Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/CA9D82E8688511EC999E8B70C4F9AE02.roa
File: CA9D82E8688511EC999E8B70C4F9AE02.roa (raw, json)
Hash identifier: N+QdUNWO187I03mcscDr7w/J8yhiTVdD5WODMWRBeG0=
Subject key identifier: DB:64:1F:FB:A7:38:87:87:7F:04:75:AD:BC:82:89:19:8E:72:F1:39
Certificate issuer: /CN=A91AC726/serialNumber=4D847523E5BDD9E3B8969828A04BFEDA2B0C031B
Certificate serial: 0701
Authority key identifier: 4D:84:75:23:E5:BD:D9:E3:B8:96:98:28:A0:4B:FE:DA:2B:0C:03:1B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/CA9D82E8688511EC999E8B70C4F9AE02.roa
Signing time: Wed 12 Feb 2025 23:00:55 +0000
ROA not before: Wed 12 Feb 2025 23:00:55 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 141472
IP address blocks: 103.159.192.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1793 (0x701)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AC726
Validity
Not Before: Feb 12 23:00:55 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67ad2827-4792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cd:96:03:a7:c6:6d:9d:61:43:41:c3:15:a6:
5b:c8:b8:3c:8f:81:cf:00:55:5c:69:4c:d9:61:d4:
2e:ba:44:e9:75:6d:a7:c0:56:64:32:25:bf:77:21:
88:20:8c:95:9a:b1:79:92:02:15:37:c5:fc:50:77:
d9:19:86:f1:00:eb:41:42:b9:ee:99:4b:59:21:c9:
b7:7c:9e:08:ef:1e:da:1d:87:68:46:50:4a:4c:90:
45:d9:18:8a:cc:e9:37:1e:43:70:9a:2a:5c:65:b1:
64:8a:da:31:6a:0c:92:f9:e0:2d:f5:2a:a3:7d:6a:
7a:79:f5:67:e7:16:d2:af:0b:aa:18:49:6e:db:2c:
e1:fb:dd:36:28:8f:9e:04:4c:e4:be:19:76:42:b0:
32:6f:42:bb:fe:cf:e3:70:a0:47:ae:90:6b:e3:60:
1b:89:0a:05:0b:0c:32:8c:06:ce:f1:e5:05:e7:ac:
f1:db:b9:08:41:cd:34:c3:49:cc:9b:c6:7d:22:09:
52:b5:37:47:e3:c1:1f:b4:97:0c:87:e8:5a:2c:aa:
78:49:b0:a4:d5:a8:ea:96:c5:01:0b:6f:e9:28:a1:
a3:ba:cd:c1:f0:e9:eb:5d:b0:04:b4:d1:22:73:08:
f7:3e:2c:73:4a:08:3a:b3:44:a3:d4:e7:8c:26:de:
9b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:64:1F:FB:A7:38:87:87:7F:04:75:AD:BC:82:89:19:8E:72:F1:39
X509v3 Authority Key Identifier:
keyid:4D:84:75:23:E5:BD:D9:E3:B8:96:98:28:A0:4B:FE:DA:2B:0C:03:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/TYR1I-W92eO4lpgooEv-2isMAxs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/CA9D82E8688511EC999E8B70C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.192.0/23
Signature Algorithm: sha256WithRSAEncryption
63:4e:60:a3:d2:1a:f9:e6:9b:52:08:86:f3:ab:ea:7f:89:01:
8b:59:05:3a:c5:90:58:0d:17:12:ec:6a:2f:c9:43:e7:b3:bd:
eb:9b:a6:59:90:07:96:90:43:3c:a0:93:60:43:22:00:c9:41:
17:e9:29:db:c1:ce:06:69:bb:e9:05:fd:2c:d4:d0:6b:5b:05:
bd:2c:f4:52:f0:0a:0a:c5:22:2c:15:a4:c1:34:61:a6:c8:c7:
c8:4e:89:ca:22:7f:8f:df:87:22:de:d6:4e:cd:3b:bf:92:47:
f0:1f:41:c8:95:84:2d:be:2b:be:fe:4e:1a:15:51:f7:0c:67:
8f:24:82:35:b2:68:2f:08:9e:dd:66:c7:96:8e:a2:48:ac:dd:
0f:f5:a1:87:a8:c8:d1:57:c1:bb:b8:ca:f7:0e:e7:b5:62:3f:
8a:af:e6:08:2e:6e:cb:a0:a6:0f:41:68:e1:5d:79:4d:57:6a:
85:0c:aa:26:9a:ef:a4:89:80:fb:cd:7a:e8:a0:12:f8:05:a5:
21:81:59:b5:9b:16:9f:a9:f6:32:20:48:bc:e4:c9:2e:0d:3c:
aa:a9:91:7b:bd:cc:30:77:07:f2:51:a4:65:f9:8f:0c:21:ee:
e1:aa:e8:77:fc:87:9f:fc:e8:3c:3e:c5:15:41:02:a4:a0:5a:
7d:cc:e1:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:12:39 2025 by rpki-client