Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91437AC/0256EB964D6011EE8385F040C4F9AE02/229EA4AC57D811EEAB6EE280C4F9AE02.roa
File: 229EA4AC57D811EEAB6EE280C4F9AE02.roa (raw, json)
Hash identifier: pevsaD4Tdrw3Ixu5KEE5rMHmedLOctKuJ/befOUTShA=
Subject key identifier: A1:B4:4A:D2:82:0F:C6:75:91:4C:DD:81:4F:2E:48:C2:39:7B:07:EB
Certificate issuer: /CN=A91437AC/serialNumber=23DD1E6B8344963B0450B92933769D44A732516B
Certificate serial: F0
Authority key identifier: 23:DD:1E:6B:83:44:96:3B:04:50:B9:29:33:76:9D:44:A7:32:51:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I90ea4NEljsEULkpM3adRKcyUWs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91437AC/0256EB964D6011EE8385F040C4F9AE02/229EA4AC57D811EEAB6EE280C4F9AE02.roa
Signing time: Tue 03 Dec 2024 03:47:20 +0000
ROA not before: Tue 03 Dec 2024 03:47:20 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 209854
IP address blocks: 103.176.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240 (0xf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91437AC
Validity
Not Before: Dec 3 03:47:20 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=674e7f48-4bf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d1:36:15:ea:c6:37:2d:ce:99:08:d6:01:f5:
92:79:e8:c0:8d:29:b6:fc:cd:88:d8:c6:44:c6:53:
c2:cf:e7:97:b7:d2:20:c2:27:09:6d:75:59:d4:78:
09:93:c8:37:5f:b0:59:92:d5:f7:ea:ca:da:3f:39:
54:0b:97:79:96:5a:b6:f6:e7:63:f4:ed:64:d8:21:
b8:41:00:20:dc:5a:f9:59:82:3e:93:9e:12:8c:11:
10:ee:98:00:0e:31:a1:77:3b:71:b0:a3:23:7a:38:
88:dd:56:14:27:5d:06:16:73:37:93:ef:24:f8:8d:
0a:df:1d:88:90:d0:a9:b0:3a:5f:85:c3:32:03:2f:
de:06:bd:18:2d:78:9c:cc:d8:aa:71:f4:18:01:2e:
c9:f0:49:5b:9c:9b:52:68:a3:fb:88:02:8a:57:92:
e8:9f:31:64:a9:67:b5:14:00:5e:f5:71:b9:a0:06:
e9:57:98:12:a2:70:7d:e0:07:71:57:c3:48:8b:67:
d4:6d:ea:63:7a:72:05:a7:cf:aa:6e:b1:56:7b:de:
57:14:04:a2:0a:92:ed:fe:f6:58:68:09:c9:3a:ba:
36:22:7d:82:af:4d:e2:5b:b8:29:90:2b:23:4b:5f:
11:f8:06:eb:c4:e4:41:fa:75:b9:a8:e1:83:92:4c:
a3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B4:4A:D2:82:0F:C6:75:91:4C:DD:81:4F:2E:48:C2:39:7B:07:EB
X509v3 Authority Key Identifier:
keyid:23:DD:1E:6B:83:44:96:3B:04:50:B9:29:33:76:9D:44:A7:32:51:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91437AC/0256EB964D6011EE8385F040C4F9AE02/I90ea4NEljsEULkpM3adRKcyUWs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I90ea4NEljsEULkpM3adRKcyUWs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91437AC/0256EB964D6011EE8385F040C4F9AE02/229EA4AC57D811EEAB6EE280C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.176.152.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:8f:78:64:61:39:c9:06:42:0f:53:c3:a8:dd:e8:ae:5a:d0:
f0:6e:85:3e:e6:b3:70:44:eb:cf:a3:9e:25:2e:e8:89:be:15:
30:70:1f:4a:d8:1e:03:fe:09:12:7a:54:0a:06:76:ac:f9:34:
6e:7d:83:4d:d9:37:35:a0:e1:12:9f:e3:61:9b:57:2f:53:e6:
ab:fe:be:84:37:5d:20:ce:cf:a0:a6:b1:12:9b:14:cb:84:6d:
81:10:55:6c:cb:39:2a:2b:0e:7f:bc:0f:d4:ea:d8:98:ed:a7:
3c:85:52:5c:51:e8:e4:87:9c:11:f6:c6:40:ab:85:41:b8:f4:
13:09:67:f3:06:d2:e2:e2:cd:cd:4b:7e:f9:3f:2f:56:e0:2d:
81:48:73:63:13:18:87:c8:01:77:26:92:62:20:ce:27:77:46:
21:2d:e4:4e:9e:13:08:57:b9:3d:ce:a5:49:af:6b:40:2e:46:
48:cf:d2:11:16:b9:fc:b7:37:b1:33:26:9c:34:17:44:e4:e1:
00:c4:96:ce:60:9a:76:8e:e0:5b:40:d7:20:c8:96:3a:71:2e:
5e:1a:d0:c1:58:61:d9:b4:85:f4:3a:22:88:71:94:76:64:fe:
da:6c:75:79:98:b7:f3:07:e1:26:02:c1:b2:8c:2f:b1:93:98:
9a:f1:89:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:49:54 2025 by rpki-client