Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/748EB318941B11EE8175F764C4F9AE02.roa
File: 748EB318941B11EE8175F764C4F9AE02.roa (raw, json)
Hash identifier: CRQ28wGJUwGwptebR6miFPFPzPUPz1Wx2OCBzWg+K3U=
Subject key identifier: E8:9C:AF:12:98:F4:78:48:85:66:34:9D:29:A0:17:35:E8:CC:05:36
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 460A
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/748EB318941B11EE8175F764C4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:34:53 +0000
ROA not before: Thu 05 Sep 2024 03:34:53 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 150889
IP address blocks: 103.70.116.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17930 (0x460a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:34:53 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d926dd-34a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ad:ff:bf:24:81:94:5f:df:d6:22:06:59:5d:
c0:09:67:62:85:9a:91:0e:7e:a4:db:e9:fa:09:38:
95:59:12:cb:de:34:0e:42:59:ed:18:af:9f:db:28:
a6:a1:48:7d:fd:ca:e8:92:1a:4a:c7:33:c4:d4:ab:
87:b3:6a:e1:64:95:67:05:63:59:5e:fa:e9:2e:cc:
9a:c8:df:e0:a6:e2:65:ca:eb:61:be:b2:c9:0d:c1:
76:ec:8c:ad:7c:7b:57:af:18:b8:3d:01:f2:8e:f4:
98:84:95:2a:9c:ba:0e:15:1b:07:64:b3:be:8f:ec:
70:56:d2:34:52:92:5e:69:46:35:5f:99:26:e6:7c:
8d:82:78:c7:d0:21:70:7d:ea:64:cf:0e:32:73:43:
7d:ff:c8:e6:92:73:bb:83:07:d8:61:a2:6e:f5:ee:
4a:1f:db:7c:44:03:51:9a:6f:f6:67:34:a7:48:33:
a2:61:9f:a1:5d:09:ae:81:f3:11:0d:34:bb:51:4b:
c1:ef:06:05:fa:ff:d2:41:42:4d:b3:3e:e2:7f:78:
e0:cf:9a:50:d3:b2:36:bc:b6:e5:f0:43:72:62:dd:
21:a9:29:f3:9d:75:f5:8d:9b:43:43:de:18:d1:b2:
63:4a:de:ad:ed:0c:34:92:48:21:81:2a:37:56:ec:
31:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:9C:AF:12:98:F4:78:48:85:66:34:9D:29:A0:17:35:E8:CC:05:36
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/748EB318941B11EE8175F764C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.70.116.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:7a:86:30:d4:81:38:e1:5b:44:94:0c:93:4e:e0:11:46:8d:
24:18:0a:f3:f2:77:fd:50:7b:e6:05:74:6e:f1:6d:d0:d0:04:
8f:6f:48:ea:5a:a0:08:64:99:74:44:24:ec:4a:56:f4:f9:ac:
bb:8d:ed:84:41:6d:49:48:2c:be:dd:68:6d:95:d9:9d:59:7f:
fb:40:11:4d:c9:b2:25:b1:61:f8:a9:44:e9:a9:18:d8:48:3e:
bd:bc:12:c1:aa:a5:26:79:15:7a:ef:87:52:58:9b:4d:fe:d9:
ec:ed:77:d9:01:52:65:de:27:55:0f:14:3c:7a:c9:90:a4:2a:
6a:35:28:78:b9:83:5b:4b:0d:ab:aa:cc:2a:61:12:40:c2:e9:
c1:7d:bf:f5:86:d8:ee:b2:6f:e9:52:d5:ba:6c:c5:b9:d4:85:
07:13:55:35:ac:d8:de:1f:80:ab:20:3a:4d:67:4f:ca:70:95:
8a:e8:0e:83:0a:0c:99:7e:00:08:a6:80:02:b8:52:4d:8b:ec:
ef:a3:82:77:64:fa:f9:b8:6e:6d:6e:d7:ad:cb:25:00:02:a8:
95:fe:2e:20:bc:7f:d2:c1:22:1f:99:90:b7:5b:34:3b:af:3e:
68:fc:2a:42:4d:a2:b7:9b:80:e7:a3:ee:ff:15:17:d9:3d:fa:
9d:17:c9:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:41:15 2025 by rpki-client