Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/93CBDF448EE111EC9D298C83C4F9AE02.roa
File: 93CBDF448EE111EC9D298C83C4F9AE02.roa (raw, json)
Hash identifier: BUnFVKWXS5jIu8y5GkL7bgepdNyRdvPBw8U/+IQhx6g=
Subject key identifier: 80:64:09:FE:24:E4:EA:79:17:C7:C9:F4:08:5F:44:35:43:7E:49:D3
Certificate issuer: /CN=A91B1833/serialNumber=DB3C49B1B2DAA669E81725395DF711E83F8AD3D1
Certificate serial: 0369
Authority key identifier: DB:3C:49:B1:B2:DA:A6:69:E8:17:25:39:5D:F7:11:E8:3F:8A:D3:D1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/93CBDF448EE111EC9D298C83C4F9AE02.roa
Signing time: Wed 27 Nov 2024 00:44:07 +0000
ROA not before: Wed 27 Nov 2024 00:44:07 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 16509
IP address blocks: 103.78.50.0/24 maxlen: 24
103.151.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 873 (0x369)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B1833
Validity
Not Before: Nov 27 00:44:07 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=67466b57-e782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:49:f6:25:3b:43:43:72:0a:b0:0a:fe:7b:05:
52:16:7e:78:b6:30:86:d5:92:3d:cf:18:65:5f:35:
d4:48:96:fd:9a:ba:9f:d1:0e:39:db:36:ed:37:52:
7b:8d:f3:b0:a9:bb:95:b2:b8:de:3c:78:48:17:d9:
3a:22:5f:e9:e2:cc:7d:35:4d:6a:72:a3:4e:93:d8:
6e:d8:f2:3b:62:51:e6:33:70:eb:ab:c4:00:8e:4d:
cf:30:3c:57:55:fb:e4:d9:89:b2:03:34:f3:6c:a2:
64:ec:a2:76:12:a5:f4:1d:6d:e6:4c:8c:3a:4e:34:
eb:4c:7b:79:8b:a2:a7:86:75:64:bc:73:6b:bd:40:
1a:04:5a:76:e6:4a:30:4f:aa:e0:10:7b:8b:91:09:
55:e5:b3:73:95:78:5b:a3:2c:69:d9:da:fa:fe:86:
c3:e1:63:9f:92:96:c2:7b:20:ef:10:ee:17:41:2d:
00:b7:71:f4:66:b7:29:4b:2c:3a:1d:3b:a7:d2:9f:
24:b1:66:5c:c8:38:10:55:23:f8:85:62:02:ee:7e:
d7:8e:9d:be:30:20:9b:0b:ac:52:89:64:0f:db:17:
f1:6b:82:6b:0a:0a:79:12:b1:80:45:cb:a4:95:b4:
31:1f:09:f8:7c:99:c1:ea:7e:aa:4e:2b:99:a2:a4:
57:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:64:09:FE:24:E4:EA:79:17:C7:C9:F4:08:5F:44:35:43:7E:49:D3
X509v3 Authority Key Identifier:
keyid:DB:3C:49:B1:B2:DA:A6:69:E8:17:25:39:5D:F7:11:E8:3F:8A:D3:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/93CBDF448EE111EC9D298C83C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.78.50.0/24
103.151.39.0/24
Signature Algorithm: sha256WithRSAEncryption
52:a8:5f:ac:1c:f0:a9:f2:1a:85:d1:ac:c5:8b:c5:cc:e0:be:
ee:9b:be:bd:e2:52:92:2d:92:4f:ff:0e:b1:a1:5e:cd:b3:63:
ca:48:a1:31:6e:93:5b:29:44:b2:e7:03:60:58:f7:39:8a:9a:
80:0c:50:9a:7a:58:98:72:79:d0:04:52:70:8a:06:f7:09:38:
6c:1f:71:1d:a9:ee:4b:47:c0:9d:3c:63:46:30:0f:57:64:2a:
ac:7c:bc:9a:2f:32:4a:59:25:95:32:94:cf:e1:60:46:75:78:
5d:d3:1e:c2:78:d6:cf:76:f9:8b:47:5a:ab:16:3b:5c:c0:05:
11:a7:d1:f3:e8:0e:62:bd:65:93:cf:d3:02:8d:10:e9:b8:46:
c6:f5:d9:a5:91:ca:3d:c5:0d:45:dd:96:64:96:fd:06:45:0e:
7b:bb:22:c8:ce:a6:39:6e:37:bd:b8:02:b2:08:d8:c5:7e:d6:
32:ff:b2:19:67:b8:92:98:ee:98:f2:bd:aa:80:1f:fd:5c:0c:
a0:cc:01:db:bc:77:0c:f9:74:a2:b5:0e:33:f1:60:39:7e:f5:
ca:80:07:20:17:12:2c:58:89:ad:62:92:88:04:20:27:39:7d:
b3:e9:57:0d:ea:1e:b1:f9:56:d2:4a:19:83:7a:25:17:0f:9b:
35:b1:27:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:19:22 2025 by rpki-client