Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9141105/5FE7DE56261511E28D36FC9708B02CD2/679C92DC2FAD11EA8CE1C164C4F9AE02.roa
File: 679C92DC2FAD11EA8CE1C164C4F9AE02.roa (raw, json)
Hash identifier: suTEgC2ahwKGrPICH/SOEY347S4U7inAUmWJJT+Ihd8=
Subject key identifier: 24:B1:7B:31:5E:62:EB:9F:2D:42:15:D3:B9:A9:1A:8B:1F:34:E2:E1
Certificate issuer: /CN=A9141105/serialNumber=09248523BD9802726C4DF97D6B7413FFD4CEB124
Certificate serial: 1C6D
Authority key identifier: 09:24:85:23:BD:98:02:72:6C:4D:F9:7D:6B:74:13:FF:D4:CE:B1:24
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CSSFI72YAnJsTfl9a3QT_9TOsSQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9141105/5FE7DE56261511E28D36FC9708B02CD2/679C92DC2FAD11EA8CE1C164C4F9AE02.roa
Signing time: Thu 30 Nov 2023 15:40:59 +0000
ROA not before: Thu 30 Nov 2023 15:40:59 +0000
ROA not after: Sat 30 Mar 2024 00:00:00 +0000
asID: 132467
IP address blocks: 103.5.196.0/23 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7277 (0x1c6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9141105/serialNumber=09248523BD9802726C4DF97D6B7413FFD4CEB124
Validity
Not Before: Nov 30 15:40:59 2023 GMT
Not After : Mar 30 00:00:00 2024 GMT
Subject: CN=6568ad0b-412a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ce:67:e1:dc:0a:9d:a9:27:f7:e0:48:60:99:
d3:8f:1d:f8:83:1f:19:aa:6c:e3:1c:9a:0e:93:e2:
74:29:4c:56:7b:c3:a5:70:ed:fd:6c:ec:d2:19:65:
fd:51:87:b9:7b:d8:a6:38:1b:1c:11:2f:59:7c:32:
5a:53:1c:80:3c:b1:9b:99:37:51:ea:01:7e:ec:c9:
48:7b:79:88:f9:13:d5:15:82:f8:c1:ab:90:57:68:
ad:5d:31:1a:26:1c:38:9d:84:cd:8e:10:68:ee:7d:
16:79:c9:94:a9:cd:0a:df:60:be:44:fe:ce:3b:bf:
34:77:05:8d:4f:8a:43:68:aa:ff:89:8c:4c:3f:28:
c8:22:16:93:df:75:73:bb:59:ca:bf:f9:d0:92:eb:
6c:8c:4c:83:86:1b:57:1d:ef:f1:d6:fc:9e:5d:66:
af:16:e9:b6:4d:f6:79:80:f5:32:f6:72:b2:fc:af:
42:2c:88:a5:2a:76:3b:25:bf:aa:3d:78:62:f2:a7:
c9:6a:3f:4e:8a:dc:6e:8f:86:bf:fc:0e:74:3f:14:
5a:28:60:96:6d:f4:4c:64:d5:d4:2d:7b:5d:01:05:
b9:a3:30:9e:1b:7d:73:ed:7d:c9:f1:43:f0:a1:3f:
e9:c7:a4:57:85:86:97:3c:54:f9:ec:89:d3:bc:fd:
02:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:B1:7B:31:5E:62:EB:9F:2D:42:15:D3:B9:A9:1A:8B:1F:34:E2:E1
X509v3 Authority Key Identifier:
keyid:09:24:85:23:BD:98:02:72:6C:4D:F9:7D:6B:74:13:FF:D4:CE:B1:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9141105/5FE7DE56261511E28D36FC9708B02CD2/CSSFI72YAnJsTfl9a3QT_9TOsSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CSSFI72YAnJsTfl9a3QT_9TOsSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141105/5FE7DE56261511E28D36FC9708B02CD2/679C92DC2FAD11EA8CE1C164C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.5.196.0/23
Signature Algorithm: sha256WithRSAEncryption
79:2c:3c:1c:52:b2:31:f1:75:9a:b8:22:d9:04:b0:36:34:65:
82:c4:06:cf:70:31:03:96:cc:35:0b:6b:68:d1:f7:11:0f:9e:
1d:4d:4d:5d:34:a4:6f:2a:76:22:e7:ef:b5:1f:fd:e1:8b:39:
21:d3:e0:8f:ad:fc:d4:05:b3:a8:b3:1b:9a:3f:18:d4:b8:d0:
5b:8b:29:5f:27:07:eb:18:21:5f:79:fc:49:0e:67:66:6d:aa:
0f:bd:b9:0c:47:ae:6d:57:b1:02:48:8a:87:6d:7a:22:4d:41:
ad:e5:03:70:93:a1:53:fb:80:a9:f3:d6:8c:ba:44:23:6d:55:
30:b3:86:e2:ae:00:65:f7:3e:6c:bc:1f:26:b2:f5:d3:e2:f3:
d6:a3:29:9e:89:23:3b:b0:b1:c6:26:53:a6:97:97:fb:bf:5b:
99:bd:1e:40:a4:0f:80:d7:92:c7:98:58:d2:e0:7d:3e:d3:a9:
4e:6d:16:17:49:81:dd:8a:1a:7d:aa:26:5f:4a:fb:d3:80:cc:
56:74:59:d2:d2:ea:df:f2:66:a9:10:e1:f2:16:e9:84:da:4b:
1f:46:d4:d1:9e:a8:16:78:34:cd:bc:ff:a1:03:96:d9:57:41:
8b:dd:13:dc:86:04:9e:c4:eb:9f:ed:91:58:88:73:c1:82:e1:
23:6d:07:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-ams.rpki-client.org