Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/346A2B4045AE11ECB857890EC4F9AE02.roa
File: 346A2B4045AE11ECB857890EC4F9AE02.roa (raw, json)
Hash identifier: y6Yo94bVO58GlNbuqBWAfuC5sCH6iiyxweKo6sloNrk=
Subject key identifier: 2E:7C:49:99:A1:65:77:38:3A:0B:59:D8:39:BC:47:DA:4B:68:74:F0
Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A
Certificate serial: 041D
Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/346A2B4045AE11ECB857890EC4F9AE02.roa
Signing time: Fri 25 Oct 2024 00:43:55 +0000
ROA not before: Fri 25 Oct 2024 00:43:55 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 132491
IP address blocks: 103.73.84.0/23 maxlen: 24
103.73.84.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1053 (0x41d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B4357
Validity
Not Before: Oct 25 00:43:55 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=671ae9cb-4053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:d2:4a:bc:0e:60:30:d8:c2:47:cd:41:4e:42:
49:73:8f:44:8d:f1:39:38:f1:77:4c:85:71:e8:1c:
b5:bc:e1:ce:fd:bb:ac:94:58:6c:a0:d6:93:1e:6b:
97:36:bd:0e:05:61:4a:32:79:87:3d:ba:dd:07:c7:
f7:2c:77:64:2e:e1:cf:71:b2:c6:55:4c:13:86:7a:
66:cc:6f:07:44:96:3d:44:a2:fc:ee:98:e0:b9:63:
53:de:c4:83:6f:61:c3:3d:ab:b0:1d:13:99:85:bf:
43:e4:58:79:24:13:29:2a:d7:42:d1:7c:78:e3:56:
d9:cf:53:6c:58:9a:2e:83:80:5b:54:30:57:eb:ab:
6f:ae:d8:64:c0:15:4b:95:e6:a5:78:8c:16:cb:2a:
09:e8:f5:9d:48:62:31:82:3a:6d:e5:31:59:a9:e2:
5f:62:cf:04:6f:9d:5b:0a:98:dc:3c:ce:e1:ef:25:
fa:8a:36:36:09:fb:2d:9f:af:3b:3f:05:5c:81:a1:
d1:fa:a1:40:7d:e1:2b:ca:8b:bf:51:f9:8a:bb:3c:
22:31:43:a6:fc:aa:dd:75:7d:7e:ed:b2:92:c0:e5:
64:0f:b3:35:cd:67:b4:b5:33:98:f8:b5:a0:91:8a:
08:3b:7b:d8:92:5a:46:ec:2e:2b:5b:e8:57:c8:c7:
61:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:7C:49:99:A1:65:77:38:3A:0B:59:D8:39:BC:47:DA:4B:68:74:F0
X509v3 Authority Key Identifier:
keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/346A2B4045AE11ECB857890EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.73.84.0/23
Signature Algorithm: sha256WithRSAEncryption
68:6e:5a:99:d5:35:88:fe:d9:1e:45:9b:c1:06:a4:94:c9:8b:
92:31:29:69:1d:78:89:f1:9f:29:b2:66:b1:1f:19:94:db:0b:
21:cb:80:c6:47:88:93:07:42:79:36:c5:a4:e0:bf:a8:f9:88:
32:b7:f6:cd:d5:29:b8:80:c2:4c:e9:f8:9d:c6:ce:3a:73:f4:
94:ae:3e:ae:f7:87:42:20:26:2d:83:97:ea:57:b2:23:77:6e:
a0:e7:91:46:d7:33:65:b9:48:6b:8f:a4:64:a5:77:c9:57:66:
9d:9f:1c:9b:2d:87:dc:9f:ab:56:a2:80:5b:f8:10:da:75:b1:
27:2e:d1:96:0b:66:86:48:b5:54:5a:2a:26:ab:a0:1c:dd:28:
c0:cb:fa:d4:00:f0:b8:d5:d4:cd:87:e8:a4:fa:73:e9:cc:0f:
aa:7f:e1:86:a1:96:16:ae:d8:3f:24:06:c3:fb:fc:b2:d5:1e:
bc:af:dc:ba:2f:ea:f5:c2:cd:04:d9:99:c3:31:eb:6d:f3:1a:
7a:c4:7e:88:e2:61:ca:e7:14:51:49:46:06:fd:a8:fa:46:bb:
37:d2:88:f2:3b:b3:4b:04:ef:9c:21:3c:04:87:21:eb:2f:ac:
8d:0c:19:fa:f1:b0:60:48:2e:1c:91:18:af:f5:ca:d6:7d:ad:
34:a0:03:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:32:28 2025 by rpki-client