Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/567C8DB8354111ECBCC05B63C4F9AE02.roa
File: 567C8DB8354111ECBCC05B63C4F9AE02.roa (raw, json)
Hash identifier: IJTuUd/n8OCJ5dJ8YqUV7DdTVdb9JOIyqBQaxiAGn2k=
Subject key identifier: F0:4D:9B:A5:88:34:1F:75:5E:97:34:3E:DB:10:64:89:64:9F:C5:B0
Certificate issuer: /CN=A91BA251/serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4
Certificate serial: 04A8
Authority key identifier: 53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/567C8DB8354111ECBCC05B63C4F9AE02.roa
Signing time: Wed 07 Aug 2024 00:42:58 +0000
ROA not before: Wed 07 Aug 2024 00:42:58 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 133329
IP address blocks: 103.141.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1192 (0x4a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BA251
Validity
Not Before: Aug 7 00:42:58 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66b2c312-1ef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:78:a5:a0:7b:b5:39:62:eb:2b:1e:3c:a3:d5:
2e:6c:5a:f8:5b:c6:bb:f8:14:3a:a0:cb:f6:47:99:
70:d0:46:ff:d0:81:2b:f1:87:e3:43:73:e2:1b:b4:
cd:bc:12:c2:b7:93:28:73:f0:38:ef:e0:e5:e6:68:
3f:14:8c:a2:ee:fa:02:1c:10:f6:f2:af:0b:e6:48:
6a:98:43:07:31:8b:d8:8e:df:e0:62:46:73:d4:25:
f1:54:0d:f8:ea:53:91:76:8d:9c:78:7a:20:7a:5a:
68:43:be:fb:97:32:2f:3b:00:d4:0d:e1:15:bf:c6:
74:aa:7e:8a:69:a1:08:eb:89:c6:20:e5:95:8e:b4:
1e:ba:43:95:0d:ca:8b:70:fc:ac:81:cf:c8:34:f0:
f1:dc:9a:67:bf:c2:65:0d:52:9b:e4:2f:2d:40:95:
7f:73:19:71:39:ba:8d:2b:c1:dc:51:73:87:d8:1b:
50:06:93:05:41:d1:02:d7:f9:fe:5a:f9:fd:cf:82:
18:4d:d6:9b:ec:57:80:bb:42:c6:84:65:69:15:7d:
31:d2:b1:3a:a2:99:47:2d:ea:18:1a:8f:9c:c1:d2:
60:54:62:48:a8:10:bc:df:9b:83:b4:46:2c:25:ba:
e7:04:ce:66:fa:5d:09:61:2a:6a:f8:74:73:5f:b4:
bc:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:4D:9B:A5:88:34:1F:75:5E:97:34:3E:DB:10:64:89:64:9F:C5:B0
X509v3 Authority Key Identifier:
keyid:53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/567C8DB8354111ECBCC05B63C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.141.119.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:91:3d:2a:d7:cd:3e:0d:b0:31:ac:13:86:ba:85:3d:26:7b:
93:bf:fc:88:d6:3a:ff:da:4f:cf:c3:6c:39:da:26:b8:a6:f3:
ca:0d:05:a0:e5:e0:eb:cc:b8:09:6b:ab:b0:81:ff:05:84:2e:
d2:5a:9a:0c:91:db:0e:e9:b9:ec:c8:ee:05:29:e6:fb:8c:77:
78:78:14:0a:78:02:ff:2e:93:57:4c:28:56:a2:f3:53:fb:e3:
87:6c:35:36:e6:a6:82:87:4e:e7:79:f0:da:6d:7b:f1:cf:0f:
68:ff:42:5c:e6:17:b8:64:65:99:40:cf:96:63:c9:8b:87:9b:
53:cf:71:5f:26:1d:a7:56:f1:c4:6a:bf:ce:b3:82:26:ed:8b:
40:a9:db:61:90:80:75:85:61:22:73:ae:85:8d:c5:23:1e:cf:
25:3e:1e:d9:ca:22:c2:66:c7:87:7e:66:c2:d8:9a:3e:05:cb:
68:69:be:e9:99:cd:da:cf:81:c6:59:01:4c:f9:42:6a:f3:b3:
4b:88:41:53:bb:f1:74:ee:32:5f:77:c5:b1:e2:6a:c4:15:08:
03:f5:44:00:1e:19:63:e5:13:b1:5d:7f:e4:4d:83:b9:68:1f:
a7:f4:09:b1:81:7b:8e:b0:e4:f6:d1:b6:32:4c:3b:e1:5c:4b:
2e:c2:32:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:12:34 2025 by rpki-client