Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/B0562E7AEC6E11EEB7FC060BC4F9AE02.roa
File: B0562E7AEC6E11EEB7FC060BC4F9AE02.roa (raw, json)
Hash identifier: SpJD8GcSBoUz5MPi6PJr9VjMBRC58LFgHcmGttoe0yo=
Subject key identifier: 2B:7F:14:81:C7:E8:D1:84:DA:C1:EA:B6:C1:91:1A:6B:02:C2:A9:AF
Certificate issuer: /CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890
Certificate serial: C1
Authority key identifier: 31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/B0562E7AEC6E11EEB7FC060BC4F9AE02.roa
Signing time: Wed 03 Jul 2024 06:07:36 +0000
ROA not before: Wed 03 Jul 2024 06:07:36 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 55020
IP address blocks: 103.112.96.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193 (0xc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A7B94
Validity
Not Before: Jul 3 06:07:36 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=6684eaa8-a06d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:64:b5:1f:ad:f5:cb:d5:bc:02:f8:95:47:c9:
a3:5b:aa:42:16:33:5e:44:87:57:94:6d:f3:11:c0:
04:c1:7d:63:8c:68:a8:02:c5:7f:a9:7d:72:34:6e:
f4:f9:06:80:b7:07:eb:97:37:c7:63:6e:cf:41:60:
9b:5f:d7:10:d0:6a:0c:9a:61:6a:90:0a:e6:7e:9e:
88:59:a5:b1:16:d3:18:06:7c:47:d3:18:b6:8e:30:
a4:14:28:43:55:0f:e6:f0:69:45:ae:15:23:91:6a:
9a:78:31:0d:3f:f1:57:27:f6:dd:4f:ca:af:29:89:
97:a1:1e:64:64:0b:cd:e6:19:00:4e:ad:ec:c3:90:
2a:63:be:66:43:f5:51:e1:16:34:4e:4e:03:9b:49:
63:15:3f:12:55:a1:19:04:96:bc:c5:04:06:3c:fb:
56:28:80:b5:b4:9a:d7:9d:01:1b:e1:63:40:e5:38:
76:78:c7:04:43:db:a8:fd:10:ee:8c:93:4c:85:57:
dd:c0:5c:8c:f5:29:e3:5e:97:91:fb:4d:56:be:1b:
e7:27:dd:a7:5e:fb:3f:8d:87:f1:ba:e6:1d:df:59:
1b:ef:9a:7d:18:68:42:3d:3f:51:28:ca:8d:47:ae:
14:8c:67:be:90:39:1a:78:27:08:33:3e:bd:70:d1:
b3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:7F:14:81:C7:E8:D1:84:DA:C1:EA:B6:C1:91:1A:6B:02:C2:A9:AF
X509v3 Authority Key Identifier:
keyid:31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/B0562E7AEC6E11EEB7FC060BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.112.96.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:58:90:e5:50:2e:55:f7:6a:cf:82:ea:6f:af:ec:7a:02:59:
8b:fb:51:db:e0:b5:26:b5:15:06:cd:da:75:a3:ab:f1:82:1e:
92:8c:e6:ac:0f:9a:1e:1b:09:ec:6e:a0:b6:89:b8:72:66:08:
fd:9f:49:2a:8d:19:d9:d9:7f:1d:f2:6b:53:14:bf:48:94:f2:
54:6b:cf:87:9e:99:52:40:66:57:a4:b2:e8:7a:00:01:53:0c:
ae:7f:d7:f5:55:04:11:5e:67:0f:e7:b7:3b:e6:0e:bd:4e:57:
1f:c6:5e:22:47:21:18:d8:07:70:1a:9f:7f:09:96:29:df:95:
d7:be:e4:47:a0:1f:73:05:71:7d:c1:60:4d:37:4c:34:6e:f3:
8d:52:18:2e:9d:94:86:2c:43:9c:82:b8:23:6a:0a:d0:c5:fc:
6c:8d:45:2d:96:aa:84:a5:17:0e:52:76:bc:2f:94:f3:7d:74:
58:a7:7d:67:43:60:d2:32:9a:3e:80:1a:bf:b1:55:06:82:fe:
65:00:f5:65:63:a8:2d:78:dd:20:c2:6f:ff:cd:d8:b9:80:89:
50:37:12:cc:94:ab:29:c0:cd:f1:13:00:a9:61:82:c7:38:d0:
b8:87:c4:cc:8c:34:ab:cc:a1:cf:69:c6:89:42:eb:5f:20:ec:
21:62:3c:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:09:19 2025 by rpki-client