Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/4883A526861A11EE90E74069C4F9AE02.roa
File: 4883A526861A11EE90E74069C4F9AE02.roa (raw, json)
Hash identifier: 8c9cTkz/FDOa642KcLYqxQJ99zmsRcwq/+k9Bc2uIT4=
Subject key identifier: C4:BB:A3:09:1E:9A:5E:63:5E:D0:7F:28:6A:70:1C:7A:B4:53:C7:2C
Certificate issuer: /CN=A91FFE9F/serialNumber=0B095236234E6935BAA341E3235A3DB473ACC67F
Certificate serial: 0DF0
Authority key identifier: 0B:09:52:36:23:4E:69:35:BA:A3:41:E3:23:5A:3D:B4:73:AC:C6:7F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwlSNiNOaTW6o0HjI1o9tHOsxn8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/4883A526861A11EE90E74069C4F9AE02.roa
Signing time: Sat 18 Nov 2023 13:56:34 +0000
ROA not before: Sat 18 Nov 2023 13:56:34 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 136030
IP address blocks: 103.130.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3568 (0xdf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FFE9F
Validity
Not Before: Nov 18 13:56:34 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=6558c292-8a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2c:be:bb:06:5b:8b:d2:91:21:2f:b8:ea:43:
a2:6c:95:f4:34:1b:6a:46:aa:d6:38:00:1a:f2:95:
6e:c9:79:54:f8:11:ca:83:54:3c:e7:fc:be:75:ee:
e4:c7:c5:f6:aa:10:6c:ce:3c:dd:92:44:75:a8:52:
9f:b2:85:1c:98:86:de:f2:e4:cf:5f:d8:4e:2c:a7:
d4:45:2d:1b:39:9e:19:7e:86:70:76:5f:28:49:02:
f0:2a:33:b2:5e:05:ca:23:ee:1f:11:4b:0d:be:fd:
52:f4:fb:80:fc:fb:2d:17:0a:39:15:5b:83:1c:86:
04:c3:18:7c:ad:f0:49:90:37:ba:9b:d0:3e:3e:78:
0a:05:25:ad:fa:7c:02:7a:4b:9e:32:2b:50:08:ec:
a0:d5:b9:74:8d:f8:78:64:f0:6d:35:7b:de:00:48:
41:17:84:f0:82:31:7e:1a:d0:a7:e4:18:4d:ad:55:
7b:55:fd:b0:0d:a4:0c:ae:22:a5:c8:da:55:9a:83:
3c:74:84:3b:e8:c3:e7:38:db:e5:bc:92:fc:33:99:
31:30:cc:98:ab:c4:b1:4f:21:b8:cd:fa:78:ab:fe:
dd:2c:c3:34:5a:09:b6:43:41:8a:dc:36:a3:f7:56:
72:e6:ae:23:6e:a7:fb:2f:d7:5e:19:d8:bc:a1:37:
65:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:BB:A3:09:1E:9A:5E:63:5E:D0:7F:28:6A:70:1C:7A:B4:53:C7:2C
X509v3 Authority Key Identifier:
keyid:0B:09:52:36:23:4E:69:35:BA:A3:41:E3:23:5A:3D:B4:73:AC:C6:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/CwlSNiNOaTW6o0HjI1o9tHOsxn8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwlSNiNOaTW6o0HjI1o9tHOsxn8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/4883A526861A11EE90E74069C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.156.0/24
Signature Algorithm: sha256WithRSAEncryption
65:d3:af:80:1b:95:84:6e:3d:6c:7d:ac:c3:71:8b:e1:a4:85:
27:c9:a4:7e:28:e5:eb:91:58:3e:88:10:71:65:23:c2:c7:b4:
e2:86:85:04:af:18:59:97:1c:82:fe:12:f4:35:2a:7b:aa:f5:
bf:d4:4e:d2:9c:1f:09:b6:4d:1b:b4:5c:f1:fa:1f:0e:61:f8:
81:25:42:d7:19:b9:a4:19:ca:e7:50:d6:11:20:c2:71:8b:13:
91:89:fe:5c:36:b2:11:12:0d:b8:14:45:ba:66:7b:a3:28:5a:
d1:97:9a:00:2c:e7:c5:b2:ed:a8:de:2c:08:b8:31:9d:51:f5:
fc:0d:4c:20:31:fd:ca:a2:bc:92:07:db:bb:06:5d:54:e4:45:
d8:f1:97:5e:ea:9d:4e:73:4a:cd:e8:54:e5:03:b0:56:6c:8c:
88:68:8c:4e:e0:54:af:eb:7e:60:4b:ca:8f:eb:8f:c9:eb:df:
7c:1c:1f:63:e3:a9:ad:e5:01:e7:d0:1d:3f:96:e7:66:d9:2a:
de:b6:0f:c4:d9:94:dc:f5:80:66:70:04:a0:0f:ef:02:52:e7:
03:fc:ac:ff:89:0b:1d:89:58:6a:35:e4:a7:a4:70:fd:01:e3:
72:0c:ec:b1:be:4f:ed:d8:1d:66:28:9f:7d:61:ea:bb:7b:ca:
db:99:ac:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:42:09 2025 by rpki-client