Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7FA6B92E8AC711EE82F53656C4F9AE02.roa
File: 7FA6B92E8AC711EE82F53656C4F9AE02.roa (raw, json)
Hash identifier: lh8s2ERMKvVRl9dj7AzvVAzE2VvZPpjKfz9r5ZLCl5k=
Subject key identifier: 49:85:72:C8:88:25:63:77:B8:66:A8:33:C7:61:7C:12:9F:11:51:74
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4609
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7FA6B92E8AC711EE82F53656C4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:34:52 +0000
ROA not before: Thu 05 Sep 2024 03:34:52 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 150888
IP address blocks: 103.69.100.0/24 maxlen: 24
2401:3220::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17929 (0x4609)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:34:52 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d926dc-edcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7f:30:44:3b:df:be:71:d6:f4:5e:8d:5c:69:
38:cf:ac:19:72:7c:a7:29:3d:89:a2:9f:8c:d4:b2:
f0:74:0e:a5:c8:c8:55:1a:36:87:99:07:b2:b9:04:
ad:4c:9f:e4:39:61:23:f7:65:3e:8b:57:dc:72:63:
b2:65:18:09:3c:ec:32:8d:7b:87:1c:75:e9:6b:25:
2c:11:38:53:9e:07:e6:50:4d:d4:ad:4d:61:1c:7a:
d8:4a:20:0f:f3:e1:10:7d:cf:39:d3:92:2e:43:ca:
ee:ae:f5:09:d3:1a:19:e5:25:74:6f:4c:a3:3d:2b:
06:98:4d:93:61:59:16:d0:b3:91:13:e1:a6:19:e7:
bf:86:f8:31:89:9c:04:05:89:cd:6d:c8:15:07:61:
cd:24:b6:d6:50:ca:58:f9:76:2c:0c:26:ac:a7:ea:
91:f3:ac:48:5c:a2:61:06:97:65:84:7c:c1:b5:d9:
83:72:a0:92:5b:10:c2:7f:56:f0:79:3a:82:b7:41:
ad:9e:89:d1:59:5a:14:34:5c:10:aa:96:b8:f1:f0:
f0:24:f1:02:3a:16:7c:f8:68:52:a7:4b:da:72:da:
02:9b:69:5a:79:56:44:f6:9f:51:ff:ee:6d:59:81:
35:c0:93:fb:7f:c9:1e:85:21:2d:c1:57:66:9d:6e:
83:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:85:72:C8:88:25:63:77:B8:66:A8:33:C7:61:7C:12:9F:11:51:74
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7FA6B92E8AC711EE82F53656C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.69.100.0/24
IPv6:
2401:3220::/48
Signature Algorithm: sha256WithRSAEncryption
6c:a7:99:3b:94:49:84:41:bb:a2:f5:04:d3:14:70:30:05:ec:
93:8e:2f:41:89:f3:2c:85:8c:bd:8b:ba:5a:fb:b8:73:d8:38:
30:67:27:f6:16:28:29:fb:11:96:79:88:4f:7f:9a:b6:c2:5c:
0e:45:ca:c7:bb:6e:40:f7:d8:de:39:e0:cf:bc:db:35:be:0e:
44:c9:23:0f:c6:14:7c:7e:f3:e3:a6:66:e4:22:f3:c4:7e:b9:
aa:f1:bb:98:97:56:25:be:fd:a0:5e:c7:47:bb:dd:79:4b:65:
33:c0:09:24:6f:52:a3:ce:85:1a:30:94:5b:bc:a6:f0:0f:7b:
04:51:cd:b0:0b:ab:5f:f0:13:55:49:fa:45:97:45:5d:5a:19:
67:fa:f1:c5:dd:38:25:88:40:07:b1:17:31:0a:d9:a3:10:db:
cd:67:da:0e:4c:16:ef:fc:4d:34:3c:79:03:71:5f:a2:2f:d3:
4b:56:32:90:c4:b5:3c:88:37:b0:0c:be:47:bb:28:28:2b:df:
a3:b3:bf:ec:c5:5a:ba:be:91:41:f1:45:bf:9f:e4:95:ad:b0:
36:a5:62:67:70:5e:41:7d:c6:a7:6f:b4:a1:90:f2:7d:ab:a7:
dd:b0:d0:7e:57:8b:f8:b7:fc:ad:d4:d8:18:4e:82:92:3a:47:
7a:5d:b5:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:16:57 2025 by rpki-client