Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/13E4471298B711EE99FD1F09C4F9AE02.roa
File: 13E4471298B711EE99FD1F09C4F9AE02.roa (raw, json)
Hash identifier: /ZzSx5BufcsBFJm8hzU4SO+vyDuIxcR/d9CCuElSRT0=
Subject key identifier: 9B:78:86:55:F5:9E:41:6D:54:47:31:E4:49:2D:76:22:79:7E:26:74
Certificate issuer: /CN=A91A3526/serialNumber=05FD2D519D40CB208937BF8A8E463E6D842CC07D
Certificate serial: DD
Authority key identifier: 05:FD:2D:51:9D:40:CB:20:89:37:BF:8A:8E:46:3E:6D:84:2C:C0:7D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/13E4471298B711EE99FD1F09C4F9AE02.roa
Signing time: Thu 23 Jan 2025 03:57:41 +0000
ROA not before: Thu 23 Jan 2025 03:57:41 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 141047
IP address blocks: 103.160.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221 (0xdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A3526
Validity
Not Before: Jan 23 03:57:41 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=6791be35-4591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b2:09:0f:f2:4f:7f:cb:15:df:e5:de:d3:d2:
fb:1a:9d:c9:54:df:cc:9a:e7:3a:9b:48:4d:9b:c3:
0d:34:f4:c4:a4:ba:df:bb:b5:4c:48:b0:de:02:00:
19:03:61:51:cb:25:77:ce:f6:92:5a:af:77:4b:2e:
24:80:99:a7:5c:c5:18:52:e1:a9:52:05:b2:48:59:
2d:a8:43:40:a5:65:d7:df:e9:79:1e:d2:d5:b1:2a:
91:c6:ec:7b:32:5f:71:82:c1:ce:94:af:4b:65:2c:
1b:d3:ab:7b:50:53:79:42:51:81:21:2f:b4:24:65:
c9:b8:ba:bf:05:2e:e5:b3:7a:45:06:a7:a8:6e:9e:
07:e0:d1:8a:31:2f:94:57:3b:48:41:b6:78:45:bf:
f2:75:76:40:4b:34:54:2e:c5:49:9e:78:dc:9d:36:
7a:26:ac:e7:37:ae:a9:1f:14:1b:3d:36:0d:5b:b9:
ff:84:6e:37:40:c9:6b:23:8e:d2:76:ef:3e:b4:ea:
b7:2d:f8:a3:dd:cc:71:ea:34:60:28:5b:81:63:21:
ba:9d:ef:d4:b4:35:2b:1b:31:d3:b0:a2:7e:78:e3:
bc:f9:3e:58:f3:97:e4:c4:49:c2:d2:01:35:67:8e:
74:55:c9:9b:ea:ff:7d:bf:ce:bc:19:f1:d8:21:cf:
68:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:78:86:55:F5:9E:41:6D:54:47:31:E4:49:2D:76:22:79:7E:26:74
X509v3 Authority Key Identifier:
keyid:05:FD:2D:51:9D:40:CB:20:89:37:BF:8A:8E:46:3E:6D:84:2C:C0:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/13E4471298B711EE99FD1F09C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.83.0/24
Signature Algorithm: sha256WithRSAEncryption
28:da:c5:5f:1a:98:c0:87:90:53:80:17:e4:66:cc:9a:b3:95:
1b:44:f8:90:8f:c4:d1:ea:5f:5d:4d:3a:79:43:b3:16:86:17:
31:2a:0e:09:5a:c9:d2:32:6e:5d:2d:51:38:a5:9c:18:d5:0f:
f3:91:d5:2d:41:ee:58:48:31:3f:02:50:8c:a4:3a:55:cd:68:
22:c1:0e:e1:8e:f7:c2:9c:6a:46:c1:a6:60:1c:9d:6d:fa:c0:
9b:6f:d3:29:31:51:40:d3:88:69:d2:f6:20:c6:9b:06:1a:de:
92:c6:23:8f:52:ae:0e:fe:86:ed:a5:2f:ae:bb:6c:90:e7:44:
aa:ca:de:1a:4c:8c:f1:5a:48:20:dd:91:e8:5e:37:88:cf:a6:
d6:a7:bc:39:22:3d:9e:da:7d:28:aa:f4:8c:59:b2:bc:ea:5d:
df:03:79:be:73:e3:45:fe:11:c4:b1:11:bb:52:78:96:3a:dd:
66:6b:a1:dd:bb:9c:4b:36:3c:c9:6d:82:e2:70:13:4a:58:ca:
ce:f7:d4:44:9b:1e:5d:20:b9:e4:e7:63:4b:65:73:c7:1e:1b:
b9:a3:61:6f:13:12:45:5a:2e:af:c8:58:44:51:2a:3c:18:58:
01:25:ef:22:d3:eb:ed:8b:f9:32:d5:b1:e7:b5:fd:d8:ef:6e:
a8:66:55:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:25:43 2025 by rpki-client