Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F53A5/500CFE98DA6611EC80DFE736C4F9AE02/99C51F96DA6D11EC86CE4D59C4F9AE02.roa
File: 99C51F96DA6D11EC86CE4D59C4F9AE02.roa (raw, json)
Hash identifier: JVCzZkuG4CHRB6G2oinVMp3rcx6RD2PvDmsbTNaguh8=
Subject key identifier: 43:BD:04:08:26:89:77:1C:3F:5F:56:B5:67:7C:09:7D:7F:35:C8:8B
Certificate issuer: /CN=A91F53A5/serialNumber=E4BF7D5960B6B2F3C52141EF2B602AD114F40CA8
Certificate serial: 0246
Authority key identifier: E4:BF:7D:59:60:B6:B2:F3:C5:21:41:EF:2B:60:2A:D1:14:F4:0C:A8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5L99WWC2svPFIUHvK2Aq0RT0DKg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F53A5/500CFE98DA6611EC80DFE736C4F9AE02/99C51F96DA6D11EC86CE4D59C4F9AE02.roa
Signing time: Fri 07 Jun 2024 05:01:58 +0000
ROA not before: Fri 07 Jun 2024 05:01:58 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 149817
IP address blocks: 103.187.8.0/24 maxlen: 24
2001:df0:b3c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 582 (0x246)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F53A5
Validity
Not Before: Jun 7 05:01:58 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66629446-498f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:92:2a:fd:7a:d8:a8:9c:b6:75:8d:c8:32:93:
f4:1a:30:da:18:96:47:bd:fa:b9:a3:bd:e2:5a:90:
03:ba:52:c8:52:d0:a8:62:49:0e:2b:7d:22:f7:c5:
c5:20:80:a9:65:96:ff:b8:3c:07:3b:49:6d:2b:7f:
15:37:d2:63:de:4a:cf:df:70:da:03:3c:de:11:62:
24:fb:78:4d:4f:ed:14:8c:9c:df:8f:b1:84:b3:25:
38:8c:ca:8f:22:db:33:f7:91:eb:3a:e6:b4:03:af:
af:12:85:e3:a8:ab:28:ef:73:13:44:85:4f:2e:99:
f2:e4:dd:08:bb:bd:f6:a8:03:6c:38:fc:f7:8a:bc:
99:81:79:5e:51:04:89:26:27:78:dc:37:fd:9b:4a:
eb:81:6c:6c:9b:be:a8:91:d6:ac:cb:ef:79:17:48:
2a:60:f6:0a:bd:d6:36:c8:d7:77:8b:af:36:b1:a2:
e0:6e:12:b0:b2:c0:33:38:91:c7:ff:2a:6d:cf:4b:
e6:ae:15:a3:55:73:5a:a0:bc:fd:ba:79:60:91:22:
89:4f:e3:e0:a7:7b:6c:fa:7a:ee:24:54:24:bf:23:
2f:b1:98:37:ee:8d:bf:4e:33:f0:55:5e:ec:86:a6:
fe:6b:be:ce:d3:3b:18:75:ed:7a:77:e7:6a:bd:86:
b9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:BD:04:08:26:89:77:1C:3F:5F:56:B5:67:7C:09:7D:7F:35:C8:8B
X509v3 Authority Key Identifier:
keyid:E4:BF:7D:59:60:B6:B2:F3:C5:21:41:EF:2B:60:2A:D1:14:F4:0C:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F53A5/500CFE98DA6611EC80DFE736C4F9AE02/5L99WWC2svPFIUHvK2Aq0RT0DKg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5L99WWC2svPFIUHvK2Aq0RT0DKg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F53A5/500CFE98DA6611EC80DFE736C4F9AE02/99C51F96DA6D11EC86CE4D59C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.187.8.0/24
IPv6:
2001:df0:b3c0::/48
Signature Algorithm: sha256WithRSAEncryption
1e:73:bf:fb:fb:41:b3:32:82:5b:3b:30:53:c7:0b:9a:70:4a:
b2:f5:bf:b1:74:0b:d0:ac:4d:a3:bf:a2:cb:09:d3:2f:36:71:
93:2d:2a:2a:f5:f9:3e:03:2c:8d:6b:89:14:41:d8:96:16:b1:
d7:f2:47:0a:46:5e:86:74:e5:c5:22:c1:2c:f6:5b:17:5f:d4:
c9:ce:59:ae:1d:98:5e:08:97:80:b0:bd:ce:9f:cf:4e:9f:12:
74:23:4c:1a:28:00:6b:1a:54:ad:7a:2e:ad:f6:de:7b:4e:63:
c1:45:05:24:40:f6:61:62:86:69:ad:90:68:21:6d:0a:0d:52:
f5:05:4a:20:1d:e5:8f:91:f9:b9:bb:67:f9:54:86:a1:69:6b:
ab:e6:d1:17:d6:9a:ee:08:36:16:7f:1d:ae:8d:0f:74:a7:d2:
40:f8:09:41:5f:e5:23:6b:3f:5d:5e:31:4f:a1:5e:81:c5:5e:
f8:ea:1a:d7:21:aa:ea:c4:62:ba:67:b9:03:2f:9d:8f:09:24:
fc:80:50:66:39:b7:33:70:44:1e:a3:b2:02:32:4a:8d:74:e4:
9c:dc:24:14:6c:6f:27:15:e7:3e:65:e9:1c:e2:0e:6a:ed:79:
02:1c:8b:4d:d1:79:fc:cf:90:08:0c:3d:6a:28:5e:f0:bb:f4:
c9:f4:59:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:33:31 2025 by rpki-client