Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/0D036EB680BC11EBAF2A1C0EC4F9AE02.roa
File: 0D036EB680BC11EBAF2A1C0EC4F9AE02.roa (raw, json)
Hash identifier: pjzw/NFLrRgM+OcbDvv0v9A0zhJ6mbxEppscw7B3aFM=
Subject key identifier: 60:7E:FB:F7:80:F7:F2:CA:74:09:30:2A:39:93:02:C4:44:B0:96:99
Certificate issuer: /CN=A91B5418/serialNumber=6B5EBFE98A378764C1B12DCB6904E4610B50AC57
Certificate serial: 0C08
Authority key identifier: 6B:5E:BF:E9:8A:37:87:64:C1:B1:2D:CB:69:04:E4:61:0B:50:AC:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a16_6Yo3h2TBsS3LaQTkYQtQrFc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/0D036EB680BC11EBAF2A1C0EC4F9AE02.roa
Signing time: Mon 06 May 2024 19:28:21 +0000
ROA not before: Mon 06 May 2024 19:28:21 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 139282
IP address blocks: 103.137.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3080 (0xc08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5418
Validity
Not Before: May 6 19:28:21 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=66392f55-78a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:18:ba:78:63:84:d9:a8:c3:91:0c:6f:ab:ed:
27:3f:53:db:78:7c:3d:ee:8a:54:fe:c2:7e:c0:0b:
27:ea:4c:6c:06:5b:a4:a5:e2:9e:88:db:98:c3:19:
0c:7e:9e:78:55:5c:46:b0:f8:b8:a3:d5:5d:42:48:
c7:d5:fc:bc:05:53:c3:bd:d3:4d:06:11:67:fe:17:
26:ba:5b:87:42:28:32:e2:12:94:0c:2c:91:6f:c9:
2e:92:6d:b4:b9:a7:a7:df:ba:11:db:6f:7a:38:b8:
5f:cd:90:88:af:9d:26:4f:36:b0:24:59:45:cf:92:
bf:6c:31:59:0a:20:8c:85:86:c1:da:63:cc:36:77:
d1:9f:2a:a1:21:58:08:9a:43:59:1f:7e:ae:8b:7c:
92:c3:4c:6b:a2:7f:eb:6a:d5:68:cd:91:37:4f:a2:
05:d7:e3:d5:2a:45:49:2f:bc:bf:68:f7:d4:1e:9c:
57:1b:fe:81:37:51:59:5d:88:b8:35:eb:35:29:f4:
39:ec:74:63:6a:f1:f1:b6:67:09:d1:bc:da:89:e0:
d9:09:7c:f4:92:92:28:a6:0a:65:94:29:15:3a:b8:
ed:7c:41:e3:d2:a5:9c:df:38:4e:da:90:66:d8:27:
4b:f5:65:15:b0:e6:da:d9:52:9e:6f:ee:4a:39:5c:
9f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:7E:FB:F7:80:F7:F2:CA:74:09:30:2A:39:93:02:C4:44:B0:96:99
X509v3 Authority Key Identifier:
keyid:6B:5E:BF:E9:8A:37:87:64:C1:B1:2D:CB:69:04:E4:61:0B:50:AC:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/a16_6Yo3h2TBsS3LaQTkYQtQrFc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a16_6Yo3h2TBsS3LaQTkYQtQrFc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/0D036EB680BC11EBAF2A1C0EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.75.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:90:6a:29:7a:de:a3:e7:79:b6:45:c3:f6:25:3a:2e:aa:b6:
93:87:fe:d5:85:94:2c:60:68:ce:ee:68:fc:4d:6f:03:06:6b:
8b:5b:ae:cd:da:8f:d3:15:ae:d9:ed:83:10:85:4f:76:45:9b:
28:bd:79:b0:26:5a:58:3d:f2:23:1d:f8:9e:6f:f0:e2:80:30:
34:30:d7:1a:36:bb:8d:3f:9f:3c:2a:d1:4d:e3:e5:48:cc:1d:
6b:06:3f:e5:bf:72:be:83:22:00:99:52:03:85:c9:b4:8b:8b:
61:67:47:04:99:b1:8e:ad:85:22:7a:a0:25:41:cf:9f:d0:f0:
77:e3:da:28:33:9d:29:a5:bc:d3:11:ad:ed:f3:2e:72:3c:94:
b6:d7:26:a8:8d:26:29:a9:87:41:2c:d7:5c:37:b2:f5:3b:b3:
7d:5c:55:8b:aa:9d:12:a2:4e:01:35:c0:67:ce:83:c3:2e:4b:
a7:89:91:7a:9c:81:31:e0:46:c0:46:c8:35:e7:0e:1a:93:ee:
9b:6f:e0:f8:26:b7:96:1d:0a:86:2e:8f:14:af:c7:d0:5a:34:
65:d6:65:f1:6b:13:0b:30:97:6a:e4:c8:f3:c5:3d:53:ab:1e:
40:58:72:73:20:23:8a:64:87:bc:b2:25:38:60:93:3f:e3:cf:
63:9c:aa:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:40:47 2025 by rpki-client