Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/474DC6748C2B11EA90152018C4F9AE02.roa
File: 474DC6748C2B11EA90152018C4F9AE02.roa (raw, json)
Hash identifier: S/XkCg/mwHSXROr2dfVl+A2MAUNuvm6ulkjfEMhHMjg=
Subject key identifier: 79:CF:B5:8F:D5:1B:93:98:65:3C:28:7A:D6:C6:CE:56:A9:13:E6:1F
Certificate issuer: /CN=A91274A4/serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5
Certificate serial: 0B74
Authority key identifier: 59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/474DC6748C2B11EA90152018C4F9AE02.roa
Signing time: Thu 12 Dec 2024 19:08:37 +0000
ROA not before: Thu 12 Dec 2024 19:08:37 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 19551
IP address blocks: 103.77.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2932 (0xb74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91274A4
Validity
Not Before: Dec 12 19:08:37 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=675b34b5-eebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a3:3f:3c:a0:7d:66:b2:0c:ad:58:63:7c:87:
6b:f8:c1:6e:37:f6:37:af:97:70:91:cf:7f:0f:2c:
72:f2:ce:ec:3b:5f:5b:b9:40:0a:c3:ac:7e:41:71:
0d:66:3a:1d:c3:e0:cf:f7:37:60:bd:6d:5b:aa:90:
1c:6d:2f:75:b6:05:3c:a5:89:9d:18:41:14:d2:c3:
dc:55:e3:a1:85:a2:65:ff:54:89:43:c3:e7:e3:b3:
5b:f2:b1:a8:4b:be:7e:f8:fe:d0:4e:c5:0b:29:ae:
87:65:9e:03:5b:cd:16:c9:65:6f:19:f6:e1:c8:65:
05:1d:d2:cc:52:45:29:5a:46:70:59:7f:39:38:0d:
cd:b8:8c:c4:ae:d7:68:fb:64:65:f9:ac:87:e1:4e:
62:65:ac:3c:d6:a5:39:44:fa:31:53:d2:d9:d1:63:
d4:90:17:a1:9c:e9:ab:f3:2c:26:d6:49:a4:42:44:
7c:4a:59:2a:59:94:19:b4:2b:4a:8c:d4:ae:da:7a:
f1:69:26:b3:7e:61:c6:1d:25:85:bf:7b:a1:32:0b:
bb:97:8b:89:d9:86:f7:4d:74:b3:43:f3:fb:83:21:
ab:d7:89:ad:28:1c:ed:66:ea:a2:79:50:2b:c7:06:
b2:f3:33:6f:b7:40:aa:d5:c1:13:70:0c:dd:99:27:
07:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:CF:B5:8F:D5:1B:93:98:65:3C:28:7A:D6:C6:CE:56:A9:13:E6:1F
X509v3 Authority Key Identifier:
keyid:59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/474DC6748C2B11EA90152018C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.77.142.0/24
Signature Algorithm: sha256WithRSAEncryption
67:be:f9:0d:d2:21:3b:35:9d:f9:32:58:73:cd:d6:a2:19:b0:
ca:dd:71:ab:bb:2c:fc:20:2a:95:1c:29:b7:b3:c0:17:2b:68:
8c:22:7b:da:10:d4:77:2d:91:b4:8b:66:74:c4:5c:ab:a7:df:
7d:6a:7b:aa:8a:61:c5:5c:f3:e5:23:18:64:79:b5:da:ec:82:
4e:e6:50:e9:17:73:1d:90:a9:ae:70:cf:97:4f:a3:64:6f:34:
a8:e6:3f:92:1c:b2:bf:7b:ee:64:32:59:72:99:ec:a9:28:c8:
b1:42:eb:c6:4c:ff:78:ae:ef:a2:4e:11:2d:7a:2c:0e:57:05:
f0:40:c5:a9:de:6a:b4:ee:bd:c8:b2:de:d3:e5:98:44:31:72:
5c:7c:af:ee:16:0b:cf:bc:0e:c3:16:33:83:dd:be:9a:34:69:
32:83:b0:6d:1a:42:4e:6d:33:ec:8d:4e:01:1d:2c:ff:d7:3c:
3f:ea:f0:30:51:ed:a3:25:c0:39:40:5b:49:d1:eb:28:b8:8f:
40:e1:92:8b:31:13:a0:d5:c1:c9:91:0f:6e:06:8f:ca:36:ea:
23:f2:7c:76:71:a9:7b:a7:31:66:15:b3:9e:9a:d3:a0:fc:41:
2f:ec:83:07:06:b1:9a:0c:f6:b9:b3:f9:a9:5a:2f:1c:9b:31:
6a:69:71:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 22:57:13 2025 by rpki-client