Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/94A6144A68C711EE8C53A031C4F9AE02.roa
File: 94A6144A68C711EE8C53A031C4F9AE02.roa (raw, json)
Hash identifier: NFu6vOIdrlQETQmdi2ziHOwoF9spOq/YA6DUc9jHTPM=
Subject key identifier: 82:FA:E6:BC:E2:73:A7:78:1F:7D:1E:48:53:75:42:DA:B0:D5:AF:26
Certificate issuer: /CN=A919ED93/serialNumber=72EF32DAF4E83F9019296320874E3B445008EC39
Certificate serial: B2
Authority key identifier: 72:EF:32:DA:F4:E8:3F:90:19:29:63:20:87:4E:3B:44:50:08:EC:39
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cu8y2vToP5AZKWMgh047RFAI7Dk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/94A6144A68C711EE8C53A031C4F9AE02.roa
Signing time: Tue 27 Aug 2024 05:49:42 +0000
ROA not before: Tue 27 Aug 2024 05:49:42 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 16509
IP address blocks: 103.38.221.0/24 maxlen: 24
210.79.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178 (0xb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919ED93
Validity
Not Before: Aug 27 05:49:42 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66cd68f6-99f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:53:6b:5d:46:fd:22:fd:2e:15:4d:1f:47:fc:
ef:3d:96:f2:17:4f:7f:02:a3:5a:21:e8:0f:5f:3e:
7e:da:ed:d7:bb:7a:c8:4c:db:f5:6a:42:d6:e0:4d:
e4:8d:9a:af:a9:b0:6d:fc:a1:2c:8f:3a:31:b4:db:
b9:1d:06:b2:b2:32:d9:5b:fa:57:44:56:b7:ac:53:
d6:fb:46:f6:17:68:11:fc:7d:34:5d:cc:ae:37:47:
64:5c:44:03:aa:c0:58:fe:7f:30:db:37:13:42:84:
99:df:5a:0e:be:1c:ff:82:79:77:24:77:5d:38:ab:
bf:20:d2:51:26:4c:ab:80:2b:76:50:a5:f1:9f:53:
2e:14:4c:df:58:c4:a5:15:1d:2d:60:e0:bf:e6:21:
2a:0c:81:80:dc:b9:e5:5c:34:be:24:65:13:fb:46:
bb:45:6a:c0:c3:25:15:73:89:2a:74:f1:99:c6:68:
9d:ff:40:45:de:3b:68:24:2f:e2:f4:3e:0e:33:75:
4f:b2:f2:48:41:22:c7:9f:36:ce:58:0c:fa:8d:35:
33:ce:c2:a4:31:ba:6d:f6:f8:2a:76:b3:92:d5:93:
42:d4:5e:8a:89:85:87:9a:44:b9:25:1b:4d:95:96:
47:84:13:96:ec:64:aa:c8:18:cb:1a:e4:b0:fe:6f:
cd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FA:E6:BC:E2:73:A7:78:1F:7D:1E:48:53:75:42:DA:B0:D5:AF:26
X509v3 Authority Key Identifier:
keyid:72:EF:32:DA:F4:E8:3F:90:19:29:63:20:87:4E:3B:44:50:08:EC:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/cu8y2vToP5AZKWMgh047RFAI7Dk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cu8y2vToP5AZKWMgh047RFAI7Dk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/94A6144A68C711EE8C53A031C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.38.221.0/24
210.79.172.0/24
Signature Algorithm: sha256WithRSAEncryption
11:5f:63:63:55:b8:e3:e1:9b:fc:68:73:c0:32:a7:60:93:b4:
5b:d5:f4:da:45:4c:98:b9:bb:5f:14:83:70:f7:7b:62:a2:44:
57:71:25:60:ef:66:a4:f4:c3:2f:d2:1d:51:db:59:0c:c6:06:
10:99:f8:1d:de:3c:0b:5f:a9:79:fe:50:5d:5b:4c:69:fe:47:
4a:c0:ca:60:8e:72:32:a2:4f:49:de:3d:3e:ed:e9:05:ac:12:
89:b6:65:60:ca:12:50:83:a8:3f:1e:83:96:f9:91:0b:d1:f6:
06:17:b5:81:ff:f1:f2:ff:c0:a5:73:39:c3:22:3c:a8:69:08:
ad:7e:ca:19:58:b7:8b:59:81:da:a3:45:85:65:3c:9d:2c:f1:
b6:e9:c3:6d:fc:a3:5f:bc:5b:9e:cf:ea:9c:d4:a0:2d:79:94:
33:6d:76:86:cb:18:e2:a0:bb:df:a2:dd:91:41:5c:7b:0e:bb:
60:ff:46:cf:04:73:f0:ff:9e:8f:ec:0f:18:b0:1d:38:74:65:
29:75:e1:d7:d1:30:46:be:eb:7a:34:55:aa:7e:94:37:31:7c:
fc:a5:b7:10:a5:82:33:ad:1c:d8:6d:6d:bb:92:61:72:14:1f:
de:53:a4:6a:fd:56:e1:b6:8a:c0:55:b6:0c:20:91:cb:3f:3a:
45:cc:38:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:22:07 2025 by rpki-client