Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B55D/A250912C0DC311EB9D943816C4F9AE02/88A34F020DC411EB9DBC9E16C4F9AE02.roa
File: 88A34F020DC411EB9DBC9E16C4F9AE02.roa (raw, json)
Hash identifier: iRmliek5lo8P4cs34SzTwqv5+96/9L7tC4M4m3FMHFY=
Subject key identifier: BA:0A:81:85:DE:E7:D2:BD:53:B8:D2:02:80:F3:94:1A:FC:97:EF:D9
Certificate issuer: /CN=A917B55D/serialNumber=212DC99FF5AE839DF3739D0DCBF224A7B3460ABF
Certificate serial: 029F
Authority key identifier: 21:2D:C9:9F:F5:AE:83:9D:F3:73:9D:0D:CB:F2:24:A7:B3:46:0A:BF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IS3Jn_Wug53zc50Ny_Ikp7NGCr8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917B55D/A250912C0DC311EB9D943816C4F9AE02/88A34F020DC411EB9DBC9E16C4F9AE02.roa
Signing time: Tue 14 Sep 2021 12:49:47 +0000
ROA not before: Tue 14 Sep 2021 12:49:47 +0000
ROA not after: Thu 01 Dec 2022 00:00:00 +0000
asID: 55720
IP address blocks: 103.71.176.0/24 maxlen: 24
103.71.177.0/24 maxlen: 24
103.71.178.0/24 maxlen: 24
103.71.179.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 671 (0x29f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917B55D/serialNumber=212DC99FF5AE839DF3739D0DCBF224A7B3460ABF
Validity
Not Before: Sep 14 12:49:47 2021 GMT
Not After : Dec 1 00:00:00 2022 GMT
Subject: CN=61409a6b-d89c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:26:4e:5a:7d:3b:77:5e:c4:6c:0f:b2:ea:dd:
b7:02:f6:9a:1f:f6:d1:c1:2c:d6:52:7f:4e:ba:03:
d2:ad:6b:6e:ae:0e:e7:46:7d:9a:40:b2:4c:2c:60:
1a:60:15:73:5a:f7:96:63:28:e6:7a:cb:e0:6f:de:
82:06:29:c3:d2:af:ac:9a:9b:9c:5e:12:72:57:84:
9d:e9:ac:13:c4:73:d6:6e:a9:a5:f2:bb:e0:06:1e:
53:eb:67:90:92:1e:dc:f6:d1:77:d5:24:6e:ec:78:
42:3c:ca:c7:fd:ab:15:44:5a:bf:69:18:fb:91:f1:
a1:f9:69:8e:d8:96:bb:4b:f8:9b:25:a4:db:1c:46:
54:6a:c3:cb:14:1c:db:e3:d2:37:c9:ce:e5:b9:5f:
f9:f3:9d:90:df:ce:38:31:b8:e4:ab:af:7c:c4:f5:
4d:0d:a7:7c:08:84:85:3d:4d:71:fc:a1:12:aa:46:
f5:de:86:2d:da:87:4e:d9:5c:ae:93:78:21:a9:7d:
15:66:7c:08:25:02:ed:37:67:2e:8a:da:6c:55:bf:
ac:49:7e:67:1a:6f:94:d8:78:e8:25:c1:ad:25:fb:
92:b6:2b:18:66:41:7c:7b:5c:85:0b:14:e1:7f:58:
6b:54:fe:dd:cc:ef:f0:1e:91:8b:50:dc:c7:52:5b:
b0:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:0A:81:85:DE:E7:D2:BD:53:B8:D2:02:80:F3:94:1A:FC:97:EF:D9
X509v3 Authority Key Identifier:
keyid:21:2D:C9:9F:F5:AE:83:9D:F3:73:9D:0D:CB:F2:24:A7:B3:46:0A:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917B55D/A250912C0DC311EB9D943816C4F9AE02/IS3Jn_Wug53zc50Ny_Ikp7NGCr8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IS3Jn_Wug53zc50Ny_Ikp7NGCr8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B55D/A250912C0DC311EB9D943816C4F9AE02/88A34F020DC411EB9DBC9E16C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.71.176.0/22
Signature Algorithm: sha256WithRSAEncryption
91:13:ae:49:8f:c8:ce:31:58:2c:11:1f:73:a8:07:8e:23:22:
c8:7c:25:b5:a8:58:d4:a9:24:af:b5:1d:05:e0:d3:47:ea:60:
46:15:95:a8:11:ce:3e:2a:fa:e8:eb:16:bb:3d:95:46:72:82:
52:7c:bd:67:f6:9c:45:8b:99:68:fe:bf:7f:ef:6a:be:3c:6c:
92:65:f2:e1:c0:69:17:5e:75:08:b9:42:6e:e0:70:e5:6c:bd:
2e:a9:da:62:1d:1d:5b:fc:34:dd:f9:6b:8e:59:05:f8:b8:27:
a6:b6:bb:4e:5e:06:5e:5a:b5:03:16:6d:f9:08:52:d2:53:c4:
55:ec:db:8b:e3:31:1b:46:9a:7b:9e:2f:e8:b9:97:15:cc:ed:
c5:72:11:90:31:cc:66:75:94:52:da:f7:ed:4e:94:f9:70:ef:
f7:d8:4d:69:ea:b5:fc:ef:1d:a2:ea:70:f3:4b:a3:a2:77:e1:
cc:58:2c:36:ba:17:8a:b7:12:a4:51:21:4c:54:f3:31:d8:e5:
98:0e:0c:5c:73:53:60:17:3a:10:83:7b:8a:ef:72:2f:d8:7c:
60:7e:ef:43:4c:6a:ae:9f:bf:a3:4a:0d:c9:01:3e:87:20:c4:
ff:2b:f7:df:09:51:e8:b3:b1:16:90:06:47:7b:b6:74:59:16:
cb:52:11:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:12 2024 by rpki-client on console-fra.rpki-client.org