Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B84BD/533AE67E20AB11EAB8B76119C4F9AE02/80CA97EEF03711EBB93D0345C4F9AE02.roa
File: 80CA97EEF03711EBB93D0345C4F9AE02.roa (raw, json)
Hash identifier: YnfKvC6f/YnmLTZ1zRWy8bUilt+eUUpM4uAhSfltYNw=
Subject key identifier: 3F:68:12:DB:AE:2D:33:D5:4E:A3:9E:26:6F:AA:52:42:9B:DF:A8:27
Certificate issuer: /CN=A91B84BD/serialNumber=8F18B1B61CAA4B680857B5DBD93DCD3E6DD316B5
Certificate serial: 086F
Authority key identifier: 8F:18:B1:B6:1C:AA:4B:68:08:57:B5:DB:D9:3D:CD:3E:6D:D3:16:B5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxixthyqS2gIV7Xb2T3NPm3TFrU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B84BD/533AE67E20AB11EAB8B76119C4F9AE02/80CA97EEF03711EBB93D0345C4F9AE02.roa
Signing time: Mon 11 Apr 2022 20:46:53 +0000
ROA not before: Mon 11 Apr 2022 20:46:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142541
IP address blocks: 103.87.88.0/24 maxlen: 24
103.114.128.0/24 maxlen: 24
103.114.129.0/24 maxlen: 24
103.254.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2159 (0x86f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B84BD/serialNumber=8F18B1B61CAA4B680857B5DBD93DCD3E6DD316B5
Validity
Not Before: Apr 11 20:46:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=625493bd-8802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:16:c3:8e:05:e1:c0:1b:2f:9b:d1:39:6e:bd:
54:32:39:ad:1e:ca:4d:32:aa:7a:39:d4:d5:48:b4:
56:87:19:5a:5b:07:59:01:f7:a7:ad:4e:ef:62:97:
0b:61:f6:10:9a:c8:5b:58:1a:c9:c9:90:4f:e0:c3:
a5:33:d1:9b:ee:c5:33:8b:a4:15:fa:6e:15:ba:ac:
e4:0c:19:93:99:90:1d:87:e7:f9:76:30:7b:94:12:
d1:a2:f8:a0:c4:80:b5:94:de:80:3a:21:3e:43:cf:
e8:2e:31:5c:39:88:5f:13:e2:bd:5f:b1:b5:77:ad:
39:e1:4e:03:ba:d2:d7:99:a3:6b:a3:71:e5:c5:cd:
25:ac:7d:5f:9a:e9:8c:c6:4b:3d:3f:65:d2:97:e5:
c6:bd:c8:1a:e9:0e:4e:92:4c:2f:82:73:7e:ea:2b:
68:26:96:72:4e:bf:08:88:be:52:36:d6:12:11:f2:
85:03:99:f8:df:e7:b9:62:09:89:4b:31:aa:ef:fe:
5e:8c:1e:b3:12:b9:ef:6b:db:08:b3:32:14:d5:f3:
8d:d3:29:1e:4c:09:a4:d4:4e:94:f3:4a:bb:86:cd:
bf:e4:c2:ce:0f:f0:68:f2:63:32:d2:44:2c:f8:75:
bc:0f:29:01:ba:1c:ac:80:00:ad:06:b7:38:07:21:
c0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:68:12:DB:AE:2D:33:D5:4E:A3:9E:26:6F:AA:52:42:9B:DF:A8:27
X509v3 Authority Key Identifier:
keyid:8F:18:B1:B6:1C:AA:4B:68:08:57:B5:DB:D9:3D:CD:3E:6D:D3:16:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B84BD/533AE67E20AB11EAB8B76119C4F9AE02/jxixthyqS2gIV7Xb2T3NPm3TFrU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxixthyqS2gIV7Xb2T3NPm3TFrU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B84BD/533AE67E20AB11EAB8B76119C4F9AE02/80CA97EEF03711EBB93D0345C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.87.88.0/24
103.114.128.0/23
103.254.166.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:c7:a7:93:c4:d2:3e:8c:83:ce:2a:1c:1c:6a:ea:07:67:43:
ef:76:37:f0:6f:2c:f5:51:b8:2b:63:cf:f3:64:79:5f:f4:85:
66:ac:dd:0e:fc:7b:08:87:6b:ff:14:7b:13:2b:37:30:11:b5:
a4:83:3c:73:65:c8:69:e6:cc:b0:00:db:8f:ad:47:cb:40:cd:
4b:f7:65:53:42:6d:81:76:de:a7:30:95:6b:b5:4b:26:f4:b9:
a9:e8:88:05:75:f3:a6:20:ff:6b:d7:86:93:79:66:44:29:75:
b7:18:24:5e:2f:79:5a:29:c6:30:02:9f:a9:6e:40:05:94:22:
b6:17:bc:53:be:e2:aa:5a:d2:fb:e2:69:79:d6:aa:4e:fb:31:
41:ef:b4:20:20:47:42:40:7b:0b:1b:f2:db:ca:4f:32:70:4e:
fd:c6:e4:90:0a:c4:56:63:e2:19:67:a9:53:7e:6f:cf:ae:cf:
98:a1:5a:4c:f9:a2:e7:9a:41:13:5d:ed:e8:b6:7d:e7:51:db:
85:c7:2a:d7:57:69:66:63:6c:8b:6b:2f:03:73:84:1d:89:6e:
db:2c:a9:c7:43:8a:eb:d0:2e:1b:fe:4a:4f:38:98:cd:ba:d8:
32:9f:30:a8:11:b5:8c:9b:40:0d:f2:d6:c0:db:74:1d:cc:64:
4f:85:53:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:58 2024 by rpki-client on console-ams.rpki-client.org