Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DD267C66316511EFB284A421C4F9AE02.roa
File: DD267C66316511EFB284A421C4F9AE02.roa (raw, json)
Hash identifier: fBqSW8jISb6HiF16XH44dQP540yVqiuhIc6mypavGXQ=
Subject key identifier: 50:1B:7D:DF:9B:90:05:A5:D8:19:B5:92:0E:E0:EA:B7:D0:28:5C:59
Certificate issuer: /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33
Certificate serial: 37
Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DD267C66316511EFB284A421C4F9AE02.roa
Signing time: Sun 23 Jun 2024 13:38:24 +0000
ROA not before: Sun 23 Jun 2024 13:38:24 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 23470
IP address blocks: 103.14.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55 (0x37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F9353
Validity
Not Before: Jun 23 13:38:24 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66782550-ccf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:69:22:7b:f4:94:f2:a0:09:3e:a1:ec:dd:a1:
d9:6a:1a:db:37:e3:00:89:2a:0a:4e:39:70:e5:9a:
77:8d:c4:8f:cf:2c:cc:14:82:70:01:65:16:b3:f9:
e2:fa:40:74:46:28:92:d1:1d:ec:23:00:48:44:9b:
b6:ed:12:11:99:6f:3b:3c:67:50:38:63:ae:91:cd:
a0:62:0b:0f:af:ab:2c:84:0c:34:99:3c:76:77:f7:
44:04:73:b4:f2:94:79:7c:1d:ee:98:92:23:d3:8d:
3c:36:17:ea:68:95:a9:2c:be:9d:16:77:51:15:63:
13:60:a3:b3:af:c3:49:a7:a2:bc:a4:ca:9b:8c:87:
4e:7b:78:4c:2d:f8:5b:e8:b7:4e:d5:70:2e:81:05:
73:f4:46:6d:62:ed:1e:5d:7f:ec:68:cd:ed:75:42:
05:20:f0:8d:45:3b:27:45:e7:2f:9a:82:85:de:32:
b6:b2:c7:cc:20:73:d6:66:0b:7e:ec:41:92:d1:2c:
3e:3a:e3:be:ab:16:b7:f7:6c:4d:c7:7d:bc:15:fd:
9c:4e:a3:06:d3:19:79:bb:b9:8f:ea:9d:c1:20:64:
da:35:bb:db:55:ff:b5:78:0a:a1:cb:06:ca:eb:f2:
8e:d3:2a:53:2d:b7:88:65:e1:00:6a:c5:15:e9:7d:
3e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:1B:7D:DF:9B:90:05:A5:D8:19:B5:92:0E:E0:EA:B7:D0:28:5C:59
X509v3 Authority Key Identifier:
keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DD267C66316511EFB284A421C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.22.0/24
Signature Algorithm: sha256WithRSAEncryption
00:3e:28:05:5d:1a:50:6a:53:48:95:55:07:08:cc:7f:ce:71:
40:cf:e0:27:6a:88:0e:d8:14:3b:5d:fe:6a:1b:53:e8:4d:bd:
44:bc:ab:b5:e2:fa:41:af:2e:51:7c:39:90:0e:2d:e9:84:05:
59:1a:3a:dd:c1:f4:12:2e:4c:c7:31:51:1e:9a:70:e7:11:5a:
e9:7b:b4:9f:cb:98:73:75:31:ca:e9:42:ae:2f:96:27:ec:c7:
6d:41:59:a2:ae:be:4e:ac:31:92:2a:6b:1f:21:1d:5c:46:58:
6b:74:ab:fa:4d:1a:5a:81:9b:07:94:82:a8:2c:39:98:f1:34:
5f:6d:98:7b:a1:ad:b7:d1:e6:2a:97:9a:ad:45:bb:fb:62:6f:
f2:48:18:17:67:27:96:44:60:48:26:53:5d:c9:9f:16:2e:2c:
b4:e2:e7:2a:9d:1c:66:60:dc:40:49:69:bc:ee:b8:c1:43:af:
ad:08:4b:28:c9:69:c7:70:1f:79:72:fe:03:a4:4c:af:d1:88:
8e:69:9d:7d:96:d4:37:f6:b2:87:4b:a6:ce:f1:19:02:9a:8b:
ba:3c:4a:91:42:80:1a:b8:6b:72:9c:c1:f6:dc:d0:c1:4a:23:
06:63:e5:28:08:79:11:47:2f:40:20:86:57:9a:b7:72:51:08:
01:65:e4:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:11:14 2025 by rpki-client