Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/96FFC390A63411EDBAC85C27C4F9AE02.roa
File: 96FFC390A63411EDBAC85C27C4F9AE02.roa (raw, json)
Hash identifier: 9DS2lDd/KyIdXHH5WMibu5vaXcFm6nwDMx3E29rX3i4=
Subject key identifier: B9:7E:2B:80:03:C2:3C:A0:CE:ED:8A:11:BA:DA:AF:B8:B1:F8:52:33
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 45E2
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/96FFC390A63411EDBAC85C27C4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:34:20 +0000
ROA not before: Thu 05 Sep 2024 03:34:20 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 150813
IP address blocks: 103.67.162.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17890 (0x45e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:34:20 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d926bc-ebb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:64:7f:a4:ed:18:76:4e:e0:4c:36:88:29:be:
77:d2:2f:66:6b:c1:7d:e7:5d:88:05:46:2d:ec:8d:
b8:86:78:15:47:04:60:b2:9e:68:b2:55:f7:69:9e:
86:06:71:f6:d6:91:33:84:db:37:94:4d:b2:c7:de:
14:1f:98:19:ef:cd:f9:07:03:49:d3:50:6b:7e:ac:
3e:37:b5:90:5b:be:df:0d:72:b2:2f:0a:27:e5:9e:
2a:72:72:a3:00:ed:7c:b1:13:e6:1c:33:e5:3a:ee:
8b:d8:e1:26:21:32:07:ec:44:57:fa:85:9a:d8:5c:
7a:9c:a9:49:0b:a3:71:83:d6:ce:74:3c:b1:9d:5b:
20:2f:4d:dc:9a:53:57:94:3e:de:77:0a:0f:e3:5c:
08:0a:fe:10:38:a5:1d:ab:e2:1f:e8:2a:75:49:7c:
e2:bd:6b:84:f4:88:e8:fa:65:5f:db:0a:d9:54:0a:
ce:6d:c8:b2:bb:8b:42:11:2e:16:61:c4:6c:e6:48:
49:90:06:5a:4d:b6:78:fb:1f:c7:cd:ba:be:4c:24:
f2:ed:1f:ce:f7:e5:40:aa:06:5c:cf:ac:ba:20:04:
08:d0:4c:bb:12:40:e5:69:77:c9:74:0f:71:aa:df:
d3:0d:8b:a8:7f:13:ea:b1:ff:1e:41:28:9c:4c:ca:
5c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7E:2B:80:03:C2:3C:A0:CE:ED:8A:11:BA:DA:AF:B8:B1:F8:52:33
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/96FFC390A63411EDBAC85C27C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.67.162.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:6f:ec:36:61:05:06:a2:10:2a:64:32:36:bb:fb:a1:5b:51:
ea:ed:cd:49:4f:50:c2:47:87:e5:f3:07:a2:bd:8e:56:52:97:
f8:04:c0:3f:4c:be:af:b7:5c:2f:da:9e:e7:10:37:47:ad:e8:
45:dc:09:f0:93:e5:11:e3:7d:b4:62:cd:32:41:d8:6a:ff:a8:
3f:9c:dc:c8:e8:6f:29:51:4a:aa:8f:0d:e6:b0:84:5b:3c:43:
ff:90:70:d5:a8:37:16:99:41:6d:ba:aa:f2:98:58:9c:7f:35:
ff:0c:cf:40:28:27:2f:37:a2:50:a4:96:9a:03:f2:1d:e4:38:
cd:f8:8a:63:ea:62:83:88:6b:e7:cd:b3:a3:dc:a8:2d:a3:c0:
4b:37:d6:fd:0d:cd:96:70:c5:ea:4d:bd:46:b2:96:29:f3:ad:
64:22:57:46:1b:6b:df:c1:13:32:7e:27:90:b8:02:27:62:5b:
c3:1b:6b:c2:e0:58:60:91:55:c1:08:3e:c3:12:f9:b2:6f:b7:
6b:58:a0:5e:65:5d:d3:e6:e9:b0:4e:0a:d9:70:94:2f:73:d6:
04:e0:ca:66:ba:05:77:b7:8f:fa:e5:68:40:8f:ca:c4:c7:84:
12:0d:f7:ec:3e:0d:fd:ee:ea:d0:4d:aa:79:1b:6c:ba:b6:c0:
34:6a:66:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:35:48 2025 by rpki-client