Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/24365CBCF51411EFB44F001BC4F9AE02.roa
File: 24365CBCF51411EFB44F001BC4F9AE02.roa (raw, json)
Hash identifier: tjyX4VC0m3nPNl+YbtpnbpRvEQzCPx+5sbkGCSkgZHQ=
Subject key identifier: B4:5F:29:EE:6E:32:93:03:0C:05:80:2A:87:85:9D:49:C7:61:00:4C
Certificate issuer: /CN=A91E5998/serialNumber=601DC54B1F5205080EFD9AA6CFA5A51C4A79DD2B
Certificate serial: 05F2
Authority key identifier: 60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/24365CBCF51411EFB44F001BC4F9AE02.roa
Signing time: Thu 27 Feb 2025 14:07:13 +0000
ROA not before: Thu 27 Feb 2025 14:07:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 136380
IP address blocks: 103.165.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1522 (0x5f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E5998
Validity
Not Before: Feb 27 14:07:13 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67c07191-9772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e1:9a:aa:54:f3:83:8e:a2:86:b4:01:0a:ba:
bd:c3:b4:7b:98:05:10:39:5c:da:b3:63:80:8b:1a:
13:b6:fb:c4:a9:9b:5b:b9:68:d3:e4:4c:b8:8b:49:
c4:9e:df:2e:a2:49:05:8e:99:61:53:50:d7:cf:48:
cf:91:0c:36:55:79:63:f9:a4:82:74:e8:99:04:5c:
c7:61:ea:e9:5c:25:d1:07:b3:4a:9c:28:eb:00:27:
2c:a2:8c:a3:87:9c:e6:8e:18:37:fc:5c:7e:d5:eb:
ab:22:c5:5c:3c:c2:4b:49:23:02:76:fd:d4:a2:df:
cf:27:79:4a:82:7f:8d:28:77:1c:ab:c0:61:63:4a:
af:79:85:fb:48:3e:21:53:5b:5e:8e:7d:43:23:ec:
48:f7:8b:39:ae:0d:6b:d6:00:53:d5:d9:84:cb:ec:
a5:ec:9c:03:7e:6e:0c:ee:82:ff:b6:e4:56:cc:fe:
15:06:06:8e:e9:88:90:2e:6c:15:08:40:5e:e8:4d:
9f:0d:d3:fe:d3:50:ba:97:fb:b6:2f:d8:33:55:28:
8f:11:6d:c2:25:be:46:d8:63:2b:7b:f7:c6:98:11:
be:ed:84:2f:80:e2:24:91:0f:08:5d:5f:95:ea:66:
fd:f1:6b:53:90:b0:de:ae:b6:27:41:52:6f:27:7b:
eb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:5F:29:EE:6E:32:93:03:0C:05:80:2A:87:85:9D:49:C7:61:00:4C
X509v3 Authority Key Identifier:
keyid:60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/24365CBCF51411EFB44F001BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.165.185.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:bd:eb:df:71:42:51:73:0c:70:9b:8d:4b:85:a0:65:83:ed:
f4:90:ee:9d:03:72:d0:fc:27:20:ca:2b:ab:fb:7f:ae:9b:9a:
de:ef:cf:3c:cf:00:41:6a:a3:41:1b:47:08:3e:40:ad:69:a0:
20:a7:76:de:f5:3e:49:88:3d:94:45:89:f3:4e:1f:a6:c9:d6:
75:48:9e:c7:82:7d:30:e6:e9:08:81:b4:23:98:87:75:6e:10:
a8:3f:d0:f5:b7:9f:c1:2e:54:55:81:50:49:53:99:7a:da:63:
0a:78:98:af:92:e2:26:1c:51:4b:48:17:3b:7d:34:bf:fa:4a:
a6:d4:3d:6c:6c:2a:f6:db:67:c6:36:56:b5:9a:0b:30:9b:05:
7d:a5:da:51:09:ae:ca:58:ec:30:d8:17:35:6d:b1:56:7f:82:
ff:13:e3:d7:c0:c2:6b:49:ba:9f:be:06:65:d9:45:81:d1:e2:
ae:ae:08:89:1a:be:5c:a8:5c:ad:9d:64:10:cf:69:3d:a2:30:
ab:4e:2e:54:b9:6f:42:4e:2f:41:aa:df:53:8f:6c:83:01:44:
ef:f7:3b:17:08:1f:45:4b:28:c6:c6:94:39:36:dc:ac:d0:09:
9d:a0:34:f9:4e:51:fa:62:c1:3d:26:7f:64:a3:59:90:fd:23:
5f:9c:0f:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:56:51 2025 by rpki-client