Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/A0D57302A33D11EBA479491CC4F9AE02.roa
File: A0D57302A33D11EBA479491CC4F9AE02.roa (raw, json)
Hash identifier: 29wrV3aOIMAFp0GF5fJZDO6ldPmXnBQp+J/+s7gWVoM=
Subject key identifier: 5D:37:B2:30:FC:B6:85:AD:5E:7B:14:D7:85:EB:47:53:E3:01:07:58
Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1
Certificate serial: 055B
Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/A0D57302A33D11EBA479491CC4F9AE02.roa
Signing time: Fri 31 May 2024 01:45:48 +0000
ROA not before: Fri 31 May 2024 01:45:48 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 142066
IP address blocks: 103.166.116.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1371 (0x55b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AB74D
Validity
Not Before: May 31 01:45:48 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66592bcb-f955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6f:66:54:f7:b5:f9:54:a3:a5:ac:10:ad:78:
9d:ee:ca:94:4d:e9:a2:e3:ac:c3:95:3a:c3:6a:fd:
12:60:89:5a:d0:53:ba:f0:b2:9b:19:e2:6d:01:3a:
1a:74:ba:79:e1:c8:cf:6a:88:5c:56:ca:86:b6:89:
f9:84:b4:7d:b8:e2:11:d6:03:dc:71:08:fd:0d:dc:
95:aa:47:8c:e1:63:71:bd:73:f2:59:2c:47:d5:03:
2e:54:bc:2b:f2:14:7c:54:6e:45:05:52:d1:31:7e:
19:b0:a4:84:5b:ea:82:40:c4:a5:d7:0e:84:03:32:
af:2c:5c:7a:d9:01:02:1b:b4:19:8d:5d:06:3d:0f:
ec:9c:3c:59:a7:fd:3e:c9:73:06:c0:af:94:a9:9d:
71:7d:2a:0e:2a:89:34:5f:d3:05:a4:d5:5b:56:0d:
3b:43:e1:9e:f5:03:98:cd:4f:dd:3a:35:ea:2d:e0:
a9:e8:c2:49:cc:d0:8b:68:c4:cd:26:d7:14:76:5a:
86:32:37:53:80:90:1b:5c:17:da:d0:c9:9d:c1:cf:
8b:0e:89:b2:f8:77:65:e5:a0:84:f7:c9:ef:ae:64:
d4:fb:ab:43:45:3e:99:d6:c8:6e:99:42:1c:fa:24:
ac:f4:f0:8e:03:ed:a4:74:2a:28:bf:47:d3:35:9c:
ac:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:37:B2:30:FC:B6:85:AD:5E:7B:14:D7:85:EB:47:53:E3:01:07:58
X509v3 Authority Key Identifier:
keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/A0D57302A33D11EBA479491CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.166.116.0/23
Signature Algorithm: sha256WithRSAEncryption
c7:21:b6:8f:b9:27:74:d4:46:47:76:d0:89:37:97:73:58:b1:
ab:04:1f:72:d5:23:87:3f:2d:e7:c4:02:41:d3:aa:f7:6e:1f:
f5:c4:50:c3:41:7a:a1:83:87:f0:1c:dd:a3:4b:1b:3f:04:55:
80:d9:66:e8:ee:bc:df:72:8c:29:de:54:20:02:c7:7a:cb:02:
34:14:40:57:c8:f3:b8:56:4f:36:f4:96:92:2f:1d:3f:c9:a4:
58:76:87:09:60:a0:a3:28:1f:5b:fe:aa:7c:26:31:de:90:29:
53:32:15:9c:6f:07:0e:fd:ee:f0:35:3e:81:07:db:4c:41:ab:
4f:74:1d:4f:28:97:c5:18:1a:ee:6c:ea:cc:10:e1:11:1b:02:
4a:0d:1a:a8:80:4f:a3:a2:f8:37:12:5b:58:bc:8f:d3:42:6a:
a8:b6:f7:f8:c0:ec:db:fe:59:6d:ee:0e:68:8c:59:20:82:3a:
05:5c:07:7d:94:99:ec:f4:b9:2e:75:2a:4e:60:33:88:5d:4d:
8d:46:e0:c1:25:30:bf:15:5e:70:7a:d3:b8:0b:21:31:08:7e:
92:e6:d3:10:e8:31:d0:ad:04:44:67:ac:8d:7f:42:60:36:bd:
1e:26:eb:8a:eb:dd:78:df:6b:e6:a3:68:48:c4:7b:4d:a0:d1:
bb:c4:0a:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:48:50 2025 by rpki-client