Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/1714A7D489BD11EC9550C184C4F9AE02.roa
File: 1714A7D489BD11EC9550C184C4F9AE02.roa (raw, json)
Hash identifier: 17PUaNinV45JUoeDuEzM2gIqTYacZZ8Nc7vPAw8wlsY=
Subject key identifier: 00:34:F6:8E:74:AE:75:9C:B7:00:D3:00:5E:4B:4B:D1:C8:55:62:B5
Certificate issuer: /CN=A91B36DC/serialNumber=BC02B005CCAA0453FC9B817BB78CBA915F27C2A8
Certificate serial: 0731
Authority key identifier: BC:02:B0:05:CC:AA:04:53:FC:9B:81:7B:B7:8C:BA:91:5F:27:C2:A8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAKwBcyqBFP8m4F7t4y6kV8nwqg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/1714A7D489BD11EC9550C184C4F9AE02.roa
Signing time: Fri 06 Dec 2024 21:50:48 +0000
ROA not before: Fri 06 Dec 2024 21:50:48 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 139088
IP address blocks: 103.157.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1841 (0x731)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B36DC
Validity
Not Before: Dec 6 21:50:48 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=675371b8-58ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:81:c8:b2:ea:4b:32:7d:3d:cb:56:c9:d5:c2:
68:2a:95:7d:41:0b:fa:ed:40:00:b1:03:60:39:83:
85:4f:e6:90:71:f8:2e:1a:1a:13:e0:7f:34:84:87:
be:32:87:c0:78:8c:54:19:15:a1:64:17:7f:e0:87:
9d:d9:aa:fd:52:ab:00:84:1b:86:82:ee:3a:d4:f1:
b0:43:64:01:29:cc:e0:cd:c2:b9:11:00:14:19:fc:
7e:32:60:f7:65:0b:c8:f5:66:a2:c4:b5:a6:e6:12:
78:1b:9e:c2:7c:7f:5d:52:7a:e8:4f:b8:1b:0f:44:
2f:0b:39:66:34:61:64:a3:e5:9c:6e:c3:9a:dd:ff:
2b:a9:2a:ef:25:d0:a7:fc:f6:b2:5e:61:91:03:1f:
e2:52:d9:d6:fb:10:86:78:be:71:4d:db:d1:a0:53:
d0:59:39:d9:fe:41:6b:9f:76:c0:c0:14:a0:ad:a7:
a7:89:80:d4:b3:b2:dd:13:34:ba:e3:e8:2f:01:1e:
d3:8a:3a:f6:d2:be:b5:08:54:57:0b:cb:35:db:52:
b5:36:c9:9e:cc:f3:52:d3:c8:47:b5:d7:8e:4f:e5:
68:5e:b3:94:73:3d:59:cc:ca:a1:d6:c6:03:e5:41:
52:15:ac:fb:42:32:f8:ad:2a:13:54:f2:20:79:45:
93:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:34:F6:8E:74:AE:75:9C:B7:00:D3:00:5E:4B:4B:D1:C8:55:62:B5
X509v3 Authority Key Identifier:
keyid:BC:02:B0:05:CC:AA:04:53:FC:9B:81:7B:B7:8C:BA:91:5F:27:C2:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/vAKwBcyqBFP8m4F7t4y6kV8nwqg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAKwBcyqBFP8m4F7t4y6kV8nwqg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/1714A7D489BD11EC9550C184C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.248.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:09:9c:0d:e2:2d:0c:77:bf:c3:e2:01:29:91:e5:a6:5f:5a:
2e:e2:99:d3:f5:8a:13:31:d6:78:79:0d:d2:e8:32:92:de:60:
45:ff:9a:3d:50:37:2e:c5:be:e1:01:61:15:3f:a9:36:52:2d:
57:70:ad:0a:f9:3a:cc:1a:0f:97:c6:f3:46:8a:05:da:1d:b5:
5f:ce:75:92:d3:6e:2e:c9:94:bf:43:22:a4:45:75:a7:ca:05:
ff:74:d3:72:33:24:65:c8:01:f5:a1:76:fd:f8:b9:d9:78:cd:
d8:a2:35:d7:da:51:eb:65:41:93:e5:c7:d9:f8:ef:2c:b9:84:
ab:ef:3e:91:e5:a1:e0:4f:13:c5:77:20:2e:8d:fc:e5:65:28:
99:a9:24:76:3b:fa:0a:ee:c6:12:3b:00:fa:83:ec:86:2f:79:
6d:f6:d0:4a:8f:cb:9e:01:36:ec:e5:8c:9a:04:c6:b5:6d:5b:
fc:3f:61:51:70:c4:39:72:92:45:bc:3a:90:2f:ee:29:8d:00:
ad:9c:03:f6:6d:cf:4b:82:d3:c9:c1:53:9e:87:fc:87:f4:69:
9c:d0:ab:cd:72:26:86:ef:61:df:1e:22:71:11:f9:5d:4b:eb:
7e:0a:b4:9a:93:dd:10:65:8d:8f:f2:02:ee:bb:e7:6f:14:4c:
d9:6b:89:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:14:20 2025 by rpki-client