Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/95A84A924C0211EAB9CDB321C4F9AE02.roa
File: 95A84A924C0211EAB9CDB321C4F9AE02.roa (raw, json)
Hash identifier: KAtnbP5v+/Daga6upo9I8UD7tM68ca8fNEaqzjrU8fw=
Subject key identifier: E9:9D:F0:F4:77:E4:B0:E2:0F:D3:C0:6B:95:6E:B5:95:EB:01:FE:0C
Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7
Certificate serial: 34BF
Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/95A84A924C0211EAB9CDB321C4F9AE02.roa
Signing time: Fri 24 Jan 2025 16:02:23 +0000
ROA not before: Fri 24 Jan 2025 16:02:23 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 136840
IP address blocks: 103.100.180.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13503 (0x34bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9186214
Validity
Not Before: Jan 24 16:02:23 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=6793b98f-1917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:5e:d6:65:23:e4:85:e0:e3:55:a9:5c:65:
56:bb:30:b9:a8:0e:71:46:4d:a0:0d:f6:f2:da:06:
11:dc:21:19:d9:fa:b1:08:79:51:76:8d:a9:f2:56:
c9:05:b0:4f:7d:3b:5b:e0:b6:0c:eb:0b:0e:ce:44:
1c:36:89:2f:ea:68:ee:43:22:2d:a5:57:c6:1b:86:
86:fe:cc:9a:8c:71:f2:85:92:34:ba:72:6e:c7:3e:
81:ec:92:44:c3:70:72:6f:85:d8:c1:ae:7f:89:ff:
e6:91:b5:c6:09:9d:ce:e0:4a:e1:ed:e2:52:f0:7a:
f4:ec:67:fe:67:42:72:1d:90:88:86:13:ec:71:08:
9a:d9:36:92:2f:bc:fd:48:33:16:29:33:40:39:88:
f0:a7:64:84:8d:2d:a3:a3:19:47:72:84:d6:1d:c1:
13:6c:e5:1c:e5:39:e2:90:dd:e3:99:7c:a2:c8:77:
09:1e:36:10:c5:ce:13:c7:87:bb:89:c8:6a:a8:b7:
57:72:ea:ee:43:42:9e:e1:54:74:a7:02:c0:46:1b:
83:9a:ee:63:b5:17:9d:c6:8e:9f:a0:1f:98:15:9d:
78:88:36:d4:60:7e:00:8c:29:4a:4d:74:fe:06:39:
c6:19:86:59:7a:bc:73:34:a9:97:ed:cc:c4:0a:bf:
ec:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:9D:F0:F4:77:E4:B0:E2:0F:D3:C0:6B:95:6E:B5:95:EB:01:FE:0C
X509v3 Authority Key Identifier:
keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/95A84A924C0211EAB9CDB321C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.180.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:e1:7e:03:f1:92:3a:29:ff:52:0c:62:1b:5c:a2:11:68:55:
66:f5:6d:32:c7:3c:18:37:d4:a2:19:a8:62:3c:5d:b7:57:75:
cb:95:5f:1e:73:df:82:1f:a0:fc:49:55:0d:09:7f:fd:30:3f:
0a:8c:53:10:b4:0e:45:b8:d1:cc:db:3a:4e:f4:49:55:9a:83:
b9:2b:98:e7:a2:b4:a4:d5:41:2b:d2:66:cb:b8:6e:1d:58:30:
2b:b4:29:83:20:16:f1:a7:e5:6c:13:aa:50:41:22:29:58:3a:
e5:9c:ad:2d:58:89:0e:e3:08:2f:af:40:98:09:34:cf:be:7c:
b1:58:68:4d:88:8c:d1:b8:ea:0b:8d:15:a3:11:6a:28:9a:5e:
92:0d:89:86:4b:e0:14:42:ad:d6:b5:80:ce:88:75:b3:c1:40:
cc:af:03:90:1f:b8:63:69:b0:47:7f:34:a1:2a:ef:33:a2:6b:
e9:1c:cf:5a:90:2b:f1:36:5b:b3:90:d0:62:3d:f7:33:f7:96:
13:42:0c:f3:1d:51:ee:59:82:38:67:42:84:07:30:fc:f9:78:
44:e0:0b:67:99:ee:b1:f7:47:1f:77:a5:40:4f:58:fe:54:fa:
18:31:11:04:3e:e0:8b:37:f9:57:07:37:c1:e3:6b:b8:d5:fa:
17:b5:e0:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:09:25 2025 by rpki-client