Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/5773966456D011EE9C8F8C56C4F9AE02.roa
File: 5773966456D011EE9C8F8C56C4F9AE02.roa (raw, json)
Hash identifier: iKZhrYsqwja6p9Jg0/rXm6hAG4LxSI3ekb53k0lCuBw=
Subject key identifier: AA:8A:28:8A:AF:12:33:6C:59:62:A9:20:CE:65:0B:8E:BC:36:46:54
Certificate issuer: /CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382
Certificate serial: EB
Authority key identifier: 18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/5773966456D011EE9C8F8C56C4F9AE02.roa
Signing time: Sun 08 Dec 2024 08:27:13 +0000
ROA not before: Sun 08 Dec 2024 08:27:13 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 151799
IP address blocks: 103.77.180.0/23 maxlen: 23
103.77.180.0/24 maxlen: 24
103.77.181.0/24 maxlen: 24
2401:dea0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 235 (0xeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FD1C3
Validity
Not Before: Dec 8 08:27:13 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=67555861-8661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c4:57:9c:7f:5c:34:58:d5:c6:72:da:31:40:
00:71:37:5c:ed:ab:45:9c:31:b3:6f:d0:90:43:0c:
cd:c7:e2:f5:db:5b:c8:bc:20:0a:71:38:6d:62:f7:
4d:29:65:3b:cb:dd:85:f1:6e:00:c8:95:d1:6c:cc:
1f:54:30:50:2e:de:36:e0:57:a4:b5:a7:a5:fb:3f:
b8:4b:31:c1:1d:10:a1:83:8e:86:90:08:85:0d:11:
a7:50:e2:98:9f:70:51:4c:bf:b7:d8:a4:98:5e:80:
02:c9:6f:22:60:01:2b:ec:c0:44:01:2b:49:9d:46:
6f:6c:58:ef:22:ad:40:c7:a1:ed:47:c3:42:b8:87:
ae:03:fd:e6:84:82:d5:40:6f:6e:dd:73:cf:09:5c:
e3:68:2e:ba:ce:bc:a1:34:2f:f2:d6:7d:1d:b2:87:
64:05:6f:33:d3:fc:f9:38:65:0a:81:b7:3c:31:9c:
8b:fe:b8:88:c0:ea:77:dd:f7:b6:fd:bc:1a:b0:a0:
85:27:58:b2:0e:e6:e7:5c:38:a4:41:33:a9:ce:8d:
2a:b5:8d:aa:80:c5:c7:87:f9:45:dd:4f:bb:a4:99:
bc:85:25:d9:6e:bf:d5:96:74:0d:aa:00:75:0b:15:
4e:f2:05:d8:0d:c9:9d:07:e5:66:9d:2d:4f:be:b5:
99:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:8A:28:8A:AF:12:33:6C:59:62:A9:20:CE:65:0B:8E:BC:36:46:54
X509v3 Authority Key Identifier:
keyid:18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/5773966456D011EE9C8F8C56C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.77.180.0/23
IPv6:
2401:dea0::/32
Signature Algorithm: sha256WithRSAEncryption
37:e7:cf:af:15:1a:e0:4e:23:db:d5:e6:5c:8f:a8:fd:f1:ef:
13:04:b3:61:56:1b:5e:e1:f5:c6:17:2d:57:36:a1:49:21:6f:
62:61:ae:70:64:4d:88:68:e3:50:0a:e4:47:20:d9:78:3b:7b:
86:d6:bd:b3:c8:65:da:c1:89:1e:97:c4:39:03:00:ca:36:ca:
d3:f6:a0:82:5c:a8:78:99:74:cb:24:ee:03:61:0e:a1:ab:8c:
85:44:b1:36:65:57:fb:16:4a:06:fe:99:ec:49:49:da:75:94:
34:75:e1:19:83:25:0e:89:72:d9:f9:1b:aa:f4:4f:f2:e7:02:
4d:83:3f:df:09:82:ca:1f:9f:84:ee:98:e2:73:70:26:3f:1e:
03:da:4e:bc:18:0c:a8:75:b0:b0:c2:d9:cf:f1:3b:8b:0d:6e:
56:f1:b7:4c:fd:6b:38:f5:d6:44:9c:93:53:2f:7f:71:8d:19:
69:e2:8f:dd:62:a0:28:a3:f0:2e:b8:b8:98:79:19:7f:41:e9:
f4:dc:78:b0:ab:ca:4b:ff:df:51:f8:7d:99:0b:a1:d1:12:dc:
6c:ec:ef:13:c8:ab:93:40:cc:7b:58:08:fb:9f:7d:12:01:f0:
5f:c7:e7:0d:f3:f0:63:ea:cb:8e:1f:6a:ca:57:c1:f1:7e:bc:
2f:8a:92:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:12:55 2025 by rpki-client