Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/1F8EE77ECEF111ED9D71580AC4F9AE02.roa
File: 1F8EE77ECEF111ED9D71580AC4F9AE02.roa (raw, json)
Hash identifier: elY+yIl1H3F26OUjA40A23dujn0CummnltINa5yusRE=
Subject key identifier: DF:ED:BD:95:7B:B1:AB:59:88:57:64:52:53:6C:17:F2:EA:64:1F:E9
Certificate issuer: /CN=A91DEF04/serialNumber=3116E07584056C16F568F0EC6098E7DC4F504A38
Certificate serial: 062C
Authority key identifier: 31:16:E0:75:84:05:6C:16:F5:68:F0:EC:60:98:E7:DC:4F:50:4A:38
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MRbgdYQFbBb1aPDsYJjn3E9QSjg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/1F8EE77ECEF111ED9D71580AC4F9AE02.roa
Signing time: Mon 02 Dec 2024 22:32:18 +0000
ROA not before: Mon 02 Dec 2024 22:32:18 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 200908
IP address blocks: 103.80.84.0/23 maxlen: 23
103.80.84.0/24 maxlen: 24
103.80.85.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1580 (0x62c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DEF04
Validity
Not Before: Dec 2 22:32:18 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=674e3572-881a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c7:4a:c5:1b:07:ff:26:f7:bc:65:3c:b5:60:
d4:41:cc:35:4c:63:c7:d6:28:7b:c5:0a:bd:8e:20:
cf:77:87:b2:a1:dc:f0:9a:25:ce:c6:e4:4d:a0:25:
da:81:81:9e:91:91:70:20:a8:3c:46:40:e7:11:21:
71:d0:3b:cf:5a:b3:25:c6:39:6f:14:b8:b3:a5:09:
b0:f9:18:5b:f4:38:fa:be:4c:7a:84:3b:bb:35:7c:
61:d6:38:5d:15:75:04:31:10:1e:52:27:63:01:5c:
f5:f2:31:78:12:18:32:be:fc:cb:39:e8:05:7c:15:
48:f5:32:4e:6f:fe:46:10:80:f4:7f:58:4b:57:0e:
ca:a3:35:f1:67:0a:fd:f7:d2:f1:22:7b:89:a3:4e:
a3:2b:c9:65:03:bc:a8:76:a0:44:c1:71:cf:7e:22:
29:ae:f6:82:91:9f:df:ff:ce:ac:85:c0:6d:7e:f6:
6d:b7:a9:79:b3:27:a2:0c:74:87:2d:42:71:4d:22:
f0:76:59:7d:49:aa:20:9f:e0:19:90:26:97:92:9a:
11:1e:f6:c0:71:69:12:82:a9:e5:e1:a6:f9:04:2e:
5d:63:25:cf:b1:e7:d5:5f:93:ee:f1:e0:f4:f8:77:
61:8d:f6:a0:e1:4b:13:5f:f0:87:f7:3d:dc:f8:47:
07:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:ED:BD:95:7B:B1:AB:59:88:57:64:52:53:6C:17:F2:EA:64:1F:E9
X509v3 Authority Key Identifier:
keyid:31:16:E0:75:84:05:6C:16:F5:68:F0:EC:60:98:E7:DC:4F:50:4A:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/MRbgdYQFbBb1aPDsYJjn3E9QSjg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MRbgdYQFbBb1aPDsYJjn3E9QSjg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/1F8EE77ECEF111ED9D71580AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.80.84.0/23
Signature Algorithm: sha256WithRSAEncryption
50:b9:00:43:07:9f:f4:c7:5c:3d:a3:4b:84:6d:f8:a2:ce:4a:
60:a1:b9:92:ff:af:30:44:d7:42:62:8d:8d:4f:52:51:df:48:
44:ed:8d:8c:3a:e7:f2:41:e8:75:8a:6c:cf:b1:b5:56:4b:87:
70:54:49:20:36:52:72:e0:b1:4a:10:f0:99:da:29:fd:84:93:
6a:3b:6a:59:a8:30:ec:25:1a:f6:9a:a5:48:55:3d:1b:07:7e:
13:43:f9:92:9f:4a:e3:a2:55:51:98:99:57:69:04:b6:2e:d2:
07:d0:9f:cb:62:39:8e:25:eb:d3:a2:3f:ff:1e:4f:05:9e:63:
fd:d2:de:15:bd:7a:97:be:7d:1f:09:cd:6d:63:8a:37:67:ac:
f3:6c:e9:f9:74:d5:ce:e9:14:96:a0:4f:b5:b0:8a:26:c7:12:
73:de:07:f1:78:a7:c0:8a:48:a3:13:c8:78:4e:a4:16:f2:56:
53:a3:b2:87:b1:e8:a5:77:b6:a4:c2:55:1b:77:b5:0b:04:a5:
99:0a:ce:55:96:79:de:ad:9d:09:33:df:52:f0:cb:09:d2:a5:
cd:50:64:e0:ed:b6:6f:a1:b1:f7:d3:fe:6f:20:41:91:d8:24:
98:71:94:cb:b0:24:9d:a7:38:17:06:99:cb:bb:ad:25:01:c0:
e3:9f:93:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:29:40 2025 by rpki-client