Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/1D9A36F40C6B11EF95ACFA13C4F9AE02.roa
File: 1D9A36F40C6B11EF95ACFA13C4F9AE02.roa (raw, json)
Hash identifier: NJPr7OZom8PgcjW18JJjDNXMEozgSB9WGNPuyE4apbo=
Subject key identifier: D4:B8:DD:43:21:D7:61:A3:01:8A:3B:A8:AE:61:C2:17:59:A9:0D:A6
Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657
Certificate serial: 017C
Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/1D9A36F40C6B11EF95ACFA13C4F9AE02.roa
Signing time: Thu 27 Feb 2025 05:27:24 +0000
ROA not before: Thu 27 Feb 2025 05:27:24 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 212609
IP address blocks: 103.83.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 380 (0x17c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FAA91
Validity
Not Before: Feb 27 05:27:24 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67bff7bc-174a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:44:1c:c5:ae:b2:7c:a2:73:e2:a1:ed:8e:30:
48:ac:2b:32:3c:57:d0:20:39:42:97:1a:a4:3f:fd:
13:b5:47:b2:d7:4e:75:87:38:d9:8b:67:84:f5:a3:
5b:8a:83:94:c1:70:0a:1d:b5:7a:ae:dc:91:ef:41:
7c:00:f4:b0:da:d8:6f:65:42:73:09:3d:fd:40:e3:
12:9b:98:11:a2:99:15:c4:56:9c:d2:64:28:c6:26:
a2:6f:bf:5d:34:00:61:46:d7:78:09:0b:d9:11:ed:
6c:da:7b:93:a1:a0:7c:d4:99:f2:f1:fb:59:7e:f9:
30:e7:a6:ed:1b:d0:d4:00:d0:53:3b:27:c1:e7:40:
47:99:58:00:32:05:9a:d6:77:23:7b:aa:ab:7b:bc:
70:90:06:f3:85:ca:61:3b:d9:a1:7c:1f:16:df:50:
b2:5a:ac:a8:89:72:3d:93:57:59:8a:d3:17:85:5e:
15:ef:df:f5:20:0f:5b:ff:bc:c4:dd:fd:6e:a7:b3:
8e:9c:c4:10:97:45:33:cb:e2:e5:48:62:7d:09:53:
99:a6:c4:07:27:a6:a3:f9:97:1b:f8:d6:b9:b3:7a:
02:99:3f:fc:a4:4e:6d:a9:ee:65:48:40:a7:e4:02:
96:6b:38:06:73:e4:c9:56:6b:24:44:89:a2:5d:89:
7a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:B8:DD:43:21:D7:61:A3:01:8A:3B:A8:AE:61:C2:17:59:A9:0D:A6
X509v3 Authority Key Identifier:
keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/1D9A36F40C6B11EF95ACFA13C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.83.43.0/24
Signature Algorithm: sha256WithRSAEncryption
37:eb:f5:cc:e9:82:3b:31:2e:7b:02:5b:f9:8b:c1:c9:eb:77:
75:8e:25:e7:86:b2:53:11:68:05:e7:ef:40:57:91:3a:a0:46:
de:be:6a:a1:47:f1:7f:3a:74:ac:cb:06:ba:8d:a4:36:48:14:
d5:4a:8c:63:d7:b4:80:ea:02:89:10:2c:c4:52:e8:0d:d1:84:
b2:22:cc:c2:95:51:68:9e:61:ba:cf:e1:b3:71:4c:9c:56:cc:
11:0c:94:7c:31:3a:b4:c6:d8:eb:39:d9:b7:94:52:df:75:cb:
d6:57:61:35:d8:5e:c8:c1:08:3c:ef:e5:7c:dc:49:fc:8a:12:
09:57:a6:fc:b4:a4:28:c2:fd:76:b8:f2:f5:48:3b:95:22:bd:
f9:03:13:e5:41:f8:ac:7d:c7:50:d2:fa:f9:fc:fa:58:05:7f:
e4:d1:13:65:da:61:16:70:ae:4f:b0:12:5e:36:d0:c8:52:df:
a9:bf:3c:5c:03:ac:93:a6:a7:35:27:6a:ef:04:8a:49:db:72:
40:27:3f:63:8e:48:7e:62:90:e9:3c:60:81:00:7c:18:38:ed:
86:5f:9a:1e:b5:07:03:ba:31:9f:5d:50:6f:29:b8:a7:70:a3:
7f:47:a8:ba:39:b0:e0:ef:64:de:94:87:1a:d9:8e:1e:19:46:
aa:6a:cf:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:14:03 2025 by rpki-client