Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/6FCF7FF2180411EA9AA70A57C4F9AE02.roa
File: 6FCF7FF2180411EA9AA70A57C4F9AE02.roa (raw, json)
Hash identifier: Kec3OJ0yXeD5eottWlXfmKbDVOHd3PQe3ZSjrmCo8jA=
Subject key identifier: 31:CF:8A:C6:F9:0C:03:8B:70:5B:A0:AE:2F:CD:73:2C:17:F5:B8:A6
Certificate issuer: /CN=A91C36EE/serialNumber=8A1A6BA9BB76CF2B0DEE35EA4CFD2F5FF8C089E3
Certificate serial: 0B8C
Authority key identifier: 8A:1A:6B:A9:BB:76:CF:2B:0D:EE:35:EA:4C:FD:2F:5F:F8:C0:89:E3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihprqbt2zysN7jXqTP0vX_jAieM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/6FCF7FF2180411EA9AA70A57C4F9AE02.roa
Signing time: Tue 10 Dec 2024 19:17:30 +0000
ROA not before: Tue 10 Dec 2024 19:17:30 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 139788
IP address blocks: 103.145.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2956 (0xb8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C36EE
Validity
Not Before: Dec 10 19:17:30 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=675893ca-9034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:eb:ba:d1:1d:ef:8e:b9:0b:2e:34:91:9c:4f:
e8:d2:b1:30:bc:3f:71:e8:a9:86:60:ef:be:f2:97:
45:bc:d2:d0:f4:a8:d9:1c:da:6c:bc:a2:2a:09:11:
90:9e:b9:c5:97:06:7c:b2:c5:66:dd:a9:fe:43:f6:
c7:6c:d1:70:62:d7:98:af:47:b3:7e:bd:6c:e7:64:
9a:71:af:63:7b:69:47:12:e0:a4:e9:de:9c:e0:41:
33:b4:6a:31:20:81:11:03:d7:7c:53:82:3b:00:98:
48:88:83:bd:70:19:35:f1:96:c5:54:f4:1e:5e:27:
26:46:d0:26:ef:b6:10:0b:c4:ec:93:11:fc:91:2b:
cc:33:7d:ea:5c:aa:e1:23:76:59:d1:87:58:03:32:
f2:9a:1f:6c:9a:99:6a:5c:51:bc:fd:8b:fa:61:91:
5f:30:c1:3c:21:2d:35:c1:c2:61:c1:b2:98:2c:89:
e4:79:a3:20:cf:0f:ae:34:35:15:8c:97:64:70:24:
a8:8e:ee:3a:a8:4b:d1:e7:dc:2b:b3:ab:06:1d:6f:
7f:9c:2e:80:45:0f:32:50:ec:80:33:c4:8f:f6:1b:
a1:b3:2a:f8:8c:46:a9:a2:88:dd:40:6f:65:fc:24:
3d:da:f2:71:dc:45:88:0c:46:6b:d9:e8:d1:29:91:
35:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CF:8A:C6:F9:0C:03:8B:70:5B:A0:AE:2F:CD:73:2C:17:F5:B8:A6
X509v3 Authority Key Identifier:
keyid:8A:1A:6B:A9:BB:76:CF:2B:0D:EE:35:EA:4C:FD:2F:5F:F8:C0:89:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihprqbt2zysN7jXqTP0vX_jAieM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/6FCF7FF2180411EA9AA70A57C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.145.56.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:b2:56:64:99:8a:6c:b8:90:9b:9b:6e:04:5f:86:32:99:01:
56:2f:7f:09:4d:13:e7:26:4e:91:73:4b:cb:88:bc:cd:79:f0:
a5:58:be:9e:d8:98:85:87:90:e5:cb:03:34:3b:96:dc:9c:89:
c5:56:41:de:e5:b1:6f:5d:74:d1:e4:68:59:59:77:83:3f:36:
ee:bb:46:b6:6e:5d:57:2e:e9:5c:02:83:8a:cb:9d:cd:54:3d:
0c:c8:e6:77:a3:e1:98:9f:f5:4a:a3:ce:d2:eb:13:2c:fc:d5:
07:2c:0b:5a:9f:03:5a:79:70:f7:e2:6e:18:52:29:12:6b:bb:
44:58:10:fe:a2:52:f4:90:f9:89:98:c8:a7:2b:d9:69:3f:b8:
16:ea:f0:2b:36:87:0f:6e:5c:62:c8:27:61:01:3d:97:2a:cb:
1c:a2:ee:3a:9c:bd:ad:34:33:eb:fd:c8:85:34:87:17:3c:1c:
a7:e5:f9:8e:24:dc:5a:ff:bf:37:3e:5b:81:96:ce:94:32:0d:
79:7c:10:9b:c5:9d:e5:a8:8b:ff:b5:79:f1:d3:a7:5e:21:79:
ba:dd:da:86:bf:d3:e9:c6:14:c7:b1:77:d4:8b:89:7b:0b:f3:
2e:5a:0c:20:4b:9f:82:58:8d:26:1d:52:f6:b4:cc:53:50:50:
c6:a7:fd:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 10:37:49 2025 by rpki-client