Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/6895C6749D8D11EF9F951D24C4F9AE02.roa
File: 6895C6749D8D11EF9F951D24C4F9AE02.roa (raw, json)
Hash identifier: /EjKOFCI68jV75I4ZYfu3mX8PtwLfDQUOXDo1m5Latg=
Subject key identifier: D0:89:DD:80:65:63:88:5A:75:55:79:D8:30:F5:80:63:F1:2F:7F:B2
Certificate issuer: /CN=A9126DA8/serialNumber=BC137C2777E51DE7BD1ACE80D868FD93A1EC7A43
Certificate serial: 0299
Authority key identifier: BC:13:7C:27:77:E5:1D:E7:BD:1A:CE:80:D8:68:FD:93:A1:EC:7A:43
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBN8J3flHee9Gs6A2Gj9k6HsekM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/6895C6749D8D11EF9F951D24C4F9AE02.roa
Signing time: Fri 08 Nov 2024 04:53:35 +0000
ROA not before: Fri 08 Nov 2024 04:53:35 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 103.25.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 665 (0x299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9126DA8
Validity
Not Before: Nov 8 04:53:35 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=672d994e-54cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:bd:c3:fb:2a:80:b0:1c:e1:bc:28:7b:b7:d2:
3a:fe:2f:fb:fa:9f:ca:96:29:63:31:ec:a2:ab:cb:
c6:a9:db:b6:00:2e:39:5d:e2:ba:c9:a9:1b:90:f8:
3e:34:8f:cd:5f:d2:60:5f:24:61:84:cb:5c:59:7b:
08:c8:b3:17:e0:c6:32:74:36:fd:46:c8:8c:54:26:
a1:a5:f1:51:a8:27:e3:da:bf:12:38:e4:f9:3d:94:
ea:a8:00:73:f4:67:82:bb:94:f0:6b:da:fa:00:61:
92:fb:bb:a5:77:b2:3c:fb:b6:13:30:42:b5:9d:06:
bc:63:00:27:10:1b:da:27:c8:75:90:eb:f1:da:ae:
21:37:ad:6f:ea:86:a1:f4:fd:1e:8b:8f:0d:e7:a4:
8e:e0:3e:03:db:d0:56:35:70:c8:31:9d:bb:c6:d8:
fe:b7:c1:09:80:51:cc:60:0e:c3:d2:b5:d5:a5:6f:
cd:e7:b4:b8:b1:3c:ac:5b:b5:71:01:a0:07:58:96:
58:62:e7:87:01:da:46:34:02:ff:b6:24:f2:38:fa:
8a:66:1e:47:31:39:a5:61:bb:25:8c:0e:cb:00:9c:
ce:a4:a8:7c:63:04:9c:b0:45:a4:9c:c6:58:3e:bb:
33:47:00:fb:48:71:7e:af:1c:e3:5a:19:67:26:88:
4b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:89:DD:80:65:63:88:5A:75:55:79:D8:30:F5:80:63:F1:2F:7F:B2
X509v3 Authority Key Identifier:
keyid:BC:13:7C:27:77:E5:1D:E7:BD:1A:CE:80:D8:68:FD:93:A1:EC:7A:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/vBN8J3flHee9Gs6A2Gj9k6HsekM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBN8J3flHee9Gs6A2Gj9k6HsekM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/6895C6749D8D11EF9F951D24C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.25.124.0/24
Signature Algorithm: sha256WithRSAEncryption
73:32:d2:f5:9e:90:e0:53:33:2a:ec:ac:9e:e3:66:b8:62:a6:
4b:6a:22:82:09:f6:da:62:c0:a7:c0:cf:3e:e3:46:ea:27:f5:
b2:24:35:dd:d1:4a:db:a7:45:67:2a:25:81:2a:84:f1:78:87:
cb:3d:d7:15:4b:3c:de:0c:ab:c9:be:36:43:69:54:cb:a6:dd:
e1:93:f3:e9:bb:a1:ef:72:9b:6c:fb:49:5b:2e:f7:af:f1:09:
ef:7b:a0:79:ea:b1:1b:9b:2d:37:81:a3:f2:92:47:33:1f:67:
86:d5:52:e4:e6:df:d1:70:29:23:4b:03:20:d4:28:b9:36:6c:
57:bc:2d:4d:c9:4e:5d:84:c7:f8:a3:74:67:24:03:a5:02:3e:
cd:5f:54:aa:7d:dd:2d:39:91:63:18:ca:2e:b5:c3:2d:c3:27:
d5:69:92:8d:ba:36:74:72:e1:51:f7:80:c9:14:5e:c7:7e:cb:
e6:5e:ef:e3:3a:14:ee:5f:c2:a2:80:5a:ce:8f:4a:63:20:63:
8b:da:89:80:13:d1:2d:03:64:af:c6:7d:e1:69:f1:7e:5e:67:
ee:95:69:78:5b:f5:2d:05:ea:5d:df:34:7c:6c:f5:d2:9c:07:
67:f2:30:79:d3:22:35:21:9c:55:64:39:96:cf:e5:a7:d7:c0:
95:ac:61:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:34:18 2025 by rpki-client