Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AE0007C602D111EFA283724CC4F9AE02.roa
File: AE0007C602D111EFA283724CC4F9AE02.roa (raw, json)
Hash identifier: AvfLEGLe+XYoAdiqZdKRVRxY9BoQeN7UVImd0PRYym8=
Subject key identifier: 3F:43:C1:BF:16:12:90:D5:F9:9B:91:01:F1:39:32:55:F9:D5:68:C4
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4600
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AE0007C602D111EFA283724CC4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:34:45 +0000
ROA not before: Thu 05 Sep 2024 03:34:45 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 150869
IP address blocks: 103.94.176.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17920 (0x4600)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:34:45 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d926d5-6048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8e:7d:73:2b:f6:cb:85:6b:c8:f0:23:81:56:
62:48:03:c1:a3:a4:81:6a:ee:ff:24:e2:7f:91:45:
9c:e1:bc:88:42:67:c2:0c:df:f8:4d:c5:dd:43:09:
94:69:0e:29:a4:f5:b1:b4:b2:9a:be:e5:fb:b1:b2:
c6:e5:c2:c8:d0:82:10:2e:ea:f2:2e:ac:d9:e7:d2:
3a:54:6e:c2:7f:47:03:dd:ec:c0:e5:ec:b0:4b:50:
39:8e:81:53:13:b4:f2:f8:95:33:51:23:d3:ad:7b:
91:aa:d5:b4:90:74:33:ef:99:6c:d9:dc:a4:51:14:
69:c3:be:0c:23:c2:1d:54:23:e6:b7:8e:a0:7b:43:
91:eb:53:ac:cc:a4:58:47:bd:f9:ae:c8:78:b8:80:
1d:e5:15:58:8e:34:c5:9f:75:86:40:20:a4:f3:e9:
2d:e9:c0:2c:0c:29:af:4a:05:02:80:04:46:5c:58:
e4:0a:9b:60:21:40:20:c7:f3:c2:06:84:c4:fd:d9:
51:d1:66:5d:a3:b9:e7:22:77:39:24:3b:5c:3e:3c:
eb:f8:2f:2a:30:b8:86:64:ed:ef:3f:e1:62:bf:75:
86:7f:0c:82:f9:ac:65:1e:49:28:2c:b6:f1:bd:b1:
da:fe:dd:d8:2a:8a:91:95:45:7f:b8:cc:77:c0:9a:
9c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:43:C1:BF:16:12:90:D5:F9:9B:91:01:F1:39:32:55:F9:D5:68:C4
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AE0007C602D111EFA283724CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.94.176.0/22
Signature Algorithm: sha256WithRSAEncryption
95:20:33:4a:a8:f1:db:b5:50:36:32:e5:29:60:76:1a:4e:53:
84:ba:c9:0a:32:f6:ff:d4:e3:e6:93:90:84:bf:d5:48:7b:d6:
92:b3:23:8a:ae:f9:a0:3f:ee:85:dc:f3:0e:6e:a3:2b:dc:16:
7f:c3:ab:e9:35:87:19:aa:38:2c:00:b4:16:f6:56:b4:64:6d:
00:f0:bf:41:e3:c1:a0:23:0c:ad:f3:f2:eb:db:16:c8:13:98:
19:a1:ab:da:b3:eb:b6:cc:7c:ba:9e:ea:dd:8d:97:2b:7d:6b:
5c:e1:6b:6c:78:7d:65:90:7c:07:bc:f2:76:46:04:86:8e:2a:
9f:be:2f:b0:78:61:87:b6:b3:b8:5f:5e:b8:be:d8:39:ce:25:
68:4c:d2:62:89:32:6a:2c:93:df:16:16:38:6b:1c:de:51:af:
0d:a5:50:8f:8d:98:32:e8:c7:29:af:7e:c2:84:97:3e:f6:39:
c3:2e:29:58:4a:0d:e6:2b:a4:16:f3:ae:5b:5a:18:d1:1a:19:
8c:9a:60:93:04:28:ea:f1:e5:d6:4b:38:4f:eb:3d:1e:05:da:
c8:2d:b2:22:07:a3:bd:0b:18:86:bf:97:02:b9:30:e0:6a:6c:
b0:e8:6e:88:85:13:0e:a4:cd:5d:f1:42:0b:ea:44:4d:e6:08:
3f:dd:ec:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:43:42 2025 by rpki-client