Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/EB00A028B61011EC98F3F920C4F9AE02.roa
File: EB00A028B61011EC98F3F920C4F9AE02.roa (raw, json)
Hash identifier: ujWxWRwTv4F6q8KHRlBPTbCDJnGACb1mZWlUp4T6hkg=
Subject key identifier: 4C:34:5B:EF:83:65:79:C4:7E:D2:71:5A:CE:0D:4F:2B:8F:67:BC:2C
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 452C
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/EB00A028B61011EC98F3F920C4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:31:40 +0000
ROA not before: Thu 05 Sep 2024 03:31:40 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 131351
IP address blocks: 103.28.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17708 (0x452c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:31:40 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d9261c-a013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a0:23:48:88:5e:7a:89:3e:76:08:69:d7:06:
1b:7c:79:ae:c6:af:0e:e9:de:aa:67:f7:af:27:90:
c8:85:6e:0d:35:b4:e1:a2:5b:ca:c2:0a:4e:19:d1:
7a:83:10:17:17:b2:b2:85:99:6d:1e:06:70:8e:ac:
40:99:65:33:d4:0e:b1:d3:77:44:a2:70:93:13:df:
61:92:cb:8c:d1:53:1a:cf:68:bd:21:98:93:3a:ae:
9b:fe:65:a3:13:04:14:de:ae:d4:88:f4:41:22:2d:
7c:dc:e3:58:00:aa:91:6f:b6:1f:56:3d:8f:4f:cf:
45:db:6b:e8:6b:6d:56:a8:3e:74:5e:a5:d6:5b:33:
37:64:da:51:13:e1:cf:f9:76:7b:f1:66:61:f1:9c:
09:c0:fc:41:dc:5f:1c:ef:ba:4c:2f:5a:1e:8a:ce:
6a:c6:da:e1:af:09:a5:8b:42:18:09:4e:e7:ab:ec:
3a:4e:97:8a:28:11:b9:a2:60:6c:10:db:84:a3:9f:
0d:0c:fb:96:b4:b4:ca:b5:00:8b:2f:83:a8:14:14:
be:cb:95:b8:04:92:6e:01:1c:d9:e5:bd:b9:af:ec:
1c:84:36:94:76:6a:93:ce:d7:31:f8:41:35:02:d2:
b6:f2:76:c6:73:41:8e:72:3b:aa:f5:0d:72:6a:1b:
98:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:34:5B:EF:83:65:79:C4:7E:D2:71:5A:CE:0D:4F:2B:8F:67:BC:2C
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/EB00A028B61011EC98F3F920C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.28.136.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:c9:26:7f:84:6d:f1:56:11:b3:ec:c5:1a:b2:45:48:08:ea:
34:f4:b9:82:2d:b1:9f:10:08:ca:2f:4e:2d:a4:a1:f3:84:aa:
38:34:83:33:91:6b:9e:06:16:fc:8a:a5:cb:17:10:ab:bb:03:
41:0b:7d:6b:80:ba:47:5d:ce:3b:e8:a3:1e:d1:43:fc:eb:b6:
91:fd:f1:b4:85:c4:e7:e8:b1:e6:ed:ad:b3:11:ed:98:f1:90:
53:79:a7:2e:40:f1:ab:30:33:49:1a:2d:cb:03:a7:fd:2e:65:
29:4f:8f:4d:67:34:31:fb:af:99:ea:6b:7c:19:95:6d:1b:69:
50:1c:11:8b:0e:e7:cc:22:90:ed:de:86:b1:0c:a1:a1:74:8c:
97:4b:7b:fb:52:6e:ac:27:14:79:4b:bc:86:36:e2:1b:b9:8a:
82:9e:2f:84:02:eb:fe:42:7d:f1:63:4e:9e:82:5e:31:1b:16:
a7:61:85:eb:28:2c:98:9c:e0:bd:a1:fe:d4:fb:6d:4f:a7:fd:
0d:ab:82:1e:21:07:54:fc:72:ac:99:4f:be:02:c8:c1:87:a6:
ff:ac:2a:41:de:37:f2:7d:67:6e:98:f4:7a:da:33:78:bd:5b:
ce:84:11:55:f5:84:ab:19:8f:c4:13:64:8f:0b:3c:60:f8:3d:
e3:9b:d6:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:30:38 2025 by rpki-client