Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A3FC8F26322011ECBD206F64C4F9AE02.roa
File: A3FC8F26322011ECBD206F64C4F9AE02.roa (raw, json)
Hash identifier: Sfsk6d7+M39/YjS48bMdrT5DMD3toXwGcUcoiSGZWWE=
Subject key identifier: 42:13:ED:4B:E9:49:CA:FE:7A:D0:AF:C6:72:0D:6A:14:15:15:EF:E8
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 456F
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A3FC8F26322011ECBD206F64C4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:32:38 +0000
ROA not before: Thu 05 Sep 2024 03:32:38 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 135933
IP address blocks: 103.106.224.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17775 (0x456f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:32:38 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d92656-dca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:58:df:ea:58:ca:a8:ab:64:f7:1c:e7:24:13:
5f:2c:8b:e2:ef:f1:cf:b8:ac:81:f2:b9:72:8b:3e:
d1:a4:66:2d:46:f7:53:c0:92:2f:d3:96:ee:f1:0b:
7f:68:ed:b8:5a:16:bd:8a:b8:a1:57:4e:f5:53:dc:
d2:aa:bf:67:ef:5c:83:6d:6d:3b:23:91:1e:e5:a8:
d0:07:d5:c7:81:05:1a:69:4e:5d:1a:1d:ea:52:5f:
7b:06:1d:9c:05:fd:fa:b2:6d:3a:5c:fd:4f:fe:7e:
b2:fb:26:2f:b6:ed:92:9c:13:e8:28:ff:f3:1b:7b:
ae:60:1b:24:22:e4:cd:c6:6b:5d:09:e7:37:ea:7f:
98:ed:35:2d:a6:5a:78:6c:4e:3b:cf:e5:58:1f:43:
20:7c:17:47:70:43:b7:2b:c1:43:24:8f:60:74:ec:
ab:45:e2:05:90:60:86:3b:68:2a:23:80:78:a2:cc:
f1:27:40:f3:ca:33:ee:cd:d2:27:65:62:7d:92:62:
f2:19:8a:90:4e:3a:b6:af:6c:1c:f4:14:41:0e:6c:
d0:ee:88:a4:a3:02:4f:cd:c0:cd:3c:08:30:e9:d1:
93:42:cd:20:96:55:3c:03:f1:4a:54:49:87:65:73:
e9:f4:31:be:64:e0:4c:8b:a1:a1:3f:8c:1f:a3:55:
ca:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:13:ED:4B:E9:49:CA:FE:7A:D0:AF:C6:72:0D:6A:14:15:15:EF:E8
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A3FC8F26322011ECBD206F64C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.106.224.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:7a:a3:b8:dd:4d:75:37:fe:35:d9:35:05:66:28:2b:fd:9c:
bf:a6:a6:15:cc:6e:bf:6c:66:d5:85:bd:79:d1:26:a7:c4:2d:
4a:0e:0c:fe:0d:76:24:e6:ab:00:98:d7:02:6d:f6:ab:48:17:
d8:3d:d4:db:39:73:35:b1:ac:24:62:61:c1:a6:e6:0e:a6:33:
59:30:5b:80:5c:63:b5:2e:12:12:62:c8:d5:eb:cb:02:d6:87:
8b:33:b2:a5:b4:26:81:ea:68:cb:a0:a6:ff:3a:b4:25:d3:28:
21:b8:cf:9a:07:37:06:b0:a1:d8:f6:96:e2:77:b5:10:5f:41:
1f:4f:89:c4:42:4b:1c:6d:de:6d:bd:63:ec:e0:01:8a:ee:63:
4d:b2:48:82:87:b5:7e:96:75:08:e6:18:06:73:9a:b4:ac:05:
f2:82:4b:fa:a2:4b:a2:01:50:a2:04:bc:da:fd:73:16:1c:4d:
bb:3e:62:db:45:79:97:9a:59:74:b8:49:df:b5:40:5b:f0:d9:
32:f0:f3:aa:66:12:12:2e:cd:c0:1b:23:d4:68:5b:68:cf:b7:
e6:88:e3:ed:5f:33:4b:fa:89:8c:60:51:06:60:5d:0f:e4:67:
33:c4:17:3d:6b:b3:b8:a0:09:aa:d6:81:ff:47:b7:59:0c:aa:
62:5b:e1:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:30:35 2025 by rpki-client