Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/4B058994B18D11EC886B063CC4F9AE02.roa
File: 4B058994B18D11EC886B063CC4F9AE02.roa (raw, json)
Hash identifier: hz9U6Vrjf2uu8O9hhyxsvGgsibbnQkjfxQGCzPSoo1E=
Subject key identifier: FE:67:1E:58:8E:BF:66:61:F6:4D:EB:64:36:C7:AC:62:24:6C:E1:DE
Certificate issuer: /CN=A91C0741/serialNumber=37EAEDA4242D50962B87B4A207AC4C344B33060C
Certificate serial: 0DF3
Authority key identifier: 37:EA:ED:A4:24:2D:50:96:2B:87:B4:A2:07:AC:4C:34:4B:33:06:0C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-rtpCQtUJYrh7SiB6xMNEszBgw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/4B058994B18D11EC886B063CC4F9AE02.roa
Signing time: Fri 28 Mar 2025 18:28:37 +0000
ROA not before: Fri 28 Mar 2025 18:28:37 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 271917
IP address blocks: 103.83.193.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3571 (0xdf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C0741
Validity
Not Before: Mar 28 18:28:37 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67e6ea55-d231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5c:e2:47:34:ad:c1:a6:ce:a8:ba:8b:93:85:
64:43:66:ad:55:97:54:f0:6b:35:2d:20:56:47:95:
77:74:a5:ac:dd:8f:20:20:d4:04:40:dd:b4:65:13:
e2:bb:72:d2:f5:15:fb:43:bb:9c:3a:20:90:6b:35:
7e:8b:8c:01:40:c1:e3:88:59:3c:42:74:6e:07:fe:
58:42:f9:d9:2c:f6:4f:b6:35:41:64:00:9f:71:20:
61:c6:53:3a:6e:50:4c:6d:1d:10:c3:94:d0:7c:1d:
b8:19:16:66:4c:70:96:39:27:69:ae:5e:07:ee:35:
b7:8f:72:56:92:67:45:13:e0:71:b6:5d:ae:00:85:
55:1d:df:24:1b:cb:7a:47:d2:a2:00:32:a3:4c:93:
cb:c2:d2:ac:b2:7f:6a:f6:19:d2:1a:e4:e2:15:0e:
f6:1b:38:e2:11:67:73:a8:eb:16:f3:42:be:fd:68:
51:94:43:2b:d3:35:de:61:e7:dc:0c:56:2d:5d:29:
98:d5:d5:f2:8a:c1:9a:aa:9f:03:ab:bd:0a:01:e8:
79:da:83:ce:14:5d:23:7b:3a:30:d8:ff:ea:b4:84:
f0:fa:19:b5:d7:b6:3e:16:31:55:67:c3:d4:ba:1e:
a8:ea:6b:e2:cc:b1:9a:c3:7c:d5:06:67:0b:85:66:
4f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:67:1E:58:8E:BF:66:61:F6:4D:EB:64:36:C7:AC:62:24:6C:E1:DE
X509v3 Authority Key Identifier:
keyid:37:EA:ED:A4:24:2D:50:96:2B:87:B4:A2:07:AC:4C:34:4B:33:06:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/N-rtpCQtUJYrh7SiB6xMNEszBgw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-rtpCQtUJYrh7SiB6xMNEszBgw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/4B058994B18D11EC886B063CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.83.193.0/24
Signature Algorithm: sha256WithRSAEncryption
26:92:a0:b6:e0:97:92:f2:94:a9:2d:f6:7a:4a:df:ba:81:0d:
eb:0e:d7:9b:ae:e5:e0:3e:d3:70:cb:7a:e6:60:12:ec:79:41:
d3:29:ae:fb:4d:bd:32:13:f5:07:ff:47:1d:3c:6a:b8:60:be:
64:ed:c6:f1:c1:47:d8:1f:f1:ec:f9:15:bd:32:8d:04:af:29:
f6:ef:4e:d9:1a:80:f5:4a:1e:94:51:ec:d6:9f:ff:d5:e6:d5:
02:4a:5a:ce:4d:1d:8f:1e:28:07:23:99:7b:93:19:8b:54:d6:
83:ef:eb:e2:90:9c:c4:c3:16:4e:2f:37:a1:ae:c2:52:58:4d:
21:e3:84:3a:a6:8b:96:de:d0:87:7d:8b:4d:84:6f:cd:de:ca:
71:86:5b:24:af:41:45:a3:33:8f:40:28:1e:b5:10:34:9b:05:
1e:32:24:bc:a3:e9:fd:3a:0c:bc:5d:00:0f:4b:7f:61:6d:1f:
d1:9b:b0:c8:00:9e:f4:e3:e3:07:88:77:88:e5:5e:9b:34:12:
2a:f3:8c:95:e0:8a:a0:20:71:f0:24:d3:6c:0d:49:98:7b:de:
0b:cd:7c:19:9b:de:83:56:21:4e:17:33:d5:e1:5b:e4:36:5f:
52:85:6e:f4:cf:ee:8c:4c:81:fd:90:fc:8d:b5:16:2b:e8:35:
2b:ef:91:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 09:02:05 2025 by rpki-client