Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197DC3/E65118A284A611EAAC51421FC4F9AE02/80342A44986411EDBBD44652C4F9AE02.roa
File: 80342A44986411EDBBD44652C4F9AE02.roa (raw, json)
Hash identifier: mKVfwvoJ/Lxr39d6Pq+g8OAjTwxY30FJq6kJyrSBoJI=
Subject key identifier: 61:BA:DF:A3:8B:14:A6:4F:E7:3A:27:2F:5A:C8:F8:5C:FC:2D:3F:81
Certificate issuer: /CN=A9197DC3/serialNumber=491B029BAB7648045D34F7ABC57F7FA8CC7180E1
Certificate serial: 0107
Authority key identifier: 49:1B:02:9B:AB:76:48:04:5D:34:F7:AB:C5:7F:7F:A8:CC:71:80:E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SRsCm6t2SARdNPerxX9_qMxxgOE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9197DC3/E65118A284A611EAAC51421FC4F9AE02/80342A44986411EDBBD44652C4F9AE02.roa
Signing time: Thu 02 May 2024 21:40:36 +0000
ROA not before: Thu 02 May 2024 21:40:36 +0000
ROA not after: Sun 01 Sep 2024 00:00:00 +0000
asID: 213347
IP address blocks: 103.73.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 263 (0x107)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9197DC3/serialNumber=491B029BAB7648045D34F7ABC57F7FA8CC7180E1
Validity
Not Before: May 2 21:40:36 2024 GMT
Not After : Sep 1 00:00:00 2024 GMT
Subject: CN=66340854-1106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:84:b4:1d:c7:99:e5:da:47:bb:f7:9c:e3:89:
51:23:c3:5e:e9:72:01:8d:79:76:dd:bb:78:e4:fa:
ce:af:14:e4:d8:f2:40:ce:28:6d:53:d2:08:f9:cc:
5c:0d:df:3a:54:a7:d3:4c:f8:7e:23:3c:0f:53:3c:
fa:57:91:39:57:8e:53:50:49:97:f6:6b:f7:e8:5e:
ed:7f:3a:72:e4:58:cd:30:37:f9:36:fe:79:33:3f:
ca:f9:0c:6a:12:b4:71:53:94:48:cf:59:c8:31:df:
b2:2d:78:9b:eb:f7:ec:d8:50:8b:ef:7f:78:d7:a6:
97:fd:28:09:3e:d7:00:e1:48:7b:c5:6d:3a:56:85:
21:14:75:77:bf:ef:5f:3f:5b:93:b9:e3:6f:00:c0:
6a:a6:4a:ee:21:5a:ef:45:e2:4c:1a:62:75:22:52:
b2:d8:ad:c2:d1:11:e2:62:6d:b9:a6:3c:95:4c:58:
f9:e9:8f:69:1c:95:59:f6:f9:38:c0:c0:01:4c:c3:
90:3f:89:4e:4f:49:fa:83:3f:1c:a9:d2:b7:32:b3:
34:3f:9e:58:70:6f:ca:0e:d0:1b:9e:3c:2b:5c:80:
af:f9:8f:fd:9d:49:e8:dc:82:53:45:27:3e:6f:b4:
77:69:82:1b:b4:67:6c:dd:c8:ec:2d:85:50:ad:96:
ca:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:BA:DF:A3:8B:14:A6:4F:E7:3A:27:2F:5A:C8:F8:5C:FC:2D:3F:81
X509v3 Authority Key Identifier:
keyid:49:1B:02:9B:AB:76:48:04:5D:34:F7:AB:C5:7F:7F:A8:CC:71:80:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9197DC3/E65118A284A611EAAC51421FC4F9AE02/SRsCm6t2SARdNPerxX9_qMxxgOE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SRsCm6t2SARdNPerxX9_qMxxgOE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197DC3/E65118A284A611EAAC51421FC4F9AE02/80342A44986411EDBBD44652C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.73.253.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:d2:2d:67:3a:3b:9e:b6:bf:e9:56:14:14:41:91:d7:ab:bb:
c1:f0:02:d3:46:cd:ac:7f:a2:6f:62:84:f4:c7:b2:fb:70:99:
37:3d:54:3e:6d:94:48:11:67:e2:33:a6:91:5b:0e:cb:a3:4f:
da:fc:79:38:0b:2e:f8:2f:02:00:b5:fc:1c:3a:fe:39:01:bd:
d1:7c:dd:2a:e1:10:47:27:cd:5b:e5:a9:95:59:d5:7c:fd:24:
dc:9a:b0:0f:04:cb:ea:0c:60:60:d4:1a:2b:dc:87:41:39:54:
7f:f4:ed:12:10:40:7a:19:24:8a:f8:fa:e9:6f:34:bd:27:d7:
cc:a3:e7:1b:71:af:f6:63:5e:8f:6a:ae:81:6d:2e:94:8f:cd:
2a:97:15:e9:1c:ef:3b:c6:86:62:e7:e2:df:24:43:30:9e:e2:
25:e6:e9:2e:77:61:22:5d:c5:31:00:b3:d6:88:39:8f:d0:5c:
67:5b:81:8b:d1:00:2a:f1:05:39:a2:7e:fe:12:ba:69:49:19:
5a:1d:d9:82:0c:2c:7b:5a:2a:57:ba:c4:95:9a:09:18:5f:eb:
12:fe:12:6e:ac:9c:bc:39:d9:f4:f8:ba:5b:07:a1:83:8d:3b:
59:0a:e8:e1:65:87:9f:2f:ed:c3:fb:39:1e:2c:97:a0:3e:bf:
1c:89:24:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:34 2024 by rpki-client on console-fra.rpki-client.org