Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/C61F947E024611EF8332F228C4F9AE02.roa
File: C61F947E024611EF8332F228C4F9AE02.roa (raw, json)
Hash identifier: kox9WG4L/JjVelXMfpehPJBrUD0g+RXTFOlBoOFN1YI=
Subject key identifier: 5C:D2:3A:8B:45:67:F9:E4:0E:35:7A:DB:A8:55:C9:D8:39:8B:BB:93
Certificate issuer: /CN=A91A6943/serialNumber=0AB99F52C9AD9BE0B9C04470CFB1B6C2360FD0F5
Certificate serial: 0900
Authority key identifier: 0A:B9:9F:52:C9:AD:9B:E0:B9:C0:44:70:CF:B1:B6:C2:36:0F:D0:F5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrmfUsmtm-C5wERwz7G2wjYP0PU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/C61F947E024611EF8332F228C4F9AE02.roa
Signing time: Wed 24 Apr 2024 14:27:27 +0000
ROA not before: Wed 24 Apr 2024 14:27:27 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 45814
IP address blocks: 103.74.20.0/24 maxlen: 24
103.74.21.0/24 maxlen: 24
103.74.22.0/24 maxlen: 24
103.74.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2304 (0x900)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A6943
Validity
Not Before: Apr 24 14:27:27 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=662916ce-022f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:48:5e:85:36:c0:ab:72:64:75:80:b7:ae:16:
80:6e:02:00:ec:e4:90:bf:54:77:f2:c0:63:41:9e:
0f:a4:d8:17:78:3c:2d:65:38:b3:53:f7:a9:5b:99:
c0:87:07:d4:4e:e0:21:e8:dd:25:98:af:34:fb:7a:
35:85:92:fe:6b:7d:2c:35:82:fd:b1:19:fd:92:84:
a7:37:9c:d7:f7:ba:07:dd:80:86:06:33:13:0f:eb:
78:64:ba:90:d6:be:67:04:fc:4a:47:63:27:ca:64:
9d:4d:ac:70:5d:3f:c2:77:f1:ac:02:7e:7b:45:4e:
17:00:9b:ea:83:7d:1a:7c:0f:66:1a:9f:e9:4f:f1:
ee:e8:74:a7:cd:a4:d9:b3:75:09:29:7b:d8:bd:ef:
f4:2a:05:68:02:55:42:42:10:89:d6:02:9e:0e:10:
70:89:34:56:04:bb:68:b9:50:61:6f:7e:4d:6a:cc:
05:b1:a9:03:b7:10:16:94:27:79:d6:a8:2b:ec:ef:
95:be:d9:0e:12:cf:17:25:f1:38:8a:01:62:8b:92:
3d:79:69:cb:e7:82:f0:4d:31:5f:10:1b:cb:42:39:
43:cf:25:09:6c:06:7b:92:35:23:dc:a9:41:a1:f6:
bf:57:92:ed:7b:73:43:c1:ae:db:89:8d:6a:92:79:
cc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D2:3A:8B:45:67:F9:E4:0E:35:7A:DB:A8:55:C9:D8:39:8B:BB:93
X509v3 Authority Key Identifier:
keyid:0A:B9:9F:52:C9:AD:9B:E0:B9:C0:44:70:CF:B1:B6:C2:36:0F:D0:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/CrmfUsmtm-C5wERwz7G2wjYP0PU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrmfUsmtm-C5wERwz7G2wjYP0PU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/C61F947E024611EF8332F228C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.74.20.0/22
Signature Algorithm: sha256WithRSAEncryption
c3:81:21:23:06:c3:40:ae:50:aa:57:33:54:88:43:be:5e:39:
fd:13:d1:00:37:91:41:f5:db:55:af:a2:9a:e4:70:42:d4:a4:
c3:72:33:70:01:a6:66:11:90:57:0d:a1:3e:96:cd:8a:ce:e4:
81:7e:8d:4f:46:ca:ba:30:69:7c:a5:bd:7f:91:49:b6:2c:05:
5c:0d:a2:48:a6:4e:e1:fd:2e:2a:c8:01:94:93:05:28:1e:54:
ae:60:44:ba:70:6e:6d:04:ee:4d:9a:ab:c2:85:6c:f5:e9:33:
a3:6b:be:18:75:6e:5e:d7:22:6c:8e:4d:6e:3a:78:43:18:23:
96:08:64:59:7d:1d:38:b3:b9:20:8b:c5:f0:de:15:ed:47:30:
8c:a2:ff:cd:2e:bf:15:02:12:03:a5:76:1d:7f:8c:c0:b8:76:
e6:88:71:15:6e:74:48:2f:ce:a5:1d:b1:f9:56:ab:d4:a2:0b:
39:aa:c6:47:f7:db:ab:86:76:fe:bb:81:68:e6:9c:dd:3b:32:
ca:06:3e:75:db:a0:74:fd:29:db:11:0c:48:eb:bf:80:20:fe:
65:7c:03:1e:89:50:2c:ef:a0:b6:60:06:74:47:2b:82:bf:94:
b0:f7:01:4f:5c:28:32:e6:e3:10:dc:4a:18:06:f8:0e:fc:9b:
99:68:94:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:14:03 2025 by rpki-client