Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9665/6D0D12B84BF511EBBD83B87BC4F9AE02/62884F1AB6CC11EF84CBC45FC4F9AE02.roa
File: 62884F1AB6CC11EF84CBC45FC4F9AE02.roa (raw, json)
Hash identifier: 6AczBLIqDAcF+6tIss6Wyb54wDocuUcwfxiF+F2BtCw=
Subject key identifier: 27:AF:BC:75:9C:3F:4D:32:A4:7A:CA:3E:5F:8A:22:4A:F5:E9:E6:37
Certificate issuer: /CN=A91F9665/serialNumber=3058A469B67D03072C2D8A385E9F2AABBA134E2B
Certificate serial: 06F6
Authority key identifier: 30:58:A4:69:B6:7D:03:07:2C:2D:8A:38:5E:9F:2A:AB:BA:13:4E:2B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MFikabZ9AwcsLYo4Xp8qq7oTTis.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F9665/6D0D12B84BF511EBBD83B87BC4F9AE02/62884F1AB6CC11EF84CBC45FC4F9AE02.roa
Signing time: Sat 08 Mar 2025 22:13:13 +0000
ROA not before: Sat 08 Mar 2025 22:13:13 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 5065
IP address blocks: 103.226.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1782 (0x6f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F9665
Validity
Not Before: Mar 8 22:13:13 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67ccc0f9-ad1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:10:e4:2d:b9:3b:b1:cf:6d:b2:50:26:a8:cd:
f1:62:65:69:26:3c:29:a4:c0:76:47:4e:83:6f:0a:
51:a6:7b:6d:98:0d:6b:9e:45:03:11:11:98:e4:81:
3e:c6:a0:2e:39:4f:70:aa:9c:4e:9d:e1:16:56:2b:
ba:60:1a:98:07:40:f0:8b:0e:9c:d2:01:6f:c8:68:
60:2c:8f:95:b3:15:0a:cd:44:ed:dc:1f:c9:e3:8f:
5e:f7:fe:f5:e6:ff:c9:e2:48:15:e2:b0:f1:f0:b3:
3a:0e:85:ca:95:98:9b:8b:fe:fc:1d:b7:d7:16:ab:
51:00:84:fb:06:98:c0:01:2d:e5:82:e9:f0:5f:ab:
5f:dc:f4:89:72:a3:c0:e1:85:3e:76:38:92:1b:ab:
77:c3:4e:b1:91:60:0f:90:58:df:2d:1c:07:94:4a:
41:2e:bf:6b:91:c3:21:43:0f:b0:98:ec:db:79:ba:
5e:83:a9:ac:59:7b:a7:88:72:4b:0c:12:14:f9:4f:
84:d5:a2:bc:b5:14:40:02:3d:91:18:4e:dc:d6:2c:
42:14:b9:85:20:0c:1a:8c:20:17:0f:60:6b:c4:75:
65:77:12:97:f5:9a:ef:6e:42:30:01:97:61:c6:ce:
5c:f7:b2:7f:76:6c:78:af:d2:57:44:c3:88:40:bb:
29:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:AF:BC:75:9C:3F:4D:32:A4:7A:CA:3E:5F:8A:22:4A:F5:E9:E6:37
X509v3 Authority Key Identifier:
keyid:30:58:A4:69:B6:7D:03:07:2C:2D:8A:38:5E:9F:2A:AB:BA:13:4E:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F9665/6D0D12B84BF511EBBD83B87BC4F9AE02/MFikabZ9AwcsLYo4Xp8qq7oTTis.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MFikabZ9AwcsLYo4Xp8qq7oTTis.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9665/6D0D12B84BF511EBBD83B87BC4F9AE02/62884F1AB6CC11EF84CBC45FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.226.127.0/24
Signature Algorithm: sha256WithRSAEncryption
89:b1:55:1a:d4:7c:a3:53:16:b1:5e:44:57:34:f9:3d:f9:b2:
0a:2f:15:3a:fc:df:63:44:fa:89:69:58:b3:c9:7c:c0:fb:57:
30:07:12:e5:e8:e9:59:af:e8:0e:4e:d6:b8:d4:af:5f:e5:d7:
ff:10:65:78:61:84:5c:45:17:66:09:c2:38:21:92:be:b4:20:
32:f7:7d:08:b7:a1:04:89:1b:41:46:4f:3e:40:6d:cd:18:09:
ae:75:cc:b0:2d:69:4e:89:42:3f:6a:6e:15:4c:bc:95:4c:50:
cb:fa:1b:56:49:3f:29:80:52:bd:e0:c9:88:da:f2:ac:0a:c6:
99:6d:7f:6b:6a:29:91:3b:b4:19:65:71:9f:14:c9:8e:94:75:
0f:ed:35:04:b5:89:81:53:2a:ba:5d:be:61:c0:d7:e3:16:ee:
be:99:fc:51:87:a5:5c:d3:e5:f1:8c:68:96:1d:04:ae:6a:e9:
cd:34:b5:8e:90:8d:d1:ba:49:eb:ac:ab:40:e5:7c:b7:2f:fb:
89:19:02:a1:d4:fb:80:9a:44:34:6b:f0:d3:96:00:0b:fd:a9:
68:e9:83:f4:96:de:32:a5:7d:0e:28:d1:91:da:9f:47:94:2e:
32:7a:00:c6:33:e1:a1:7a:f1:cc:ec:7f:87:be:f2:34:e8:ad:
d3:13:b9:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 01:51:18 2025 by rpki-client