Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9286/CA961C02208D11EA9FB7CA3FC4F9AE02/4F0E3CBCD22411ED99FF3546C4F9AE02.roa
File: 4F0E3CBCD22411ED99FF3546C4F9AE02.roa (raw, json)
Hash identifier: RoK/Liyg5Z/zOr0f0lIzQ8yWfepOU0FGv2MoxE2M0l4=
Subject key identifier: 55:23:B4:36:3B:BA:F6:19:D4:EA:52:65:28:D0:17:53:71:1E:B3:16
Certificate issuer: /CN=A91C9286/serialNumber=C8912DF4C47F8A66BC489EC84272480A211B0682
Certificate serial: 0B97
Authority key identifier: C8:91:2D:F4:C4:7F:8A:66:BC:48:9E:C8:42:72:48:0A:21:1B:06:82
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJEt9MR_ima8SJ7IQnJICiEbBoI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C9286/CA961C02208D11EA9FB7CA3FC4F9AE02/4F0E3CBCD22411ED99FF3546C4F9AE02.roa
Signing time: Mon 30 Dec 2024 19:17:42 +0000
ROA not before: Mon 30 Dec 2024 19:17:42 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 139881
IP address blocks: 103.146.150.0/24 maxlen: 24
103.146.151.0/24 maxlen: 24
2001:df2:6580::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2967 (0xb97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C9286
Validity
Not Before: Dec 30 19:17:42 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=6772f1d5-ba95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a8:b5:11:47:e5:90:c1:f0:14:4e:f0:77:e9:
57:91:7e:7b:9f:d8:42:4e:e5:3b:c0:41:ab:0f:a4:
28:23:a7:60:74:db:ce:d2:3e:f7:53:b9:ef:9e:c1:
4c:10:7e:f2:9d:2d:90:0f:91:d9:65:4e:cf:98:3b:
3c:f0:92:1f:9c:07:99:97:49:47:aa:cf:31:24:05:
0a:05:46:10:45:24:c1:1d:80:d2:60:5b:06:5b:81:
f8:d1:0a:80:0d:2c:cd:19:bd:f6:20:39:bc:19:8b:
db:a1:b0:cf:c2:37:72:b6:ac:95:49:6c:80:03:a4:
d9:cf:82:c7:e0:9d:d7:30:41:3a:2f:1b:98:5e:96:
e7:ee:22:3a:05:79:99:02:da:ec:1f:d5:fe:76:c2:
9c:f1:4d:51:b1:85:a9:9c:22:c9:f0:66:4c:21:99:
76:df:44:ff:dc:2b:8c:00:13:b3:17:e2:49:29:ac:
d3:f4:82:4f:51:4d:76:1a:79:ca:40:90:44:39:ed:
b2:63:55:c1:56:91:a9:f7:c9:13:9d:6d:87:71:08:
97:a9:0b:e9:5e:62:da:c1:73:b5:f6:6b:4a:ce:17:
b1:0f:99:68:3a:ca:bc:05:36:1e:d7:6e:87:3b:9a:
41:1d:ef:ed:e8:d3:d8:64:13:ab:6f:0f:8a:0d:09:
de:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:23:B4:36:3B:BA:F6:19:D4:EA:52:65:28:D0:17:53:71:1E:B3:16
X509v3 Authority Key Identifier:
keyid:C8:91:2D:F4:C4:7F:8A:66:BC:48:9E:C8:42:72:48:0A:21:1B:06:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C9286/CA961C02208D11EA9FB7CA3FC4F9AE02/yJEt9MR_ima8SJ7IQnJICiEbBoI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJEt9MR_ima8SJ7IQnJICiEbBoI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9286/CA961C02208D11EA9FB7CA3FC4F9AE02/4F0E3CBCD22411ED99FF3546C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.146.150.0/23
IPv6:
2001:df2:6580::/48
Signature Algorithm: sha256WithRSAEncryption
25:40:46:a3:76:d9:27:d5:e0:8b:a4:00:85:d5:6f:0d:a4:4b:
5f:99:e9:67:c8:47:94:b5:3c:42:eb:5a:30:31:ff:1c:29:bb:
27:7f:3c:86:9f:0b:90:eb:9b:b7:38:f6:bc:88:70:f6:ad:ab:
07:ec:c1:00:61:c2:4d:55:af:89:03:45:7c:c4:37:f9:80:9d:
0d:ab:23:68:f4:ff:f4:93:78:b2:b1:48:22:8d:0b:aa:31:a8:
3c:b9:4c:b8:08:3c:62:a3:bf:da:de:6d:5a:34:52:2f:50:b6:
48:a9:40:9c:b5:ae:ee:22:b2:1d:c8:af:b1:2a:d8:fe:76:da:
ea:64:7e:a6:c0:9b:73:3d:68:52:92:d3:ea:11:d3:94:0b:19:
82:81:9f:b8:6d:10:de:b8:5a:fc:58:ad:ac:2a:00:96:08:2f:
34:95:0a:74:cb:6f:bf:05:18:c1:f3:04:23:f5:1f:68:bd:67:
2d:d9:71:2d:8c:42:00:83:a8:f7:b8:1d:f7:58:1a:9e:c5:e5:
6c:e4:c6:fe:b2:2e:91:21:b4:63:17:a6:92:ad:95:3a:e7:11:
12:75:69:04:ca:a7:ee:85:c6:c4:f3:9d:cd:60:ba:34:04:ef:
94:59:ca:92:5d:3e:8a:46:7c:6a:d5:af:b7:4e:c2:e4:10:ed:
23:aa:3f:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 16:02:07 2025 by rpki-client