Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/04B0D250076211EFB14D3B12C4F9AE02.roa
File: 04B0D250076211EFB14D3B12C4F9AE02.roa (raw, json)
Hash identifier: qJIeqrgvCSqMs8+P3KeM1F5hY5WT3B+IFIjWWFc0WLk=
Subject key identifier: 60:75:6C:03:2D:4D:C7:A4:77:B4:87:B7:A7:BD:57:42:BB:69:39:15
Certificate issuer: /CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902
Certificate serial: 0A
Authority key identifier: B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/04B0D250076211EFB14D3B12C4F9AE02.roa
Signing time: Wed 01 May 2024 02:25:04 +0000
ROA not before: Wed 01 May 2024 02:25:04 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 917
IP address blocks: 103.23.172.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A3F5D
Validity
Not Before: May 1 02:25:04 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6631a800-1f3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c4:a3:b8:c2:76:f0:bc:2c:0f:cb:cf:19:d4:
8d:12:b7:a5:73:bc:55:57:cf:5c:5b:7b:c1:95:d3:
87:55:4f:01:a6:d0:85:08:63:dd:18:2e:87:33:09:
2e:bd:7e:60:09:a8:ea:7a:17:f1:d7:9a:b7:50:14:
ea:0d:cd:6d:46:95:a3:95:f9:ee:bc:75:e5:31:4d:
5d:c1:6f:12:5d:5f:91:b8:f7:cf:c7:c5:49:1c:90:
00:4e:73:2f:51:8f:0b:d5:39:ea:ca:28:99:ae:cf:
36:9d:1e:52:4b:29:ad:5e:7e:cb:7d:2c:57:ce:dd:
b2:5d:ed:46:ef:3e:a4:6e:c9:a8:e8:25:45:65:fd:
b6:76:b2:41:05:05:db:0e:f1:67:cc:c7:68:15:92:
66:c8:e8:d7:32:67:31:8d:21:02:99:c8:ed:1a:3d:
f1:f9:29:76:54:5e:eb:7e:9e:c5:5b:e2:1a:c3:06:
99:0d:59:55:b2:61:56:2f:d3:db:02:56:83:39:af:
36:58:aa:16:c3:9e:e8:fa:ea:41:34:c2:51:47:4c:
d3:4e:66:86:8f:7c:3b:68:ba:ec:46:18:5b:f9:5a:
71:67:41:6b:24:c2:bd:e7:ad:c0:2d:62:69:e5:c4:
96:ee:75:9d:b8:11:7e:a4:d8:ad:c7:4a:b0:13:dd:
bd:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:75:6C:03:2D:4D:C7:A4:77:B4:87:B7:A7:BD:57:42:BB:69:39:15
X509v3 Authority Key Identifier:
keyid:B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/04B0D250076211EFB14D3B12C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.23.172.0/23
Signature Algorithm: sha256WithRSAEncryption
67:c4:33:24:7b:e0:27:1b:fb:ac:0b:71:80:17:a6:db:45:da:
2f:1b:d8:d8:e4:d6:e8:54:aa:07:a8:9f:49:db:9a:74:f5:09:
b3:96:47:d3:7b:f8:35:d0:81:50:59:dd:9f:20:84:1a:d6:75:
ea:ef:b6:92:e2:69:77:4c:20:9f:53:8c:a9:0b:2f:29:57:9d:
6f:86:9d:a0:5a:66:a8:eb:4e:b4:18:cb:22:81:64:f1:54:75:
34:72:44:a9:76:87:54:4e:ff:a3:3d:45:73:80:4d:7c:6c:aa:
de:a8:86:f2:e1:be:02:d6:5c:7f:94:51:de:fa:7a:18:a4:dc:
ab:9c:dd:9f:80:af:e8:d5:5d:66:79:0b:3b:9c:bb:e8:c6:62:
d3:22:f1:6d:ba:30:68:57:48:64:58:b9:9f:d5:7b:3c:ba:a6:
f3:4d:b9:1b:9b:6c:fc:bd:09:a6:a7:2a:4e:e5:bd:a2:91:57:
72:45:90:76:a4:f2:28:a3:3b:83:e2:09:99:a8:f6:88:59:15:
5e:36:f8:f6:01:f9:41:bd:7d:d3:eb:6c:fe:cb:20:35:36:2f:
ee:b9:1f:5d:5d:6a:36:92:a9:76:60:32:c0:6b:ac:d0:d0:9a:
bb:0f:c1:c8:f4:66:1c:a7:ad:96:90:e1:9b:bd:03:42:6c:60:
75:b9:be:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:53:17 2025 by rpki-client