Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/765DBCFEEC1A11EAA8520072C4F9AE02.roa
File: 765DBCFEEC1A11EAA8520072C4F9AE02.roa (raw, json)
Hash identifier: 7r/vZYz2al2DngPewu8aRV3okqkjWIeXFE/FPm7oF9Q=
Subject key identifier: FB:51:9A:11:53:BC:E2:84:B4:CD:B0:51:47:9A:9B:A4:18:75:FC:7B
Certificate issuer: /CN=A91FD609/serialNumber=07CD9D31ED61862AF503E5209428C7CB27EA881F
Certificate serial: 0793
Authority key identifier: 07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/765DBCFEEC1A11EAA8520072C4F9AE02.roa
Signing time: Fri 06 Dec 2024 20:59:25 +0000
ROA not before: Fri 06 Dec 2024 20:59:24 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 64049
IP address blocks: 59.153.104.0/22 maxlen: 22
59.153.104.0/24 maxlen: 24
59.153.106.0/24 maxlen: 24
59.153.107.0/24 maxlen: 24
103.198.140.0/22 maxlen: 22
103.198.140.0/24 maxlen: 24
103.198.141.0/24 maxlen: 24
103.198.142.0/24 maxlen: 24
103.198.143.0/24 maxlen: 24
2403:1a80:a000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1939 (0x793)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FD609
Validity
Not Before: Dec 6 20:59:24 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=675365ac-2e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:49:ca:53:de:21:08:ed:1f:1e:d3:ec:b3:0c:
5b:40:f1:5b:e9:45:28:31:fc:a7:9c:22:05:a5:8e:
5e:00:99:2d:cd:28:8b:9b:0b:ba:7f:55:b0:ed:be:
06:15:85:f1:bd:b4:0b:96:c8:bf:f0:4a:3b:c3:c8:
de:c2:d1:1e:2a:cc:9d:66:56:bc:4a:d2:24:17:cb:
0a:1b:55:97:a7:93:68:25:2d:f2:07:90:40:e9:b8:
27:11:ea:9f:04:ef:f5:1e:36:ec:94:34:af:b0:9a:
8c:5f:2c:40:01:5b:a1:5b:e2:cc:0f:00:c1:ab:51:
1c:d7:f3:8b:8d:1f:27:fb:f5:00:2a:d9:c9:7a:9d:
4a:43:3a:97:0d:82:12:0c:c2:8f:e5:1f:db:22:2a:
78:0e:5c:a0:7f:9c:25:8b:9a:be:55:ce:50:ce:f8:
56:02:41:8b:85:94:ec:79:c0:0f:c6:e8:38:77:86:
59:9c:52:78:14:01:40:36:e5:a9:50:86:b3:1f:18:
ca:37:63:c5:c9:45:24:40:08:a2:25:e1:76:9f:5e:
b8:48:f9:f5:39:df:0d:77:c0:22:bc:33:9a:3d:0e:
43:07:59:80:eb:ab:7e:5d:fc:1c:c3:b9:9a:3f:19:
42:85:a3:ba:3e:15:02:f4:b7:f9:2c:d6:e1:dd:8e:
af:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:51:9A:11:53:BC:E2:84:B4:CD:B0:51:47:9A:9B:A4:18:75:FC:7B
X509v3 Authority Key Identifier:
keyid:07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/765DBCFEEC1A11EAA8520072C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.153.104.0/22
103.198.140.0/22
IPv6:
2403:1a80:a000::/48
Signature Algorithm: sha256WithRSAEncryption
1c:ce:fd:da:b5:82:09:8e:0b:bf:4a:76:bd:6f:08:6e:57:87:
f9:20:66:9f:91:1d:b7:84:f3:94:10:64:19:45:41:fd:df:62:
58:05:9b:92:fa:68:0c:d9:e0:fc:f1:84:d9:84:f8:7a:89:2a:
22:4d:b1:e2:c6:0a:17:85:ef:1b:c6:8e:f6:a7:3e:37:40:fc:
7e:93:a6:82:00:dc:de:b5:3f:d4:7b:42:b3:7d:8c:93:ed:d2:
51:9e:91:3e:a0:6d:e0:c6:eb:21:58:49:d0:fb:cd:39:c2:ad:
43:24:28:d4:91:0a:a0:8e:ca:94:65:7d:a6:af:0c:38:7c:6a:
38:ba:b9:c6:7e:e6:3d:7f:43:b3:8a:31:61:e9:c3:cb:93:87:
a0:f9:24:1e:ef:a6:31:c6:ca:27:11:56:2a:e3:a6:87:2a:6b:
08:4d:cf:88:9c:09:5a:68:2b:33:75:08:99:5c:2a:49:1d:45:
3f:24:4e:27:79:02:62:db:53:ce:f7:4b:a1:27:e6:5a:fd:bc:
0e:40:48:8b:2c:d7:d8:fa:40:4e:85:f7:0d:2c:15:8e:3e:8c:
d0:23:7d:9a:dc:2f:6f:51:27:15:f2:d5:5e:19:bf:7e:dc:fa:
ee:c6:95:01:e1:db:cd:4c:29:1e:cc:eb:41:22:a2:11:3c:9f:
9b:5a:a8:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:58:54 2025 by rpki-client