Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/7022F6EE5B4611EE9093F11EC4F9AE02.roa
File: 7022F6EE5B4611EE9093F11EC4F9AE02.roa (raw, json)
Hash identifier: e0200w8zEsZ5WKCdPwZ5CedunKufXXzWVfu8693DHy8=
Subject key identifier: B2:D3:55:DC:E9:D3:67:BC:FF:0C:E1:DC:D1:18:07:D6:01:35:29:B3
Certificate issuer: /CN=A91CE5A6/serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833
Certificate serial: 7D
Authority key identifier: 00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/7022F6EE5B4611EE9093F11EC4F9AE02.roa
Signing time: Mon 13 May 2024 07:41:50 +0000
ROA not before: Mon 13 May 2024 07:41:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 4826
IP address blocks: 103.37.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125 (0x7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CE5A6
Validity
Not Before: May 13 07:41:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6641c43e-9553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:64:47:0b:41:ad:58:43:54:cd:91:a7:8f:34:
96:bd:2b:92:f1:68:13:0c:b9:1e:f1:41:c1:0e:fb:
81:fb:32:ba:14:bd:7d:e9:61:50:c2:39:98:8d:60:
23:0a:ef:a3:b4:e3:fc:c0:cc:5a:b3:6d:d0:1f:4f:
dc:34:e1:dd:9c:0e:fd:a1:fe:12:6d:50:ad:97:96:
9a:e2:76:d3:bb:63:df:a7:c8:9d:cf:2c:68:d1:d1:
53:5c:cc:d0:96:d7:48:7b:30:64:c7:19:a2:ff:0a:
b8:10:f4:05:79:7f:e5:51:ec:67:a1:09:74:94:ca:
68:13:8f:5a:fd:51:45:d4:c8:ce:83:bb:82:e2:e4:
34:77:1d:61:62:3c:26:0e:34:f2:14:e0:78:32:42:
79:31:ad:ca:31:1f:6f:de:ec:ce:d5:19:d8:0a:c9:
95:7b:44:c7:03:6a:7d:ff:7f:4e:04:97:9f:a3:7b:
ec:04:fa:2f:eb:1a:c2:14:f6:8a:71:9d:18:d6:4c:
1c:5b:8f:ae:f6:ea:13:76:b4:d8:5a:72:16:ef:25:
13:db:0e:ef:65:57:94:42:18:e8:5d:39:5c:b9:fa:
1d:18:6d:e2:bf:bc:d0:b1:fe:f1:1b:82:9d:cf:e5:
7a:3d:54:b8:55:fc:9d:6a:6e:c6:f6:0a:e8:6e:07:
0d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:D3:55:DC:E9:D3:67:BC:FF:0C:E1:DC:D1:18:07:D6:01:35:29:B3
X509v3 Authority Key Identifier:
keyid:00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/7022F6EE5B4611EE9093F11EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.37.129.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:7e:b6:b9:97:dd:aa:0e:02:cc:53:44:a9:bf:45:7e:7e:80:
5b:70:aa:e5:14:b6:dc:0e:91:23:a5:43:3f:f8:92:a8:c5:2e:
75:e3:2a:81:e8:2a:dc:db:35:aa:2b:17:0c:51:95:9e:3a:60:
85:51:4a:2b:f7:e6:bc:d8:7c:ca:a2:48:38:60:a5:fa:97:0c:
8b:5a:2f:07:cc:e2:5a:6a:9e:fa:be:9b:7d:bf:31:d6:8d:26:
ec:3e:80:0b:a0:94:8c:3f:57:79:a2:67:0a:5d:8f:46:cf:f2:
e2:be:18:68:b2:19:60:67:c0:e8:4b:87:57:1e:30:53:cf:db:
e1:3f:bd:d1:bf:9f:6a:e6:1a:11:6e:50:45:03:b0:7a:91:60:
68:f7:3b:5b:57:32:7e:43:a5:09:12:63:e5:e5:ac:64:06:6b:
d2:61:b7:a5:58:c7:69:75:29:6b:c3:bf:3f:40:ff:5f:b7:98:
d2:51:27:a1:44:ba:6f:8a:d5:9d:2a:e0:8e:5f:0d:a7:72:52:
c1:90:8b:cd:3e:31:bd:1c:6e:f9:52:6b:0a:11:8a:be:f1:b7:
88:95:c1:f3:77:39:8b:95:2c:9e:38:75:09:ca:c6:ae:7b:27:
36:52:43:ee:8e:b2:f8:cd:bf:34:36:06:7c:a3:a8:fe:5c:97:
ed:a6:bd:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:39:46 2025 by rpki-client