Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4154F0708CD311ED8825306EC4F9AE02.roa
File: 4154F0708CD311ED8825306EC4F9AE02.roa (raw, json)
Hash identifier: cClFJDzjDbUMLYSor/ZoJwlIgCjN7uJ6DwA109HexJQ=
Subject key identifier: 39:EA:FB:5A:B1:16:57:41:40:68:D3:11:EC:DD:2A:20:46:2D:E0:DE
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 45C5
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4154F0708CD311ED8825306EC4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:33:53 +0000
ROA not before: Thu 05 Sep 2024 03:33:53 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 149116
IP address blocks: 103.190.200.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17861 (0x45c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:33:53 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d926a1-e2de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:43:f7:65:af:21:90:65:22:16:09:8a:d9:e7:
1a:a7:08:f6:e4:6f:19:59:d6:68:43:be:53:71:f7:
47:ca:45:26:02:aa:4e:87:9f:e5:21:63:23:c5:60:
df:c1:ca:07:36:8c:ae:ff:2b:7e:b7:23:4d:ba:6b:
e8:1d:55:37:d5:f1:b1:7c:6c:14:ac:d3:2d:8f:87:
5a:9f:30:46:48:73:62:59:54:00:4f:b0:59:1a:e2:
8d:ae:ca:ed:c1:5a:bd:0f:00:26:c6:59:e8:ff:a4:
30:49:57:ef:56:ab:02:3a:01:a9:ed:93:c9:70:1e:
a7:7b:37:19:c8:01:64:05:41:2b:18:b1:c4:2e:65:
c6:6d:33:6b:71:99:a6:3f:53:21:99:2c:88:fb:45:
03:f3:e5:76:0e:31:17:9e:1a:a7:a5:cb:44:de:d0:
c8:41:e2:db:4c:c2:68:18:58:a2:9d:c0:95:49:4c:
7b:f7:12:1b:08:43:31:20:4b:ca:8d:93:5a:13:19:
06:83:b8:e7:71:89:a0:02:d5:74:62:e9:f8:4d:c8:
aa:ed:2c:01:a8:10:7d:09:02:78:f5:03:cb:55:19:
72:69:a5:b3:5d:15:1a:13:2d:a6:d3:3b:9e:51:dc:
1e:6c:06:15:0b:92:76:39:90:75:f0:97:af:b6:eb:
30:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:EA:FB:5A:B1:16:57:41:40:68:D3:11:EC:DD:2A:20:46:2D:E0:DE
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4154F0708CD311ED8825306EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.190.200.0/23
Signature Algorithm: sha256WithRSAEncryption
76:eb:14:23:15:90:d5:01:a4:d2:24:a5:80:23:1b:69:55:3d:
8c:dc:a7:43:9e:12:c4:82:26:fe:42:4a:62:1b:78:94:b8:cd:
e6:6b:0f:3a:fb:65:74:b9:d4:38:12:3d:0e:b0:07:65:73:59:
df:c8:c0:f2:a2:bc:03:d1:2b:6f:90:d0:dd:22:80:2e:e0:5e:
ff:b4:a3:a7:d3:4a:c5:a3:64:20:41:01:d0:37:c2:0d:34:98:
2f:51:21:d5:40:af:dd:bc:c2:99:12:2e:8e:63:d1:46:7b:67:
10:73:d3:2b:5f:49:77:03:53:93:08:b6:6a:dc:fb:e5:16:72:
11:22:ae:b8:ee:38:c4:8b:47:d4:ec:98:d4:be:f3:be:57:de:
c5:1c:23:ee:1b:6c:12:81:01:ac:54:66:1f:cf:6f:76:8d:f8:
bf:e8:3d:fe:a1:f5:70:fe:b6:8c:d3:49:49:90:4a:30:e1:72:
67:e2:24:30:fb:73:5d:7b:1c:fe:4a:d7:b0:61:32:ef:95:7e:
8f:c9:68:2e:34:8b:55:17:36:d7:a4:af:23:39:41:ea:41:49:
0b:eb:4b:10:a8:f3:b2:5b:3e:db:22:a3:59:fc:d0:cc:b8:cd:
19:b6:12:17:97:26:d1:da:ec:f0:76:3a:83:cf:f3:3a:51:50:
9d:18:41:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:25:04 2025 by rpki-client