Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/2D6E9D74F5DA11EEA64D3F7DC4F9AE02.roa
File: 2D6E9D74F5DA11EEA64D3F7DC4F9AE02.roa (raw, json)
Hash identifier: fPCtXIFdgFLuZAHIhoHiaIFtzRJQc1tSW5oOJQOgGHI=
Subject key identifier: B6:95:ED:B3:89:C4:14:F9:20:2C:0D:50:24:B8:30:38:38:BB:DD:15
Certificate issuer: /CN=A91C0741/serialNumber=37EAEDA4242D50962B87B4A207AC4C344B33060C
Certificate serial: 0DF2
Authority key identifier: 37:EA:ED:A4:24:2D:50:96:2B:87:B4:A2:07:AC:4C:34:4B:33:06:0C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-rtpCQtUJYrh7SiB6xMNEszBgw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/2D6E9D74F5DA11EEA64D3F7DC4F9AE02.roa
Signing time: Fri 28 Mar 2025 18:28:36 +0000
ROA not before: Fri 28 Mar 2025 18:28:36 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 174
IP address blocks: 103.83.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3570 (0xdf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C0741
Validity
Not Before: Mar 28 18:28:36 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67e6ea54-7f54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9d:a7:39:f3:9f:3f:29:d4:40:65:34:b1:c0:
2f:1e:7f:dd:09:cf:ba:95:a3:6a:b6:18:af:13:fe:
fd:18:91:11:31:48:7e:83:49:bf:c2:2c:d3:e5:77:
58:09:2d:c6:06:27:60:81:a6:6f:dc:31:23:3a:7f:
81:92:56:76:63:e9:9b:f0:88:1e:89:27:57:35:3e:
d0:fb:8d:fd:89:e3:df:19:63:d7:5d:f2:ae:8c:fa:
f7:eb:26:2b:cb:56:be:51:0f:d4:57:8c:86:50:47:
b5:82:e5:ce:f6:d5:cf:ce:7f:88:bc:ed:07:c8:1b:
1f:b6:74:7f:fd:fb:e8:c6:5e:e3:86:ad:f9:e9:6a:
f5:78:15:47:41:78:2b:93:2f:e5:04:80:34:50:4d:
31:17:1b:53:91:6f:2c:1f:42:03:51:76:d3:3a:5c:
08:3e:a9:a9:14:79:53:68:45:d0:70:3b:1d:2c:e9:
da:01:a0:69:98:f9:ef:47:0d:56:24:7c:c6:cf:55:
ff:52:9d:4a:db:a8:cc:08:c5:f7:10:9e:4c:4c:ab:
06:f8:ea:fc:6b:31:f5:71:ad:94:f9:c7:e5:b8:3d:
7d:82:5a:23:53:71:12:41:8c:2e:cd:c4:0b:8c:9b:
c6:1e:ae:29:7d:08:b6:4b:49:5b:a9:0d:8f:01:30:
cc:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:95:ED:B3:89:C4:14:F9:20:2C:0D:50:24:B8:30:38:38:BB:DD:15
X509v3 Authority Key Identifier:
keyid:37:EA:ED:A4:24:2D:50:96:2B:87:B4:A2:07:AC:4C:34:4B:33:06:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/N-rtpCQtUJYrh7SiB6xMNEszBgw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-rtpCQtUJYrh7SiB6xMNEszBgw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/2D6E9D74F5DA11EEA64D3F7DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.83.192.0/24
Signature Algorithm: sha256WithRSAEncryption
34:7c:8b:45:b9:eb:56:bf:b9:74:85:0e:b8:ac:c9:4a:c6:f1:
83:e1:86:ff:d5:a0:8f:32:3c:00:d8:a5:6a:02:ae:48:0e:d4:
aa:9a:69:55:b2:93:b5:b8:0d:44:f3:f7:46:cd:8f:9c:f7:5c:
b6:2c:39:91:d6:76:d4:50:ac:6b:19:6b:02:c2:7e:8b:1f:ac:
fe:99:67:fd:bc:7f:90:41:c4:b1:9e:b6:99:d5:76:63:6d:20:
cc:97:30:fe:98:24:42:e8:53:f4:a6:d4:da:a2:23:a0:ed:a7:
9f:d2:53:13:ba:b8:42:4b:f3:4b:65:a5:a0:03:38:27:d7:53:
1a:ad:83:0c:36:13:17:c4:1c:98:4e:72:07:20:04:7c:c1:07:
4d:91:31:e4:70:e5:fa:86:d7:ba:09:ee:15:39:99:39:d6:e7:
2d:85:4a:3d:58:e0:93:1f:98:a8:3a:59:a1:fc:e6:8b:0b:e2:
92:0b:1a:82:03:fd:46:31:bc:ae:ad:9f:c5:f6:06:48:71:44:
fa:28:33:ff:ce:15:29:19:a7:fd:1f:72:87:e0:93:22:95:76:
b7:df:4a:6d:c6:c1:92:07:d2:a6:9c:b5:84:1a:e3:7a:d3:c7:
5f:2c:60:4f:cb:3d:a3:d8:67:d4:2c:08:7b:3b:e1:89:14:16:
41:ab:c8:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 09:08:17 2025 by rpki-client