Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2412/B676EBE028C711EC86107A0AC4F9AE02/C5713632828611EC83D75A3DC4F9AE02.roa
File: C5713632828611EC83D75A3DC4F9AE02.roa (raw, json)
Hash identifier: l5THryZWDs9PaYkc4EAibFlrwJ85CdhXihjnSzgLwkU=
Subject key identifier: C0:1E:BA:5D:7B:49:CB:8A:83:7E:BE:A8:EA:17:4D:43:53:D3:47:31
Certificate issuer: /CN=A91E2412/serialNumber=26C87D1966E2F835F7CC8E961D02FF309CE7BD20
Certificate serial: 0463
Authority key identifier: 26:C8:7D:19:66:E2:F8:35:F7:CC:8E:96:1D:02:FF:30:9C:E7:BD:20
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jsh9GWbi-DX3zI6WHQL_MJznvSA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E2412/B676EBE028C711EC86107A0AC4F9AE02/C5713632828611EC83D75A3DC4F9AE02.roa
Signing time: Tue 12 Nov 2024 23:32:55 +0000
ROA not before: Tue 12 Nov 2024 23:32:55 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 147189
IP address blocks: 103.174.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1123 (0x463)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E2412
Validity
Not Before: Nov 12 23:32:55 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=6733e5a7-e13f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:69:fa:96:7b:38:8e:2b:a4:87:51:ff:cb:0f:
5b:44:5b:3c:79:2b:ce:a7:7f:4f:cf:7e:01:84:8c:
eb:38:3d:49:f3:3a:5d:4a:37:d9:86:f7:83:be:23:
1e:3b:bb:46:26:7e:5e:35:30:75:8d:e2:68:8c:0e:
c9:bd:b1:69:7a:5c:a4:31:c3:7f:c2:ab:c4:1b:a0:
11:f5:20:a3:d2:69:66:63:12:9b:17:35:0f:3a:35:
c9:e8:16:5d:b6:6f:f7:48:71:e1:cf:8a:52:d9:51:
be:b4:cd:ca:d4:a6:ca:79:2e:a4:29:3e:5c:11:13:
8d:f8:51:a2:73:e3:33:c4:9d:7d:6b:fd:4f:c9:ff:
35:ca:4e:5a:7d:10:03:da:8d:c0:80:b5:61:2f:1d:
42:be:40:9f:e9:ac:04:a0:2f:b6:18:a8:69:70:31:
30:3e:c2:88:3b:cc:20:a2:f8:bf:d0:c9:29:48:16:
1d:45:75:11:73:6b:45:dc:c3:18:07:f2:15:46:61:
c4:7d:fc:c3:8d:b7:fb:22:49:d7:e8:67:56:68:e8:
79:2f:63:50:8f:9c:64:0d:bd:7c:81:d0:71:62:f4:
cf:56:52:7a:28:c4:7b:65:52:d2:7d:6d:d9:1d:81:
be:0e:76:17:d3:de:c8:b4:fb:4a:ec:08:55:b7:98:
d3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:1E:BA:5D:7B:49:CB:8A:83:7E:BE:A8:EA:17:4D:43:53:D3:47:31
X509v3 Authority Key Identifier:
keyid:26:C8:7D:19:66:E2:F8:35:F7:CC:8E:96:1D:02:FF:30:9C:E7:BD:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E2412/B676EBE028C711EC86107A0AC4F9AE02/Jsh9GWbi-DX3zI6WHQL_MJznvSA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jsh9GWbi-DX3zI6WHQL_MJznvSA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2412/B676EBE028C711EC86107A0AC4F9AE02/C5713632828611EC83D75A3DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.174.82.0/24
Signature Algorithm: sha256WithRSAEncryption
42:09:ee:db:eb:69:10:a2:98:1f:0e:48:02:b8:40:22:32:11:
49:d7:a4:ef:28:bd:03:28:41:92:e7:d4:dd:9f:11:d9:fb:6e:
a0:29:73:62:a4:92:46:53:9b:66:67:ed:a2:5c:65:ef:2b:11:
6f:16:ab:4e:cd:1a:5c:ed:b2:4f:95:34:08:60:6d:f3:38:5a:
52:24:29:e9:f9:d0:1a:2d:cd:bf:b7:45:14:f0:fe:e5:57:e8:
64:7a:8b:44:c7:1b:fe:5c:24:88:cc:79:b0:d2:44:15:97:2d:
1b:5b:a2:3c:04:08:61:3c:f3:1f:37:9f:49:b1:06:bd:6c:58:
1f:4e:79:de:ac:ea:31:7a:6b:0c:48:f6:9a:fb:ff:44:f9:cb:
b6:35:5e:d6:ec:51:d5:a2:53:25:7b:7e:bc:75:87:ff:24:74:
6a:de:3c:da:e7:b1:60:dc:15:15:39:68:a9:24:bf:2e:2c:52:
d0:f9:e6:b4:c4:ec:06:07:38:a7:2e:fc:73:c0:2d:c8:49:65:
a8:df:65:c4:c9:8e:82:61:c6:52:2f:6c:11:09:64:53:f7:05:
77:6b:b3:05:5f:2c:77:eb:40:9e:f1:07:0a:6b:ab:26:2f:bf:
a3:1c:81:d3:5e:f1:03:2a:30:a1:c1:04:b1:a9:d5:99:68:67:
f4:c8:13:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:36:10 2025 by rpki-client