Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F98DF/C8BE1CACDA3811EBB8301750C4F9AE02/C0B24CFADA3C11EB80DFDB1FC4F9AE02.roa
File: C0B24CFADA3C11EB80DFDB1FC4F9AE02.roa (raw, json)
Hash identifier: 4JHquylbGc0ygS28cIkSH5HK9W6It0xRJWXwGkud5UI=
Subject key identifier: 82:D5:EF:E0:46:0F:48:B8:30:9B:CC:D1:F5:59:B6:C3:76:51:10:16
Certificate issuer: /CN=A91F98DF/serialNumber=8204B61D8457236088BA98605025274A2DB72403
Certificate serial: 03CD
Authority key identifier: 82:04:B6:1D:84:57:23:60:88:BA:98:60:50:25:27:4A:2D:B7:24:03
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggS2HYRXI2CIuphgUCUnSi23JAM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F98DF/C8BE1CACDA3811EBB8301750C4F9AE02/C0B24CFADA3C11EB80DFDB1FC4F9AE02.roa
Signing time: Wed 25 Jan 2023 02:32:33 +0000
ROA not before: Wed 25 Jan 2023 02:32:33 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 131111
IP address blocks: 103.82.12.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 973 (0x3cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F98DF/serialNumber=8204B61D8457236088BA98605025274A2DB72403
Validity
Not Before: Jan 25 02:32:33 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=63d094c1-bb6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:69:ec:af:36:38:81:d9:d4:25:ab:4d:7e:4b:
e7:63:fe:fa:48:48:bc:68:7c:49:05:47:6b:1d:50:
bc:74:5f:79:68:36:32:28:39:ff:9b:47:d3:59:d3:
f1:fd:20:bd:c8:c5:fa:2c:f5:f6:42:2f:26:81:ee:
80:62:70:0b:8d:f0:83:9f:32:8f:eb:ee:e9:b9:01:
12:9d:aa:7c:ed:c8:9d:f9:a2:78:68:73:0b:74:0e:
85:9d:f5:ba:20:6f:1e:9d:15:fd:3c:d0:61:ad:2b:
fc:e1:d4:27:ff:df:19:4d:c0:a7:60:77:b7:d8:fc:
cd:78:3e:7a:89:2f:9e:3a:31:c5:38:f4:66:76:74:
94:73:5d:05:48:90:0c:08:57:e8:e5:be:bc:4d:ec:
44:27:59:13:ec:f1:7e:db:1c:b7:00:2a:c1:73:f3:
fd:2e:ae:fa:b8:de:38:44:d7:b6:68:9c:b4:9a:02:
53:22:6b:c2:e5:31:db:81:78:ff:3c:e2:25:cd:67:
90:06:b2:84:46:b8:af:50:c5:fa:f7:99:d6:94:b2:
86:96:e1:dc:d4:7a:f9:30:40:0c:01:15:98:66:a6:
30:94:71:18:2a:3c:61:11:c1:5a:d9:59:e6:8a:64:
57:44:70:db:f6:f8:4b:ec:41:c6:b9:a4:50:bf:63:
5b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D5:EF:E0:46:0F:48:B8:30:9B:CC:D1:F5:59:B6:C3:76:51:10:16
X509v3 Authority Key Identifier:
keyid:82:04:B6:1D:84:57:23:60:88:BA:98:60:50:25:27:4A:2D:B7:24:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F98DF/C8BE1CACDA3811EBB8301750C4F9AE02/ggS2HYRXI2CIuphgUCUnSi23JAM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggS2HYRXI2CIuphgUCUnSi23JAM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F98DF/C8BE1CACDA3811EBB8301750C4F9AE02/C0B24CFADA3C11EB80DFDB1FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.82.12.0/22
Signature Algorithm: sha256WithRSAEncryption
28:b4:d1:74:d1:cd:74:a5:d3:80:2b:f3:22:7e:9e:aa:0e:dc:
c3:09:ec:d3:5d:2a:28:67:7e:41:66:69:92:ac:f9:2c:bf:31:
c5:c0:c5:e9:78:23:25:bc:df:25:02:bf:35:79:dc:5b:41:31:
22:fc:9b:9a:5a:41:23:45:0e:63:08:b2:31:30:f8:a1:47:d9:
91:55:c4:fb:01:d3:7a:61:96:dc:aa:7b:a0:54:8c:ef:e3:f5:
32:36:62:bc:06:3c:6d:07:e3:43:ef:7f:a8:59:0b:49:1e:d7:
67:22:6d:47:40:fa:cd:d2:92:1f:e6:22:d1:1a:48:2b:62:e0:
a0:e9:13:71:46:d0:de:c1:83:4e:99:22:40:b9:fe:52:35:30:
e2:c7:cc:23:0a:e3:54:79:3e:21:5d:a7:34:d0:93:99:34:88:
0c:22:7b:de:b2:7b:e8:ff:da:7d:10:8b:4b:28:67:3c:a3:91:
33:8e:5b:cc:f7:71:3d:3d:02:4f:d2:06:82:ac:e5:ba:d3:a7:
6b:4e:03:9d:59:a7:98:d8:77:a7:c3:c1:31:97:38:f1:2b:95:
bd:a7:31:d1:fc:69:c7:9c:83:ef:c4:91:c6:38:83:01:4d:57:
f7:67:a4:d8:53:c8:9c:58:f5:85:4d:0e:c1:b5:3b:66:a3:18:
6e:cb:c8:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:52 2024 by rpki-client on console-fra.rpki-client.org