Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C27E8/692F72F2F9BA11E7A4C2943BC4F9AE02/BAD2356E153411E892E6D468C4F9AE02.roa
File: BAD2356E153411E892E6D468C4F9AE02.roa (raw, json)
Hash identifier: ZwNXUOwbbGwEvsT0YYSZl1NqDpf0fkjGMPzYp65wdFE=
Subject key identifier: AD:29:C2:50:38:18:1C:F6:16:B9:B8:9A:BB:4B:BB:61:DA:1C:60:6D
Certificate issuer: /CN=A91C27E8/serialNumber=A9752599840D6EECAA1BF68C0905AD7DF469A2E7
Certificate serial: 1677
Authority key identifier: A9:75:25:99:84:0D:6E:EC:AA:1B:F6:8C:09:05:AD:7D:F4:69:A2:E7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXUlmYQNbuyqG_aMCQWtffRpouc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C27E8/692F72F2F9BA11E7A4C2943BC4F9AE02/BAD2356E153411E892E6D468C4F9AE02.roa
Signing time: Thu 16 Jan 2025 16:44:19 +0000
ROA not before: Thu 16 Jan 2025 16:44:19 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 137244
IP address blocks: 103.105.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5751 (0x1677)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C27E8
Validity
Not Before: Jan 16 16:44:19 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67893762-eaff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fc:9c:67:34:e7:2e:66:c4:fd:66:ea:32:3c:
5f:9a:b6:bd:f4:37:c2:58:e2:95:4c:d7:bf:50:fb:
03:3d:45:93:74:9e:1f:c8:f2:e8:04:f5:06:77:9a:
41:0d:06:4c:22:23:62:de:f8:e7:55:43:7a:95:49:
f1:f2:0b:a6:8f:d2:d8:39:2b:4f:d6:72:bd:09:22:
10:f1:bd:56:48:57:52:f1:4a:c7:9b:48:0d:bc:0f:
37:a7:3f:70:eb:e9:dd:d7:5a:63:91:43:1f:f4:bb:
b9:84:fa:8c:93:c8:df:62:f8:f1:b1:e7:c5:35:e2:
5f:a4:e4:ad:8e:3c:4c:9a:22:43:84:fd:f5:bb:c0:
aa:cf:cb:f0:ad:b7:b6:b2:8b:39:bb:47:37:6f:b7:
4e:78:2d:18:9f:bc:06:7a:94:31:8e:17:30:55:eb:
47:7b:68:2b:76:97:db:3b:6c:ea:35:28:3e:4a:fc:
b4:e2:a1:ac:e5:1d:b6:43:35:43:05:38:19:f5:c4:
39:5b:2d:41:0d:5d:fe:79:7f:9f:5d:57:dd:f0:ef:
47:ca:96:06:c0:86:96:2e:3b:2c:8a:32:0f:ac:36:
cc:a6:2b:c3:2b:2e:94:89:e8:78:e5:ff:d4:2d:88:
78:28:7d:f5:10:ac:aa:ef:c9:b0:ae:4d:d7:bb:8f:
c9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:29:C2:50:38:18:1C:F6:16:B9:B8:9A:BB:4B:BB:61:DA:1C:60:6D
X509v3 Authority Key Identifier:
keyid:A9:75:25:99:84:0D:6E:EC:AA:1B:F6:8C:09:05:AD:7D:F4:69:A2:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C27E8/692F72F2F9BA11E7A4C2943BC4F9AE02/qXUlmYQNbuyqG_aMCQWtffRpouc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXUlmYQNbuyqG_aMCQWtffRpouc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C27E8/692F72F2F9BA11E7A4C2943BC4F9AE02/BAD2356E153411E892E6D468C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.105.198.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:57:31:b8:49:cc:c8:39:d1:dd:d4:39:24:82:e2:93:75:c6:
6d:fd:39:3c:b3:24:2c:a8:e2:48:20:ed:e4:55:f5:3e:67:b7:
cc:cc:0d:9b:ba:49:ec:e0:6d:93:e6:45:2a:06:aa:54:f9:2a:
bb:06:42:1d:33:79:42:7f:0d:6c:0a:3b:1b:67:17:6d:d3:74:
34:3b:83:82:df:04:ee:ff:91:c2:af:93:66:03:83:07:e5:f0:
6b:b2:5e:b8:21:10:2a:3e:5a:72:44:4c:c8:2d:38:d2:fd:67:
3c:1e:fb:08:ea:d2:60:20:a4:7d:75:13:9a:e0:0f:94:83:c3:
98:77:72:00:1e:50:a5:7e:d6:8c:93:2f:ea:c8:5e:72:ca:37:
c4:86:be:3d:64:8d:d2:18:d9:e6:d4:ed:dd:cd:29:7d:20:78:
cb:c7:f9:d2:44:01:47:38:e2:46:4b:da:fe:3f:66:04:47:fa:
e5:1d:0f:e3:49:d5:05:d9:73:19:95:78:8e:7e:cd:b4:4d:95:
33:3e:86:e2:a7:43:73:a2:f8:46:1e:c1:ec:92:d0:b5:b5:7f:
78:1c:88:cb:86:1f:e2:10:af:1d:0d:4d:e9:f5:32:e6:7d:1c:
25:ee:15:79:2a:e8:dd:83:8d:8a:27:f3:d3:ac:7b:a1:d4:fb:
c5:8e:7e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:58:47 2025 by rpki-client