Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/88A00388193111EB9E0A6A49C4F9AE02.roa
File: 88A00388193111EB9E0A6A49C4F9AE02.roa (raw, json)
Hash identifier: u3WzgpaL6M5sXXo26nPKh9UHSPFb46VhuO2Q5Fo8Shs=
Subject key identifier: 08:21:48:52:72:7F:A7:53:1F:0B:1A:01:52:5B:CF:1D:E2:5A:63:2C
Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099
Certificate serial: 0DC4
Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/88A00388193111EB9E0A6A49C4F9AE02.roa
Signing time: Fri 06 Sep 2024 18:37:06 +0000
ROA not before: Fri 06 Sep 2024 18:37:06 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 41378
IP address blocks: 103.142.140.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3524 (0xdc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4C60
Validity
Not Before: Sep 6 18:37:06 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66db4bd2-4523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e1:ae:49:3c:71:60:c3:73:5f:fd:13:b1:7d:
c3:81:f5:a0:0e:6a:6d:4f:e2:90:cd:54:ce:61:b8:
5a:08:76:d6:e4:e4:9c:ad:2b:94:ab:c8:5a:dd:27:
ae:d4:d3:de:d8:5f:32:6d:ce:ea:d8:fa:ed:06:a5:
8f:3b:33:49:4a:c0:ae:8f:a5:4f:fa:64:38:d2:59:
59:41:39:dc:ef:77:72:91:2f:7e:67:1f:31:c7:29:
7e:3d:27:85:92:2e:cf:90:d6:29:85:c5:f9:69:c4:
c1:03:28:ee:ff:fc:f6:67:1a:56:0d:b3:cb:5c:5c:
e1:79:3b:85:3f:32:ce:7d:f8:70:5a:f2:44:40:18:
2f:e9:5c:05:6b:58:08:02:6c:9c:c2:6f:6d:30:13:
8e:7e:54:e1:d8:83:a4:37:3f:e4:a7:b0:d1:5b:67:
01:ab:90:57:e2:e9:3f:4c:86:cf:cd:19:b8:99:79:
73:ef:00:c1:1c:dd:e1:62:0c:b8:2e:14:49:49:39:
f4:91:bb:43:b2:5d:73:52:e6:70:c5:69:8d:ca:e5:
90:38:ce:85:2e:e4:ec:40:8c:37:58:19:a7:cd:68:
15:80:16:f2:49:a7:5a:76:e8:77:f8:ac:49:c5:69:
b8:b8:12:94:8d:54:fc:af:d4:1d:ac:a7:6e:3c:55:
fe:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:21:48:52:72:7F:A7:53:1F:0B:1A:01:52:5B:CF:1D:E2:5A:63:2C
X509v3 Authority Key Identifier:
keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/88A00388193111EB9E0A6A49C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.142.140.0/23
Signature Algorithm: sha256WithRSAEncryption
68:3f:18:8e:bc:a0:20:08:07:da:3e:2f:9a:35:0a:64:b7:17:
b5:cc:e5:2a:46:42:48:1e:ec:65:2e:0e:03:be:0b:52:b9:a7:
4a:8d:d1:a9:eb:8c:88:90:e6:64:5b:59:75:a5:b8:d5:e5:b9:
28:ed:42:7a:d1:c9:c5:fc:d9:51:8c:9b:28:02:ed:92:99:ea:
74:ec:a7:39:e1:b1:cd:9a:47:d6:6d:d5:f2:a9:c9:5c:cc:91:
32:99:a3:ba:da:c6:85:56:c0:60:40:94:22:44:cc:bf:a8:91:
13:c4:f7:fb:da:ce:54:da:b1:07:34:f7:38:9c:68:6c:8a:31:
05:60:6d:4a:1d:75:0a:a4:6a:02:38:3d:69:1a:36:49:6b:d2:
d4:04:81:fb:1f:f7:27:2c:72:97:0f:b7:b6:28:f6:47:69:a6:
87:c1:e2:88:01:c0:c9:eb:e3:a9:7f:37:1f:ea:03:36:df:b9:
35:a7:02:0c:b3:a4:56:60:9a:0c:42:72:23:cd:09:e7:6d:67:
b9:4b:ba:8e:26:cb:03:32:a9:9f:ca:09:30:5a:13:af:33:05:
eb:53:70:ba:78:b9:d7:f3:a8:51:dc:39:da:ef:28:15:5e:d8:
61:68:e6:5a:bb:2b:72:6d:b6:ab:35:2e:7b:3c:a8:d5:17:a3:
ac:b0:90:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 19:52:27 2025 by rpki-client