Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6131/0FCB3D3828D611EB84E4C93BC4F9AE02/43CB91868F8C11ED9047944AC4F9AE02.roa
File: 43CB91868F8C11ED9047944AC4F9AE02.roa (raw, json)
Hash identifier: igGSJfU6gw3jmkgCbUFI+Qoo1wj0BJdZZZdtKni5uM4=
Subject key identifier: 80:9F:BA:D1:2C:2B:18:56:EE:B0:58:AC:AB:D4:76:FD:4E:64:F0:B5
Certificate issuer: /CN=A91A6131/serialNumber=7B059CCC60BAAAFCF6F141216EFDD68E870C2551
Certificate serial: 05DB
Authority key identifier: 7B:05:9C:CC:60:BA:AA:FC:F6:F1:41:21:6E:FD:D6:8E:87:0C:25:51
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewWczGC6qvz28UEhbv3WjocMJVE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A6131/0FCB3D3828D611EB84E4C93BC4F9AE02/43CB91868F8C11ED9047944AC4F9AE02.roa
Signing time: Sun 08 Jan 2023 19:40:12 +0000
ROA not before: Sun 08 Jan 2023 19:40:11 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 61317
IP address blocks: 103.238.128.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1499 (0x5db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A6131/serialNumber=7B059CCC60BAAAFCF6F141216EFDD68E870C2551
Validity
Not Before: Jan 8 19:40:11 2023 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=63bb1c1b-39e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:70:01:48:e2:05:25:2e:6b:cf:1c:90:d1:10:
09:c2:04:23:2c:f8:2d:b1:bb:43:98:9d:ae:2f:07:
b6:47:1f:54:f6:e6:eb:64:04:3c:99:3a:ec:c7:38:
b5:cd:73:85:3e:d8:3a:37:59:c5:26:5e:7e:d1:49:
d2:0b:76:2e:9e:07:58:a8:f7:0f:ad:0e:7b:b5:7f:
3b:75:cf:79:85:05:c0:4e:de:1e:65:85:5d:28:7b:
c5:e1:4f:a9:44:9e:f1:60:f1:f8:6e:33:84:c7:cb:
c8:03:5f:80:af:1b:fd:52:0e:99:27:c5:1a:cb:ee:
17:78:f2:9b:23:ac:79:3b:cb:25:0b:7e:8d:21:91:
3b:bc:8c:7b:31:4e:8d:45:72:ad:ea:ee:9d:02:6f:
c8:25:aa:d3:87:17:fe:fb:67:dd:08:a4:1e:6d:87:
19:37:89:bc:36:01:5e:47:2f:c5:c9:a3:4e:28:7f:
69:a7:5e:4c:8a:d5:38:e6:25:b8:79:8b:59:21:9f:
cb:d2:7f:a9:00:f1:de:d9:6b:e2:b2:cc:b9:a3:28:
00:11:f2:db:6c:aa:4c:65:92:76:67:0d:ce:46:39:
85:68:d3:0c:24:66:8e:65:06:b6:6c:c1:cb:1f:66:
b5:dc:52:42:25:a2:ba:c3:92:7d:1c:d5:a0:69:82:
36:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9F:BA:D1:2C:2B:18:56:EE:B0:58:AC:AB:D4:76:FD:4E:64:F0:B5
X509v3 Authority Key Identifier:
keyid:7B:05:9C:CC:60:BA:AA:FC:F6:F1:41:21:6E:FD:D6:8E:87:0C:25:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A6131/0FCB3D3828D611EB84E4C93BC4F9AE02/ewWczGC6qvz28UEhbv3WjocMJVE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewWczGC6qvz28UEhbv3WjocMJVE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6131/0FCB3D3828D611EB84E4C93BC4F9AE02/43CB91868F8C11ED9047944AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.238.128.0/22
Signature Algorithm: sha256WithRSAEncryption
22:f7:2e:ec:34:bd:51:24:44:58:38:72:72:73:32:23:e4:0e:
98:a7:71:96:ca:2f:59:ac:4a:6f:24:97:12:ee:5f:c9:78:2a:
17:5d:ac:c4:f3:78:59:66:3a:8f:ab:75:3f:ea:d1:df:b1:9e:
a6:2b:34:96:e8:68:b0:bf:71:5f:68:cd:d5:9e:e0:77:91:92:
07:4b:6d:87:e1:04:77:87:66:89:d7:e6:f7:0c:90:12:04:36:
dc:f0:07:37:9f:5d:5a:3e:06:38:b2:de:0f:b1:48:74:41:3f:
0c:a0:bc:17:e7:b4:a1:7f:b2:90:8f:d2:b1:43:b9:bd:2a:dc:
2b:c6:e8:14:3c:54:ad:6d:00:02:8b:d4:9a:cc:f8:e2:5b:25:
a7:1a:5c:97:48:58:7f:85:79:aa:a1:26:5a:89:28:46:51:f7:
32:75:65:1e:a5:92:a6:e1:36:c4:b8:81:9a:3a:5a:38:b1:b1:
e8:b4:de:19:15:17:8d:4c:c1:71:15:c1:52:9f:67:94:5b:68:
fe:b2:27:0e:82:54:88:14:8e:44:79:4a:01:e5:05:44:9a:63:
12:f6:1b:34:9b:cd:05:b2:fe:66:59:3b:28:d8:7c:23:14:3f:
de:4d:76:65:14:ed:72:66:81:e5:ca:1a:41:6a:76:8b:dd:d8:
e9:d0:b4:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:54 2024 by rpki-client on console-ams.rpki-client.org