Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A489D/200D3E6A6FC011E9A07D1B12C4F9AE02/AECBAA0A6FC111E9B6D55F15C4F9AE02.roa
File: AECBAA0A6FC111E9B6D55F15C4F9AE02.roa (raw, json)
Hash identifier: qsfSEM2m12MNzg/uNS2BvF/NYbvImYpNnU3WWBBzmTI=
Subject key identifier: E8:D7:33:A1:84:FF:4A:C6:28:4C:42:26:87:CB:FE:58:9C:32:59:BF
Certificate issuer: /CN=A91A489D/serialNumber=1F281EFA405C8BBB3D9DF8D581D8C5831AA19AE4
Certificate serial: 0F0B
Authority key identifier: 1F:28:1E:FA:40:5C:8B:BB:3D:9D:F8:D5:81:D8:C5:83:1A:A1:9A:E4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hyge-kBci7s9nfjVgdjFgxqhmuQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A489D/200D3E6A6FC011E9A07D1B12C4F9AE02/AECBAA0A6FC111E9B6D55F15C4F9AE02.roa
Signing time: Thu 30 Jan 2025 18:06:18 +0000
ROA not before: Thu 30 Jan 2025 18:06:18 +0000
ROA not after: Mon 02 Jun 2025 00:00:00 +0000
asID: 136952
IP address blocks: 103.80.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3851 (0xf0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A489D
Validity
Not Before: Jan 30 18:06:18 2025 GMT
Not After : Jun 2 00:00:00 2025 GMT
Subject: CN=679bbf99-2509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ff:92:08:88:1e:51:41:ad:35:c4:8a:5b:af:
fd:5d:39:57:b8:42:e0:bb:76:b4:f0:0a:25:a8:b5:
9a:67:b4:6f:64:82:da:20:c8:41:78:fa:8f:48:b5:
a7:56:8e:5e:1a:6b:75:82:d6:65:bd:f4:cd:25:72:
69:ae:3c:af:97:8f:1f:28:1f:9b:98:50:dc:f4:23:
59:2e:27:2a:c7:b2:67:08:24:6b:a0:e4:38:bf:1b:
9c:31:1c:8a:ab:59:d0:89:4d:8c:80:a1:5a:07:15:
23:67:25:bf:56:00:cd:02:c0:0c:2b:c6:07:1f:76:
bf:37:99:b8:d9:62:33:12:55:a0:09:d2:2a:a6:0b:
cf:41:64:04:be:0b:a7:f6:27:5d:e9:69:e4:d4:66:
51:e6:a7:26:7e:ca:f1:e2:f7:f6:e2:84:5f:4d:5a:
66:31:29:94:e0:66:18:fb:71:2c:3c:23:e6:0e:05:
73:3c:77:97:02:9b:06:89:59:40:a8:6e:77:fa:76:
53:20:48:ce:7c:ba:dd:7d:0f:12:02:e7:14:ec:89:
ca:69:06:fc:fe:7b:a7:d7:af:17:55:d4:3b:3e:38:
39:1c:c9:d2:f8:e3:38:dd:60:f3:30:2f:c3:cf:fd:
a4:0b:ed:02:0f:c6:ca:75:f9:fa:d2:8b:64:52:f1:
1b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D7:33:A1:84:FF:4A:C6:28:4C:42:26:87:CB:FE:58:9C:32:59:BF
X509v3 Authority Key Identifier:
keyid:1F:28:1E:FA:40:5C:8B:BB:3D:9D:F8:D5:81:D8:C5:83:1A:A1:9A:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A489D/200D3E6A6FC011E9A07D1B12C4F9AE02/Hyge-kBci7s9nfjVgdjFgxqhmuQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hyge-kBci7s9nfjVgdjFgxqhmuQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A489D/200D3E6A6FC011E9A07D1B12C4F9AE02/AECBAA0A6FC111E9B6D55F15C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.80.39.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:e7:24:c2:a9:71:11:85:c6:9f:42:d2:5b:20:aa:b5:84:88:
1f:65:d0:bd:db:61:7f:01:c7:65:24:6e:65:83:fb:5f:7f:2f:
7f:19:15:50:f7:ef:db:6f:a4:d2:61:6c:62:73:7e:72:5d:1f:
fc:e0:ae:3d:54:91:f6:b5:f6:52:c5:a5:73:2c:cc:e0:e4:2d:
5b:f6:65:28:1b:8a:7a:0b:85:7f:3a:68:22:ce:fc:57:8e:25:
18:91:f2:9c:6f:a8:86:f6:11:44:4b:d3:bf:5d:95:e2:ba:53:
18:76:49:c3:78:6c:97:0d:42:f0:0c:a7:3a:e0:28:68:7d:be:
f4:6b:26:d2:74:eb:a2:c2:c1:14:a9:11:ac:eb:cd:6c:1a:fb:
3e:b1:d2:ec:69:8d:20:a2:c6:98:d0:57:ab:01:40:be:e7:c9:
ed:6a:b9:ba:0a:e1:5e:40:4d:80:bc:6b:cd:26:02:2b:b7:7b:
07:4a:ce:a7:c7:dc:48:03:7a:60:86:d1:47:25:58:f7:7b:f3:
2d:2e:6a:fc:d2:e0:82:5d:60:14:60:d3:d7:9c:ae:a3:64:20:
4a:1f:27:4f:cc:b9:52:4d:98:fa:68:5d:5c:1b:e1:7a:62:af:
30:c3:fa:ac:db:ab:aa:01:fc:d3:28:da:70:3e:a0:dd:b3:00:
5e:43:6e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 19:06:29 2025 by rpki-client