Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/31D2BFEE839311EE89CA110FC4F9AE02.roa
File: 31D2BFEE839311EE89CA110FC4F9AE02.roa (raw, json)
Hash identifier: qvH3U1LJQWTX5kdUptsUcsaO7SL2Ki9qBh09K+OsDcQ=
Subject key identifier: B9:33:A4:18:50:79:65:36:AA:FD:B5:71:40:C0:39:09:85:D8:57:94
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4620
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/31D2BFEE839311EE89CA110FC4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:35:14 +0000
ROA not before: Thu 05 Sep 2024 03:35:14 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 151866
IP address blocks: 103.93.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17952 (0x4620)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:35:14 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d926f2-2695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:af:8f:d9:5d:6e:dc:c0:cc:52:66:fd:d5:05:
33:ab:04:75:9e:8f:ec:9b:37:d4:72:3e:40:72:d7:
d8:dd:50:4e:46:10:d3:a4:c6:f9:7f:80:33:f7:99:
68:58:c7:52:3a:25:b0:e7:24:44:85:c4:be:ad:9f:
d2:0c:96:47:1f:6a:05:b8:88:3b:da:f5:15:db:ac:
74:da:4b:b0:18:df:b8:e8:00:01:be:67:92:e9:e3:
24:1b:e3:9f:51:19:16:b9:2e:af:7c:00:b3:9b:05:
ba:d8:d7:8a:bf:1b:42:ee:a2:8e:74:82:4b:12:24:
00:87:40:94:d5:d6:73:cf:51:d4:ad:2a:31:d5:73:
b8:3d:85:93:48:30:82:fa:86:c5:d8:4e:14:6e:d0:
b8:41:af:b7:c5:d0:94:d5:92:98:40:35:22:8a:68:
25:be:e3:18:50:83:b9:1f:7f:0b:99:65:64:4a:c9:
6a:34:02:b6:c9:18:b6:44:5e:9d:8a:47:9d:60:77:
07:75:da:7b:57:bd:0e:3d:22:d6:84:3d:7d:03:67:
60:34:9b:11:88:e2:e3:f0:ab:3f:ee:fd:d9:fc:65:
aa:f6:07:90:a9:e9:71:ed:41:fb:c9:c9:13:d8:85:
51:ab:d3:3a:f9:49:d1:0c:a9:99:33:f6:16:2b:fd:
a9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:33:A4:18:50:79:65:36:AA:FD:B5:71:40:C0:39:09:85:D8:57:94
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/31D2BFEE839311EE89CA110FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.93.92.0/24
Signature Algorithm: sha256WithRSAEncryption
72:46:c5:d7:4e:65:b0:89:09:d3:0e:53:74:b2:b4:37:71:99:
a1:de:62:94:db:1a:7a:5b:ee:84:17:60:4f:a6:de:ac:e0:88:
49:b5:80:3f:79:46:18:42:48:31:c5:f1:ae:56:6b:bd:6b:be:
34:ad:3e:a6:cb:0c:13:fb:97:47:0c:80:79:f2:04:e5:0c:b0:
24:07:b9:ac:be:2b:72:05:10:4c:1c:91:bb:7c:50:2f:db:99:
50:fa:dc:00:96:d0:27:6e:63:2f:4f:b0:09:9b:1e:07:1b:90:
a9:2b:d1:90:cd:33:ae:5e:6a:35:33:5d:c0:f4:0e:ce:75:51:
ce:a7:e5:85:9d:cd:c2:59:49:34:23:41:4e:af:eb:3f:c6:49:
78:5b:88:35:31:86:f9:96:ee:75:5f:89:48:1e:0a:22:5b:2b:
42:f9:ed:ac:60:35:40:dd:e3:bd:4a:11:8f:65:6e:18:55:3f:
a0:82:43:2a:ee:06:1e:3f:80:9b:41:da:e7:b9:12:42:d5:8f:
95:73:a0:5a:81:a7:24:16:a2:fe:46:a2:79:1a:28:79:ab:8b:
4d:47:c1:e4:b5:94:f3:b8:ca:63:c8:5a:ef:fa:84:63:87:61:
d0:26:8c:f7:65:4a:d5:98:29:7e:2c:74:bb:d2:2e:96:30:4c:
58:ce:28:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:38:11 2025 by rpki-client