Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/571B65E63DB411EEAA68F342C4F9AE02.roa
File: 571B65E63DB411EEAA68F342C4F9AE02.roa (raw, json)
Hash identifier: c5cKsH/wywjFJuntQ2zEXHvdACLKbLED/IyUky+0prg=
Subject key identifier: 5E:A9:FA:82:0F:E5:13:1D:FF:3F:F2:2C:75:E8:E8:90:AB:EA:DA:88
Certificate issuer: /CN=A91C0741/serialNumber=37EAEDA4242D50962B87B4A207AC4C344B33060C
Certificate serial: 0DF5
Authority key identifier: 37:EA:ED:A4:24:2D:50:96:2B:87:B4:A2:07:AC:4C:34:4B:33:06:0C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-rtpCQtUJYrh7SiB6xMNEszBgw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/571B65E63DB411EEAA68F342C4F9AE02.roa
Signing time: Fri 28 Mar 2025 18:28:39 +0000
ROA not before: Fri 28 Mar 2025 18:28:39 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 5065
IP address blocks: 103.83.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3573 (0xdf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C0741
Validity
Not Before: Mar 28 18:28:39 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67e6ea57-f2e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4e:b8:b3:8e:04:19:a6:a5:75:a0:99:5d:cb:
aa:ec:c2:1f:c9:3e:e9:89:4a:f2:bc:3d:e0:9c:04:
92:92:90:d2:1e:da:80:c1:30:b0:d1:32:79:95:1b:
b6:12:a0:24:12:8f:45:4e:70:3e:61:c8:be:0c:35:
d3:1f:73:c8:72:ca:a3:8c:fb:fb:a2:bd:a1:17:b6:
c3:c1:96:39:93:1b:f8:ca:37:28:33:04:d5:dd:b9:
16:52:6a:f8:16:4a:0f:ab:43:97:0c:ce:f4:07:7d:
1a:eb:ab:4e:8a:3f:a3:2d:56:5e:5e:0c:0d:9a:ea:
c7:c6:36:fa:a8:da:89:70:bb:9a:6a:8f:e5:b4:2b:
44:2d:16:06:a1:c5:7f:4c:09:e5:94:87:62:ce:53:
8a:e5:dd:59:ac:3a:e6:e6:f0:09:d7:34:57:15:d4:
98:66:0f:7a:f8:84:69:b8:1a:46:24:f4:c0:10:30:
94:7e:f9:26:c5:f4:a1:3a:c2:f2:3c:ed:b2:49:b2:
d9:55:9d:18:9c:6a:70:aa:23:9d:fd:fa:59:c6:9d:
06:c9:c4:ff:90:0f:05:d3:1f:7f:19:93:41:d6:40:
7d:9e:25:ee:9c:f0:fe:79:c5:80:d0:97:02:6b:35:
3a:4a:ef:2f:32:39:02:d9:49:16:66:dd:70:99:8f:
d4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A9:FA:82:0F:E5:13:1D:FF:3F:F2:2C:75:E8:E8:90:AB:EA:DA:88
X509v3 Authority Key Identifier:
keyid:37:EA:ED:A4:24:2D:50:96:2B:87:B4:A2:07:AC:4C:34:4B:33:06:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/N-rtpCQtUJYrh7SiB6xMNEszBgw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-rtpCQtUJYrh7SiB6xMNEszBgw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0741/77C9168EBD1211E990F4BF2CC4F9AE02/571B65E63DB411EEAA68F342C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.83.195.0/24
Signature Algorithm: sha256WithRSAEncryption
26:7d:9f:c1:f7:42:aa:19:e0:fc:02:f2:8e:04:ae:0f:2e:0f:
33:4d:30:78:b8:77:17:16:6a:bf:e1:24:6b:e2:af:cd:9e:e4:
fa:d4:6b:26:c7:48:c6:b3:96:78:06:98:f9:2a:34:a9:7d:ca:
b1:89:ba:5a:0f:a2:36:f1:ff:98:c3:ab:71:ba:74:95:18:31:
7a:0e:13:96:82:cd:0b:1f:3d:af:be:78:d3:05:61:8c:7f:96:
db:53:92:d3:0c:fe:ea:bd:c6:94:f0:3a:07:5e:9c:ba:73:22:
de:b0:ad:21:7f:37:2a:31:61:ab:5f:34:3a:9d:ed:86:40:87:
a8:4e:dc:3c:51:2e:fb:f7:66:69:5b:96:0b:40:d9:fe:48:27:
4a:3b:70:9e:26:8f:78:39:60:59:37:b9:c2:6e:fa:b7:a5:15:
21:66:0b:79:31:bb:4b:60:46:d4:73:9a:bb:28:d2:0d:33:23:
a9:ae:b6:0d:36:9b:48:16:f5:c7:8c:8f:6c:12:30:b6:65:a1:
c1:db:a2:70:93:c2:d4:72:12:be:b9:78:e4:75:f5:95:c1:aa:
eb:96:79:f9:73:92:43:4d:55:28:80:ae:d3:f6:5b:49:9c:5b:
d9:57:fb:9b:12:38:32:44:56:7a:02:95:3b:ec:87:24:47:a4:
e8:34:ea:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 09:10:31 2025 by rpki-client