Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186BCC/904E50F048D411EEB5D6A17BC4F9AE02/6B62D92248D511EEBE05CC7FC4F9AE02.roa
File: 6B62D92248D511EEBE05CC7FC4F9AE02.roa (raw, json)
Hash identifier: 3T/MseZ6JXWgLESYBTBgDLBC7fpGasfK+B1pI77N9vU=
Subject key identifier: 72:C5:E6:9E:F3:25:AA:06:EC:6F:A8:35:AE:1E:0F:C8:AB:13:7B:82
Certificate issuer: /CN=A9186BCC/serialNumber=FD45CC5403C64CFB230AA7DEED10BC68228D7473
Certificate serial: C1
Authority key identifier: FD:45:CC:54:03:C6:4C:FB:23:0A:A7:DE:ED:10:BC:68:22:8D:74:73
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UXMVAPGTPsjCqfe7RC8aCKNdHM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9186BCC/904E50F048D411EEB5D6A17BC4F9AE02/6B62D92248D511EEBE05CC7FC4F9AE02.roa
Signing time: Tue 03 Sep 2024 06:19:11 +0000
ROA not before: Tue 03 Sep 2024 06:19:11 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 211895
IP address blocks: 103.42.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193 (0xc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9186BCC
Validity
Not Before: Sep 3 06:19:11 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66d6aa5f-62c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3b:3e:3b:79:f1:6f:5b:a0:d9:54:c0:d6:7d:
d5:d5:3e:9a:75:6c:6b:f1:51:15:6e:c6:fa:e9:c5:
79:ba:ab:9c:df:9c:f7:40:d9:f2:4d:be:d0:f4:72:
18:7e:d9:88:68:7e:97:31:8a:57:ec:86:84:d6:4b:
08:fd:bb:8a:7c:a2:72:57:fa:6d:2e:c3:40:62:54:
69:d8:ad:70:2d:af:85:28:75:9c:a7:54:98:ea:24:
56:82:f8:23:6a:17:2b:49:75:39:4a:32:1d:62:15:
9a:de:b6:f7:2f:29:d5:30:70:57:c6:e8:1f:af:d9:
44:43:82:cc:19:c0:1c:39:79:d8:5c:ae:ad:6e:09:
b2:fe:97:b7:fa:2c:e2:72:64:59:8a:0f:f6:b9:d2:
d3:3e:b5:9e:4a:e5:b0:8a:e5:2a:03:98:6a:6d:72:
83:3d:38:a4:ed:7c:b3:ef:11:67:c5:0f:53:0c:a3:
01:0c:05:e2:53:b1:e5:ab:b1:67:74:0b:82:a3:76:
4d:46:0c:9d:6f:52:e5:ab:31:c9:62:40:8b:ea:04:
92:c2:db:75:e8:c9:64:d4:67:16:9a:43:11:7e:15:
00:12:a3:b1:9e:88:a8:0c:fb:4b:bc:05:58:ac:25:
01:47:7f:d2:da:6d:cd:aa:60:32:ee:38:ae:54:97:
ce:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:C5:E6:9E:F3:25:AA:06:EC:6F:A8:35:AE:1E:0F:C8:AB:13:7B:82
X509v3 Authority Key Identifier:
keyid:FD:45:CC:54:03:C6:4C:FB:23:0A:A7:DE:ED:10:BC:68:22:8D:74:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9186BCC/904E50F048D411EEB5D6A17BC4F9AE02/_UXMVAPGTPsjCqfe7RC8aCKNdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UXMVAPGTPsjCqfe7RC8aCKNdHM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186BCC/904E50F048D411EEB5D6A17BC4F9AE02/6B62D92248D511EEBE05CC7FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.42.240.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:58:cd:1b:f0:4a:8d:54:75:a8:ee:05:62:2c:93:34:aa:a8:
ee:be:32:fc:05:eb:e2:ce:4a:23:b2:d0:3a:2a:56:45:c4:4c:
ca:05:f2:17:46:25:a5:3b:d3:f6:e8:80:23:db:03:0c:72:08:
7d:4e:d6:fc:1b:03:68:f7:5d:09:0a:87:27:c9:02:0f:f0:79:
19:81:b8:e0:d0:5d:8f:16:30:28:0b:1f:db:75:d2:40:ba:61:
e7:c1:6f:8d:10:d8:d4:cf:e7:26:83:a1:37:f3:32:75:b1:d6:
bd:97:64:e1:c5:67:a8:fe:f5:92:23:16:6a:1a:94:1f:4a:e8:
55:fd:6f:ac:63:9b:78:1d:d4:ce:6d:db:e9:da:b6:bd:66:25:
79:29:ae:7c:70:98:c4:4a:55:28:32:76:f0:13:59:22:f1:a0:
07:f8:ad:61:44:3f:c8:0b:c0:42:63:31:8a:bd:71:97:fb:56:
bb:0e:a4:40:dc:ab:85:6d:3a:44:13:4d:e3:c3:bb:9d:62:d1:
f5:2f:38:b8:84:64:9b:ce:e1:42:ac:a1:0c:e0:61:62:86:4d:
85:2e:95:4f:e4:c9:3a:0a:8c:77:af:c6:38:ff:13:66:59:32:
d3:2f:8b:e6:27:90:fd:53:be:70:ce:25:ad:f1:9b:b6:c8:fc:
11:9e:23:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 20:05:12 2025 by rpki-client