Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/1D9DC82A652311EBA8CF3C4CC4F9AE02.roa
File: 1D9DC82A652311EBA8CF3C4CC4F9AE02.roa (raw, json)
Hash identifier: lzXH47zwQqzR7U0IwcpEbq0QXTqtq0eXFrMFUkvM89M=
Subject key identifier: C7:1E:72:20:91:61:CA:26:B4:1B:11:ED:60:5E:10:76:3A:E2:8C:6D
Certificate issuer: /CN=A91203DC/serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071
Certificate serial: 2123
Authority key identifier: 56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/1D9DC82A652311EBA8CF3C4CC4F9AE02.roa
Signing time: Tue 26 Nov 2024 16:13:24 +0000
ROA not before: Tue 26 Nov 2024 16:13:24 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 13335
IP address blocks: 103.31.4.0/23 maxlen: 23
2405:b500::/32 maxlen: 32
2405:b500::/34 maxlen: 34
2405:b500:4000::/34 maxlen: 34
2405:b500:8000::/34 maxlen: 34
2405:b500:c000::/34 maxlen: 34
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8483 (0x2123)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91203DC
Validity
Not Before: Nov 26 16:13:24 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=6745f3a4-b0cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f5:6d:94:de:ad:d7:d7:88:ab:26:df:02:fa:
f9:d9:6d:8d:ec:41:28:e4:73:13:42:9e:4b:59:25:
02:b1:26:91:67:fa:fc:49:4e:f9:a4:d3:db:6b:8a:
29:44:d4:f1:16:bf:4f:a8:9c:9f:c5:92:3d:89:4d:
6b:4b:fe:b7:cc:cd:b0:1c:7d:29:b4:36:e4:a2:2f:
b3:fa:33:b7:1d:63:d0:4e:f7:a6:10:12:b2:e5:93:
88:0c:89:65:f2:d7:d4:1c:16:5c:4b:e9:fa:8c:50:
77:6a:e3:69:c6:f6:25:47:7d:a6:54:d0:4c:0f:71:
40:10:e5:07:be:40:e8:57:29:91:36:1f:cd:a7:a4:
0d:10:8e:56:bf:52:0c:85:eb:c0:83:aa:4c:8f:37:
a3:fa:f5:98:9a:3d:d6:8e:02:41:ab:3b:d5:b3:ad:
2a:fb:a5:6d:2f:22:5b:d2:6d:07:4d:44:fa:d8:c2:
52:b2:15:2b:ce:e0:86:1e:84:dc:a3:a2:a8:2f:7c:
bb:da:7d:32:88:38:a7:23:4a:57:a8:57:8d:94:46:
21:05:9b:d1:5e:16:0f:ef:91:f6:1a:34:85:bb:60:
a6:d2:68:55:ee:15:7a:15:71:b8:dd:be:58:89:68:
c0:3b:6e:4f:64:82:21:c1:cb:50:36:d8:17:2e:d5:
a6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:1E:72:20:91:61:CA:26:B4:1B:11:ED:60:5E:10:76:3A:E2:8C:6D
X509v3 Authority Key Identifier:
keyid:56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/1D9DC82A652311EBA8CF3C4CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.31.4.0/23
IPv6:
2405:b500::/32
Signature Algorithm: sha256WithRSAEncryption
1d:38:db:78:dd:d4:66:d3:74:1d:59:11:41:77:40:1a:60:aa:
e3:4c:5c:8e:f7:24:21:e8:e8:b1:bb:fd:1f:68:d7:39:7d:7d:
00:7a:00:d8:32:8a:73:77:7c:e5:62:8b:f7:53:bf:a6:0d:81:
89:05:96:c3:3f:3a:c2:37:43:6a:c5:0e:09:d0:b0:67:b4:9f:
df:0e:f3:09:6d:b2:fa:23:2b:19:f1:ed:57:df:af:c1:ad:73:
d1:5b:a6:8f:ac:3e:97:94:d0:52:b9:d5:8e:23:cd:8d:28:70:
de:8e:e8:6a:cd:2f:4d:f7:02:1e:c7:49:70:75:73:70:e1:4a:
a3:47:2f:f5:36:37:0c:29:82:a9:7a:b0:55:95:62:64:3b:47:
0f:e1:d9:bd:3b:36:c6:6e:ee:c9:89:8f:e5:ae:76:f1:50:f0:
63:8e:52:5a:c8:12:37:a2:a5:4d:c3:82:36:12:29:8c:30:89:
a2:7b:5a:13:40:36:13:86:c9:49:55:9f:49:e4:da:eb:0d:e5:
bf:e4:2b:bd:a9:ae:53:c2:ce:7c:24:b2:07:c7:ad:af:9e:43:
9e:78:57:6c:a7:9b:0e:71:24:fa:eb:bd:07:28:c0:1d:91:45:
a4:42:47:11:78:26:b8:3a:55:11:b4:c2:38:25:43:59:85:db:
d8:c3:65:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:18:25 2025 by rpki-client