Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/1DC0E5BC419811EAA268D964C4F9AE02.roa
File: 1DC0E5BC419811EAA268D964C4F9AE02.roa (raw, json)
Hash identifier: 7AbLEGTUte7i/32jHb/3xF5+Xhl8HDSf/wM/vLR6e8Y=
Subject key identifier: E0:23:91:BF:1D:37:D7:61:51:7E:31:0E:D2:F1:6F:3E:6A:7A:90:5D
Certificate issuer: /CN=A91ED2BB/serialNumber=A6FF381A2AEBEA6DCCFE0DE65D4196040271FE94
Certificate serial: 0A98
Authority key identifier: A6:FF:38:1A:2A:EB:EA:6D:CC:FE:0D:E6:5D:41:96:04:02:71:FE:94
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/1DC0E5BC419811EAA268D964C4F9AE02.roa
Signing time: Mon 02 Sep 2024 20:28:21 +0000
ROA not before: Mon 02 Sep 2024 20:28:21 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 132827
IP address blocks: 103.246.178.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2712 (0xa98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ED2BB
Validity
Not Before: Sep 2 20:28:21 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66d61fe5-3924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a8:92:50:14:c4:bf:cf:3e:87:42:f3:53:25:
5a:1c:1a:97:b5:60:e6:37:7f:6c:06:aa:4c:7c:44:
d3:43:48:1a:cc:5a:f2:42:5c:d8:0f:04:56:54:71:
62:2e:b2:22:1b:43:84:dc:62:01:58:90:ba:45:ca:
03:84:65:7d:1a:83:80:c2:08:75:c6:8e:4c:f3:b2:
1d:87:3a:45:1d:1d:b7:97:23:01:cd:85:a2:26:e1:
fa:09:73:23:57:7d:84:a4:2d:1b:d6:50:d7:19:12:
39:4e:bd:5a:98:1b:33:f0:99:13:87:33:4e:28:5d:
30:99:76:37:54:18:20:ec:ad:9b:41:30:26:7e:d6:
de:e8:ae:ea:91:cd:64:f3:a1:27:91:12:47:d1:8c:
8f:39:5b:f3:e2:cc:a5:2b:fa:f7:41:9f:9d:e2:97:
78:39:e7:f6:d1:4e:1d:8d:b0:1a:e3:8b:7f:b0:ea:
d6:11:c8:11:f0:b3:f4:c5:09:ad:81:df:0a:6e:ca:
ce:42:b3:13:b6:b5:82:39:24:64:ac:c0:37:c3:68:
21:47:84:a5:bc:50:4e:65:dc:57:c1:bd:1d:05:39:
b8:f3:dc:98:2f:75:7b:f2:6e:cf:47:7f:6e:99:0d:
64:35:59:86:db:f1:bc:8d:55:27:25:42:7e:26:6e:
6a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:23:91:BF:1D:37:D7:61:51:7E:31:0E:D2:F1:6F:3E:6A:7A:90:5D
X509v3 Authority Key Identifier:
keyid:A6:FF:38:1A:2A:EB:EA:6D:CC:FE:0D:E6:5D:41:96:04:02:71:FE:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/pv84Girr6m3M_g3mXUGWBAJx_pQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/1DC0E5BC419811EAA268D964C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.246.178.0/23
Signature Algorithm: sha256WithRSAEncryption
46:6d:62:ca:b2:6a:ee:82:6a:1c:bb:49:29:73:6b:1b:ae:0b:
e2:be:d4:eb:d7:4b:75:f8:7a:27:a9:21:a0:62:82:6d:21:45:
17:06:92:74:c6:2e:6e:32:e3:3e:47:ba:fc:3e:79:ac:e0:59:
7e:92:a2:1e:d9:53:43:a8:88:3c:ee:0f:4b:0b:9a:77:bd:50:
92:60:be:41:90:20:9a:fa:1c:3d:d1:a5:5b:c3:bb:12:29:04:
86:85:77:16:e5:25:ef:41:34:e4:0d:04:c4:97:5a:d4:ee:69:
1d:a3:65:e4:cb:f8:a9:6d:74:e7:50:74:dc:89:fa:b7:1b:52:
db:bd:43:69:05:b1:3c:34:9f:3a:df:47:7d:34:2d:6a:0a:58:
bd:1e:67:6c:22:7e:52:9c:b2:0e:4d:af:0a:36:c6:8b:20:f4:
98:71:07:95:02:10:48:12:ac:e3:e7:13:30:71:a3:4f:e3:b0:
99:3e:6a:ed:ca:c8:50:72:7c:9d:41:c5:10:22:ef:27:97:07:
f6:f4:b1:cc:8c:08:ae:c2:7b:25:39:6f:eb:87:08:d2:5e:8e:
fc:ee:e9:1b:24:6b:7e:88:f3:d2:05:13:9f:29:ba:81:9f:7d:
c1:77:cd:3b:2d:64:f9:79:24:bc:22:56:5f:0e:f8:bc:a1:df:
3b:25:df:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:35:34 2025 by rpki-client