Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/DD65771EF51311EFAF48940CC4F9AE02.roa
File: DD65771EF51311EFAF48940CC4F9AE02.roa (raw, json)
Hash identifier: l9ztByFGDecPmeen5k4aFuICKvLje3mnQzd69VLniQ0=
Subject key identifier: D7:DA:C0:99:CA:83:C2:A0:B2:1F:53:3E:89:A0:68:F5:97:CA:34:08
Certificate issuer: /CN=A91E5998/serialNumber=601DC54B1F5205080EFD9AA6CFA5A51C4A79DD2B
Certificate serial: 05F0
Authority key identifier: 60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/DD65771EF51311EFAF48940CC4F9AE02.roa
Signing time: Thu 27 Feb 2025 14:05:15 +0000
ROA not before: Thu 27 Feb 2025 14:05:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 142053
IP address blocks: 103.165.184.0/24 maxlen: 24
2001:df6:7080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1520 (0x5f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E5998
Validity
Not Before: Feb 27 14:05:15 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67c0711a-0b72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d6:e3:d6:4f:22:85:7b:ca:11:6c:ed:81:68:
d3:e6:ef:00:bc:18:55:12:59:fb:a3:7c:da:ec:e3:
45:f9:11:e4:72:64:04:6d:ad:ae:39:fe:21:17:8d:
b5:bc:e0:8e:61:fb:04:9b:02:d0:78:bd:ce:85:2b:
88:56:b2:2c:39:42:6b:fc:b8:a7:5c:09:da:8f:a6:
ee:b1:86:4f:0b:58:4d:b2:4a:b2:67:fb:16:b4:28:
81:b5:de:ca:8e:80:e9:e4:e4:b2:b8:ac:b0:73:53:
51:34:17:30:66:b5:7c:a0:39:f0:f7:c4:cf:37:52:
c7:d3:a7:de:54:0d:c3:e3:1d:31:92:c5:b1:27:bc:
58:e8:d1:61:4c:b3:a7:fc:4e:50:5a:fc:0c:c2:c8:
63:49:86:aa:58:9a:98:ba:8b:23:50:2f:7f:7c:f8:
5b:25:b4:df:57:98:4d:38:71:72:4b:3f:1b:8c:fa:
03:e6:43:36:c5:3a:d4:fe:81:3f:36:2f:9e:f0:ad:
66:c1:bd:0a:1d:c5:f0:19:4a:06:3f:9a:cd:74:fd:
2a:0a:97:26:d5:09:f9:87:d6:59:42:51:b4:09:cc:
03:cd:f7:69:ad:0d:6e:0c:12:ce:07:47:8e:1a:28:
b1:14:d9:c0:79:00:30:71:11:5c:8b:e1:5f:1a:da:
21:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:DA:C0:99:CA:83:C2:A0:B2:1F:53:3E:89:A0:68:F5:97:CA:34:08
X509v3 Authority Key Identifier:
keyid:60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/DD65771EF51311EFAF48940CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.165.184.0/24
IPv6:
2001:df6:7080::/48
Signature Algorithm: sha256WithRSAEncryption
47:3b:30:ce:fe:28:68:e4:51:07:d0:ee:08:f8:b8:bb:9b:e7:
04:96:94:9a:b5:2b:5c:00:7b:8b:57:c4:e4:b6:62:b0:7b:b8:
33:9b:c2:9f:1e:02:da:bc:c4:fa:ac:6d:02:9d:85:b4:f4:4c:
d4:78:62:88:61:d2:0e:3a:bc:16:b2:de:c2:c1:b6:9a:64:76:
c0:3c:ee:b1:74:04:8a:46:61:67:98:34:3e:12:1c:99:49:d7:
a0:b0:67:67:83:33:97:ef:d2:ab:b8:3f:84:d7:02:1a:fa:77:
d7:30:50:01:83:57:a8:a3:30:f1:5b:79:ea:49:f6:00:0f:b1:
9d:5b:f3:80:5d:c1:23:33:6f:56:d5:74:39:3b:d0:78:ea:7f:
dc:a3:76:96:55:10:66:3d:93:23:e8:60:18:dc:c8:4f:b0:c7:
33:f4:74:d2:e6:d6:a0:2c:2b:f2:0d:dc:d0:9d:4a:23:84:3e:
8e:d4:57:da:2a:82:75:7f:0c:b6:16:5c:dc:80:df:d6:47:95:
c0:87:7c:22:ea:70:3c:d6:86:13:7a:8e:5b:fc:34:fe:bc:96:
2f:6f:bc:62:7d:f4:2a:2c:b2:11:4d:b1:86:47:93:cc:60:5b:
be:17:2b:ff:f4:da:96:4b:54:92:94:73:2a:6b:f9:e7:21:c5:
6d:f5:af:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:57:18 2025 by rpki-client