Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/6AC62B967FD711EBA2ECB43BC4F9AE02.roa
File: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (raw, json)
Hash identifier: gL2nII9XEbxnadb0waQYWcnam9MRSvEB52poepWih4w=
Subject key identifier: 59:D8:CE:7F:09:9F:2A:19:BC:8D:4E:18:14:61:A8:38:7E:D7:CD:71
Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE
Certificate serial: 064C
Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/6AC62B967FD711EBA2ECB43BC4F9AE02.roa
Signing time: Thu 20 Mar 2025 22:33:39 +0000
ROA not before: Thu 20 Mar 2025 22:33:39 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 141763
IP address blocks: 103.163.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1612 (0x64c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A799E
Validity
Not Before: Mar 20 22:33:39 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67dc97c3-611d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:58:ae:45:f0:d2:ba:9f:75:c3:eb:6f:22:11:
ee:a7:2b:d8:11:04:31:a1:d6:48:a3:34:23:56:f7:
1f:f2:ec:f4:7e:10:24:3d:9a:18:94:c1:54:df:64:
a4:e0:98:2c:8d:50:0a:d9:ff:68:e7:e0:13:63:21:
20:bf:b6:b0:55:ed:90:68:4e:b2:4a:fd:71:a1:72:
96:e0:40:60:ee:9b:1a:a0:b7:b6:aa:a7:e8:19:5c:
80:5e:eb:f5:44:78:ae:04:3c:4f:ae:0c:4e:6b:d4:
be:a0:c6:66:71:49:2b:f9:f2:aa:6e:2b:18:af:61:
70:7e:80:26:92:45:77:a4:6a:db:8b:54:e5:d9:72:
39:d0:99:d0:bd:f6:a1:f9:ee:b5:52:52:9a:12:cb:
5c:21:42:e1:f0:15:a9:db:79:83:be:65:9a:14:c1:
02:8d:7d:28:42:69:2a:be:fb:5a:b3:56:36:17:8a:
11:ad:f7:e7:a7:23:d2:9e:a8:04:c0:c5:a1:e0:05:
11:60:b8:03:09:1d:05:6a:f2:c7:d3:0d:a5:2b:78:
72:33:f3:f1:e5:60:ef:09:21:5f:36:d9:7b:ab:7f:
ef:4d:56:2c:8d:9a:52:96:27:88:b3:68:ab:8e:db:
db:21:13:8e:64:7e:fc:c7:cc:ec:5e:c4:12:44:d8:
13:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D8:CE:7F:09:9F:2A:19:BC:8D:4E:18:14:61:A8:38:7E:D7:CD:71
X509v3 Authority Key Identifier:
keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/6AC62B967FD711EBA2ECB43BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.163.170.0/24
Signature Algorithm: sha256WithRSAEncryption
42:5b:09:49:93:da:2b:32:5a:45:ea:bc:cf:bd:52:86:f8:a3:
fd:e5:56:34:ff:d1:82:0e:13:46:93:45:32:17:66:47:c5:cb:
53:6e:28:a5:1a:dc:73:1b:43:ad:2d:7a:4a:a0:3d:6a:4d:11:
5f:c7:a4:d0:6d:bc:21:ab:53:54:a5:8f:35:46:c1:e5:41:47:
6d:f8:5a:e9:8b:82:7e:9c:ca:55:1a:d2:b2:d4:77:27:6a:46:
13:1c:45:8e:62:55:8b:14:94:6e:d0:98:30:a3:c7:20:e4:f2:
50:7c:db:a6:3d:29:0e:a3:de:1f:c7:c4:51:8f:fb:f3:c4:ce:
8b:0d:9a:19:5d:58:59:d5:1f:07:cd:4c:8a:c1:c5:c1:ec:35:
a3:f2:8e:bb:38:3a:2e:d0:e1:a2:73:ae:dc:ce:93:08:d1:2f:
82:d4:ee:e6:46:e8:c8:f7:9f:25:d4:f1:fb:06:f4:72:0e:94:
d0:d4:54:87:aa:33:a5:ad:40:fa:80:02:d8:14:67:65:3a:08:
65:e5:88:ef:27:e4:eb:ba:1e:da:f3:77:93:3b:69:7a:02:f9:
d9:a3:7d:e9:10:37:f2:13:95:f8:5a:de:c8:55:c3:5f:cb:a6:
f0:a5:39:82:76:71:c7:00:74:98:81:07:c0:02:5b:7d:f3:6b:
78:5a:52:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 08:45:28 2025 by rpki-client