Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/51644C34EFCC11EDA71A846BC4F9AE02.roa
File: 51644C34EFCC11EDA71A846BC4F9AE02.roa (raw, json)
Hash identifier: HSV6e67BTYK6Kl7/KI6J5A6sgeOBal7HKGByIpYebMM=
Subject key identifier: 7D:7B:03:B8:26:8A:80:E0:21:29:DD:0D:52:81:60:97:07:A2:1D:24
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 45F0
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/51644C34EFCC11EDA71A846BC4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:34:32 +0000
ROA not before: Thu 05 Sep 2024 03:34:32 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 150841
IP address blocks: 103.161.36.0/23 maxlen: 24
2001:df2:4d40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17904 (0x45f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:34:32 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d926c8-4aed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f2:8f:91:dc:97:a5:de:a2:f3:5a:d9:58:9e:
c7:d3:20:82:e7:53:8a:47:1d:e3:78:ee:ab:b9:1a:
c3:15:27:98:4e:2a:88:71:a1:56:4d:90:be:21:83:
42:7c:07:2b:75:67:47:f9:14:fa:9d:5c:42:19:c8:
02:de:ff:61:9c:c4:b2:e0:d7:b3:5a:07:fa:6d:6c:
28:8e:fa:83:7e:97:ff:dd:c9:b7:9f:34:65:4a:9c:
f2:14:04:67:a2:98:fa:60:1f:e3:2a:22:06:05:09:
04:45:f6:4f:9a:39:96:c1:df:16:9e:12:66:cd:47:
99:1b:df:65:9f:6f:45:a0:ea:51:af:06:91:5e:0d:
80:ea:0f:8b:8d:1c:57:fd:d9:63:e5:d6:c4:6e:91:
69:c6:c7:9d:a9:40:08:6e:b7:b6:02:09:56:2a:53:
ea:73:e0:16:61:94:f9:60:b6:d1:4c:6f:a3:e1:49:
44:62:4a:0c:3c:84:2a:8a:6f:f2:ca:d8:d1:68:14:
e4:50:fd:01:ea:b8:42:39:be:c3:3f:77:33:05:ed:
dc:78:95:a3:af:19:eb:9e:42:8a:05:96:7a:ff:fb:
a0:a4:ec:f6:5c:22:21:6c:4b:34:6d:cc:e4:c1:ba:
cb:a3:15:d1:89:ea:a4:a5:1c:fe:26:86:89:dd:9d:
e8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:7B:03:B8:26:8A:80:E0:21:29:DD:0D:52:81:60:97:07:A2:1D:24
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/51644C34EFCC11EDA71A846BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.161.36.0/23
IPv6:
2001:df2:4d40::/48
Signature Algorithm: sha256WithRSAEncryption
7e:7b:c3:52:bd:99:23:53:41:7a:35:a3:18:59:87:71:12:b4:
e6:d7:d0:cb:10:a8:66:cd:f8:86:d1:9d:dd:d6:36:30:b3:93:
d7:ab:10:d5:3d:a3:1c:fd:32:02:4b:76:b1:94:eb:cf:f5:77:
08:ca:a7:f3:13:80:2e:e5:d9:25:87:ac:67:27:0d:fe:a9:53:
8f:1a:80:0f:d6:88:94:21:d7:d4:88:8c:c7:b4:65:e2:9e:e1:
90:ae:68:55:93:3b:a1:3a:6a:42:74:5a:23:19:54:d5:a4:79:
db:17:21:94:ba:47:b7:54:4f:f8:3a:5d:7d:45:55:a8:4b:5b:
c2:37:86:51:20:7b:64:47:24:d8:59:6b:a1:7d:6d:f4:a2:66:
95:f0:95:78:3b:b3:13:8c:f5:b4:63:8c:7a:d4:59:25:5d:b1:
66:dc:10:74:2a:38:f6:5f:2c:c3:7c:50:b7:a1:15:8b:7c:18:
15:ff:ed:35:9d:54:9c:72:d3:2e:d9:26:d7:72:cf:7e:10:ff:
7e:fd:1f:72:f6:4e:13:0b:e6:09:a6:db:64:f8:43:d2:21:2e:
87:cd:3d:3e:d0:c5:c5:de:b8:f2:25:90:85:86:f8:15:c8:6f:
c8:79:e4:d2:ae:1c:5b:71:db:1b:2c:8f:69:b1:4a:8e:20:9c:
1d:4b:f6:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:22:03 2025 by rpki-client