Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/6303AF646F8911EA92087E39C4F9AE02.roa
File: 6303AF646F8911EA92087E39C4F9AE02.roa (raw, json)
Hash identifier: 9EGc7zo1rzNKxXV6Dja051NIq2qalXgFXf2PEqhm154=
Subject key identifier: F2:7E:76:8C:40:E1:C6:90:99:CE:EB:05:34:0A:61:24:AB:29:7D:A3
Certificate issuer: /CN=A91A308F/serialNumber=28682EC723CCE336185B33302013FF0060DDE09A
Certificate serial: 0983
Authority key identifier: 28:68:2E:C7:23:CC:E3:36:18:5B:33:30:20:13:FF:00:60:DD:E0:9A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/6303AF646F8911EA92087E39C4F9AE02.roa
Signing time: Tue 16 Jul 2024 20:38:01 +0000
ROA not before: Tue 16 Jul 2024 20:38:01 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 4913
IP address blocks: 103.27.160.0/24 maxlen: 24
103.27.161.0/24 maxlen: 24
103.27.162.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2435 (0x983)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A308F
Validity
Not Before: Jul 16 20:38:01 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=6696da29-2bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:8c:0b:9b:af:5f:ca:08:42:3b:13:7f:e8:60:
8f:dc:44:10:a1:e1:36:26:0a:8e:11:27:3c:78:91:
40:82:e9:b1:a5:55:77:d2:22:fe:f7:c5:a9:79:e3:
76:7d:0c:07:c1:81:86:9d:fd:25:54:a7:23:40:2c:
59:3c:a4:62:5b:18:53:2e:61:0f:97:27:9e:41:68:
cc:ae:f9:64:f5:9d:41:fd:ce:5b:3c:20:a8:ba:4f:
43:07:48:d7:72:d3:78:7d:a1:59:38:74:22:74:a3:
9d:eb:17:42:8e:41:70:13:7f:86:49:87:cd:73:e7:
09:64:20:74:97:c6:23:32:48:bd:2b:5f:3c:d6:a7:
51:84:16:95:2b:d4:f0:88:f6:42:15:9a:59:2f:88:
a3:20:de:a4:50:49:27:1f:51:e6:59:22:37:9f:ad:
4d:60:5f:29:b0:8b:75:af:79:bd:67:08:e8:53:f4:
0d:87:45:b5:a7:60:17:77:fc:e1:36:e1:ef:e5:00:
60:41:32:5c:9f:ae:80:83:36:0e:5f:2f:e5:85:1b:
a4:7f:2b:68:3d:e3:88:4e:a8:a9:a3:df:38:1c:dd:
7a:7e:67:12:9f:23:16:f5:6d:54:67:5b:59:44:c4:
7e:de:0d:57:49:2c:98:ee:40:24:80:4e:82:f2:7a:
d9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:7E:76:8C:40:E1:C6:90:99:CE:EB:05:34:0A:61:24:AB:29:7D:A3
X509v3 Authority Key Identifier:
keyid:28:68:2E:C7:23:CC:E3:36:18:5B:33:30:20:13:FF:00:60:DD:E0:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/6303AF646F8911EA92087E39C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.27.160.0-103.27.162.255
Signature Algorithm: sha256WithRSAEncryption
97:ab:18:ec:70:b4:23:f4:f4:f1:7d:b7:e7:f1:17:d8:a5:24:
ff:cb:fb:0f:d5:4e:85:f5:df:ff:a8:a5:32:e0:df:32:68:13:
2b:85:8c:0b:ec:0c:ce:77:67:65:8c:1a:5f:3c:22:70:90:b6:
0d:6e:94:a3:76:30:94:f5:ba:d5:33:3e:44:88:bb:e6:e7:b9:
43:38:be:b3:47:03:9f:21:06:33:a1:93:d0:bf:d9:1b:60:a5:
51:e5:6f:37:2f:31:c4:50:0a:68:8d:dd:a9:cf:95:bc:d8:83:
db:ac:d9:fc:51:db:5c:8e:ab:05:97:08:8e:27:bb:04:c6:6a:
5a:87:5e:5f:86:2a:3e:30:04:96:08:91:9f:6d:54:c7:3d:03:
27:33:39:80:72:11:a0:8d:66:a7:87:23:f2:40:70:5c:7d:ce:
4f:fa:ed:11:5c:b8:d7:8b:77:c3:11:65:87:88:ff:1f:17:0b:
9f:80:75:4a:0b:48:ed:8a:c2:11:6e:1d:5b:ea:4a:cf:e0:e8:
e1:29:68:8f:91:37:c9:6a:22:de:72:5d:e5:60:a7:57:84:53:
df:06:47:2e:d2:d3:75:0f:fa:e8:0c:c9:3a:1f:af:7b:24:f0:
9f:83:ae:c8:bd:03:bc:85:b0:86:85:dd:9a:84:b6:e4:63:9d:
e1:63:af:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 02:34:04 2025 by rpki-client