Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/C2065F2CA5F311E8B54BF03DC4F9AE02.roa
File: C2065F2CA5F311E8B54BF03DC4F9AE02.roa (raw, json)
Hash identifier: 7dzMQW8xZe2lq7d8lclvmxKRE19SR0FNahUj7xIAu1o=
Subject key identifier: 3F:7F:61:17:02:39:1D:8D:E3:D1:30:71:F0:E4:DC:9E:91:2F:4D:E7
Certificate issuer: /CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3
Certificate serial: 129A
Authority key identifier: BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/C2065F2CA5F311E8B54BF03DC4F9AE02.roa
Signing time: Sat 06 Jul 2024 17:44:41 +0000
ROA not before: Sat 06 Jul 2024 17:44:41 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 137925
IP address blocks: 103.117.80.0/24 maxlen: 24
2001:df5:a300::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4762 (0x129a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AF406
Validity
Not Before: Jul 6 17:44:41 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66898289-3354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f5:de:22:44:b2:f7:7e:15:94:ef:bf:6f:60:
04:04:af:96:06:78:e0:f8:27:ec:f6:2a:58:33:79:
8a:ba:bc:b2:29:dd:23:09:a6:f0:50:27:8d:c4:b1:
65:b1:66:43:66:05:50:42:a5:c2:07:6b:a1:f0:3c:
ba:45:4a:78:04:aa:ef:9b:dd:44:2e:ae:3e:7e:e3:
e3:75:46:98:a3:62:a2:d3:fc:a0:ad:88:b6:eb:4b:
61:25:20:da:2e:85:f7:b7:57:44:01:b1:8e:cb:9d:
a7:ce:dd:93:15:20:18:ce:4c:44:75:eb:e4:7a:11:
15:b4:da:ca:bd:cf:c7:54:13:ae:e8:16:64:ea:97:
5a:42:de:d9:af:fd:93:b8:6c:d9:a9:a0:a9:3e:68:
33:a3:dc:3d:6f:e3:9b:41:08:f4:c4:0d:4b:31:0f:
7b:03:5b:c1:06:58:ee:6e:1a:1a:82:35:86:81:70:
cf:b9:c6:12:1e:e0:c1:54:b8:e1:d7:49:ca:26:35:
a9:67:37:b6:fd:bf:f1:39:a8:51:e1:8a:06:b7:57:
7e:9b:6c:74:01:47:95:8b:c6:c3:fb:8c:18:06:ca:
99:04:0a:85:da:4d:6d:b5:3c:a9:ed:d0:29:f2:cc:
59:0a:f9:92:c6:9e:a2:61:0e:18:1c:05:80:83:cc:
64:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:7F:61:17:02:39:1D:8D:E3:D1:30:71:F0:E4:DC:9E:91:2F:4D:E7
X509v3 Authority Key Identifier:
keyid:BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/C2065F2CA5F311E8B54BF03DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.117.80.0/24
IPv6:
2001:df5:a300::/48
Signature Algorithm: sha256WithRSAEncryption
c0:70:1d:d7:f8:8a:d8:39:bc:59:5c:7e:cc:00:2c:10:37:8e:
8e:67:43:13:7a:db:f8:d5:65:43:13:8a:70:b7:8e:dc:88:f8:
17:91:e3:a9:2b:f2:68:b9:9a:e6:cd:8a:f3:09:9e:9a:d7:30:
d5:97:d1:69:40:68:6e:cf:da:4a:1d:72:3e:28:6e:42:4f:bb:
a1:51:dd:20:73:11:60:3a:5b:81:d4:77:d8:65:e6:ba:ea:45:
44:e5:3d:0e:e3:8c:c2:76:fb:bd:fd:51:c7:bf:31:85:9c:f1:
49:8e:6d:8f:e2:f0:ab:3d:29:8a:61:fd:40:5c:aa:a8:31:69:
e8:06:ad:4a:ab:3e:67:d2:94:57:79:7a:81:35:76:e6:17:dc:
a6:d5:4f:91:41:16:11:93:48:8d:35:c5:2e:b0:a2:c7:4b:10:
b3:90:42:1b:75:a6:28:ef:67:73:18:82:27:a2:26:cf:3f:75:
11:b4:7d:6d:6b:a9:45:12:3f:08:8a:3c:63:dd:bb:f8:eb:5d:
72:4d:85:01:02:ea:e8:27:91:fd:34:1e:d3:16:95:c7:1e:c2:
18:04:b7:42:db:7f:34:14:9a:a1:be:ad:bf:eb:b1:64:2b:e3:
07:45:39:cc:ee:02:5a:cd:ef:d9:ba:77:1b:1a:1e:95:e5:92:
5c:64:53:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:07:43 2025 by rpki-client