Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/B46FE2D0C5CA11EBB86D320BC4F9AE02.roa
File: B46FE2D0C5CA11EBB86D320BC4F9AE02.roa (raw, json)
Hash identifier: akcQJOcqn6Cqm1e0k8wvVS6O2vanCte0Cwevg6oh+R8=
Subject key identifier: 92:E8:67:87:E7:AD:E8:6E:C0:32:D0:F8:90:9E:4A:65:AB:DF:8B:2F
Certificate issuer: /CN=A91E3680/serialNumber=3EE7412AFE873F1D45BAB614714A3201E3629691
Certificate serial: 0521
Authority key identifier: 3E:E7:41:2A:FE:87:3F:1D:45:BA:B6:14:71:4A:32:01:E3:62:96:91
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/B46FE2D0C5CA11EBB86D320BC4F9AE02.roa
Signing time: Wed 31 Jul 2024 00:42:30 +0000
ROA not before: Wed 31 Jul 2024 00:42:30 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 132339
IP address blocks: 103.12.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1313 (0x521)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E3680
Validity
Not Before: Jul 31 00:42:30 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66a98876-1a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6b:f9:7d:8b:e9:11:7a:29:e2:cd:45:e1:5f:
d3:a5:65:44:33:ee:f4:ad:b1:3d:9b:0d:e7:60:c5:
e2:04:bd:77:b8:23:57:22:82:0a:46:04:a1:46:ab:
b9:d6:2c:c2:32:98:d3:c1:9d:ba:1e:6c:82:79:6f:
5e:d7:10:a3:f3:76:bf:77:fe:02:c1:96:a4:5a:01:
97:80:49:d0:4d:4e:09:60:1c:bc:76:a2:91:31:f4:
d8:2f:71:11:85:83:5c:ca:4a:d2:9c:4a:02:5a:06:
fe:00:47:8a:74:9e:88:72:81:f6:03:4e:a3:d1:08:
bc:79:5e:48:bb:29:57:ee:e3:5a:e2:f1:27:c9:d1:
de:43:10:6d:e9:f1:41:38:66:4e:09:43:3a:be:e3:
04:aa:47:3f:38:a0:d9:ce:de:fb:fe:35:4a:64:cc:
f3:05:a5:c7:0b:a5:35:a9:e9:28:e6:a9:1e:17:d7:
49:fd:9f:72:01:75:54:f4:07:b8:0d:7d:43:bc:88:
a5:4c:bf:8d:bb:53:01:8d:5d:09:a2:6e:dc:29:5a:
a3:4c:c1:10:de:12:96:4b:9b:6c:95:51:d7:70:6c:
10:6a:90:c4:12:c6:f0:1a:7c:03:e6:84:2d:19:c8:
ca:96:b5:6c:53:ae:8e:76:96:e6:30:70:26:f7:1f:
91:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:E8:67:87:E7:AD:E8:6E:C0:32:D0:F8:90:9E:4A:65:AB:DF:8B:2F
X509v3 Authority Key Identifier:
keyid:3E:E7:41:2A:FE:87:3F:1D:45:BA:B6:14:71:4A:32:01:E3:62:96:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/B46FE2D0C5CA11EBB86D320BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.12.247.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:77:7d:6d:38:2f:f8:d0:64:3a:a9:7c:ff:9e:76:66:d9:39:
f0:47:59:01:eb:8e:d5:05:ca:82:57:bd:01:5d:53:10:da:02:
7f:fa:0b:63:eb:06:1c:47:14:6b:e3:0a:d5:ce:25:b8:ca:2b:
68:ae:dd:bd:1e:30:81:3a:cd:f0:41:9a:b6:6f:28:af:e1:26:
25:dd:e2:38:14:79:29:50:6d:92:c0:6a:a3:63:24:01:f9:67:
75:07:c1:43:d0:df:4f:81:37:b6:96:04:5a:bc:6e:a6:be:0f:
c3:3b:fe:cc:43:7f:4d:e5:d2:a5:b6:53:ad:71:70:5f:85:0b:
47:97:03:4b:17:ff:0d:6e:67:1e:67:f4:37:20:4c:9e:20:8d:
91:ec:46:c4:ab:77:84:36:0b:7e:32:c7:81:22:c6:fa:c3:6b:
f5:42:0a:0e:f2:b0:46:94:64:64:61:a4:4a:be:cd:1b:71:67:
4b:f2:a7:12:fc:0d:9c:e0:cf:3b:7a:bb:4c:fb:aa:09:f4:6a:
be:70:d3:5a:9c:f2:3c:4b:f4:6e:0f:4f:2a:c2:51:7d:72:1d:
5b:cb:9b:da:6d:3b:51:2d:0e:55:8c:21:d4:59:70:91:cd:30:
a8:66:4e:06:00:ab:40:5c:32:99:60:42:bc:3d:aa:d0:54:36:
23:9e:bc:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 17:14:32 2025 by rpki-client