a0:a2:24:28:e7:16:fa:e0:5c:6a:84:ee:ec:
29:d0:07:28:de:f6:0a:ad:6d:b2:d2:3c:2a:d8:d8:
39:52:97:58:44:86:81:2e:0e:1f:55:7d:61:23:a2:
92:9f:d7:87:7d:72:c0:f1:0e:0d:24:a0:6c:0d:e5:
67:7d:da:ac:9b:db:d0:38:a6:64:6d:92:f8:8f:21:
d4:25:4e:5b:6a:cb:03:8f:14:2c:b0:44:84:34:73:
7a:0b:f7:3e:6e:69:56:dd:3a:42:ff:d7:99:be:09:
61:97:83:8b:9a:ad:03:53:18:97:a9:36:b7:08:cf:
c0:65:62:2e:bc:73:72:68:b3:c0:c4:fb:04:7a:f7:
00:ae:80:7c:2c:8d:9e:3a:b9:61:4d:09:85:b9:5f:
d4:dd:c2:93:23:4b:34:b1:3a:df:98:65:1f:f9:33:
70:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:7E:74:C0:5A:63:E3:A3:F4:D5:98:94:AA:06:AA:01:71:81:D2:77
X509v3 Authority Key Identifier:
keyid:E8:02:9C:84:2A:2C:1B:0E:AB:8D:21:62:DB:7F:7F:44:DE:1C:70:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919C355/22E76B442F5911EEB957EA72C4F9AE02/6AKchCosGw6rjSFi239_RN4ccCg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6AKchCosGw6rjSFi239_RN4ccCg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C355/22E76B442F5911EEB957EA72C4F9AE02/63884D122F5911EE8D896A87C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.61.70.0/24
Signature Algorithm: sha256WithRSAEncryption
03:51:72:c8:3a:c0:de:56:b4:f2:21:b6:ea:cc:43:70:67:78:
2c:84:5d:ba:5f:33:df:97:da:f9:3d:c8:86:2f:e9:60:3e:28:
1a:77:4a:ce:a5:bd:27:76:b9:bf:c6:01:77:3e:8f:e1:2c:7c:
2e:a6:72:e6:c8:bf:b7:95:da:07:c5:44:6b:9a:eb:e8:85:be:
85:38:02:d7:4f:75:51:df:0c:fd:f6:9a:60:af:2f:4e:33:f4:
39:65:83:1c:73:4e:0e:44:b7:3f:9b:4a:74:59:da:10:00:36:
51:ec:26:9a:d6:e0:33:00:28:29:ac:f9:95:c9:cb:0f:77:34:
05:42:16:ce:9b:7e:91:33:83:dc:14:e5:1b:2c:fa:8d:ca:b9:
c9:02:76:92:53:93:11:a2:f1:78:20:79:94:f6:fc:c2:58:ae:
56:04:66:99:e0:8d:ce:cb:81:3d:27:ca:91:9e:9f:4f:ea:82:
75:19:8a:93:a3:0b:77:b3:8f:6e:3f:37:b6:61:dd:a6:62:fb:
8e:f3:e6:79:58:6b:2e:90:75:d9:2c:c2:41:ff:e4:bb:65:8a:
e5:8a:10:71:ae:a2:20:3d:3b:28:a8:af:9e:1e:50:8c:a2:0b:
4f:4f:63:38:2b:37:72:e6:3a:aa:53:eb:c5:f1:f9:a0:7e:d1:
a1:79:a7:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:17:14 2025 by rpki-client