Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/66DF3578E7FD11ED9522E942C4F9AE02.roa
File: 66DF3578E7FD11ED9522E942C4F9AE02.roa (raw, json)
Hash identifier: KsodS2YL+Nm4D1MzrnrSRZB2J8+HOj5d1oTTMmxmiZ0=
Subject key identifier: E8:0F:8B:2E:27:C9:85:06:3F:6E:8A:0D:FF:76:91:0C:59:D2:FD:C7
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 8B78
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/66DF3578E7FD11ED9522E942C4F9AE02.roa
Signing time: Thu 30 May 2024 16:07:20 +0000
ROA not before: Thu 30 May 2024 16:07:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 137119
IP address blocks: 103.200.74.0/23 maxlen: 24
2001:df7:4c00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35704 (0x8b78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 30 16:07:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a438-a2ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:32:79:96:6c:40:b6:93:05:f2:50:81:87:ae:
a2:d0:20:7a:8e:22:4f:dc:d1:40:25:5f:df:ad:60:
d9:f6:6d:12:c0:18:b0:88:f5:cd:7d:f0:0b:61:4d:
5a:00:7e:23:75:75:99:94:61:c4:3e:5c:a5:11:c4:
53:b9:25:db:9c:4e:7d:6b:6d:63:eb:9f:41:7d:31:
2c:b0:7d:1c:1a:df:eb:45:d3:16:a1:aa:8f:51:3d:
c7:09:d9:c2:0f:8e:5f:6d:ed:fc:a7:30:6f:3d:06:
f2:b5:99:2f:d8:06:19:23:93:74:f4:48:9f:c8:b4:
a5:bc:d6:91:5c:ae:28:3a:1c:ea:cc:d4:8b:32:a9:
e6:33:f2:36:82:7e:63:40:78:e6:f0:a3:6f:1a:f4:
f5:12:11:d4:97:8a:54:b6:c5:8f:f3:ff:84:98:31:
70:fc:b8:20:36:89:08:fa:64:aa:32:09:5e:ab:c5:
e1:c2:dc:4b:9b:62:7e:07:1a:f0:ff:da:d3:ac:14:
85:d4:25:3e:73:c9:7d:0d:18:8f:3b:7d:d0:f2:36:
46:e9:e0:5f:fd:fb:cf:e9:f9:58:c2:09:94:0f:34:
02:8e:e0:a4:6e:dc:56:d8:97:d7:f6:e7:0c:09:12:
d5:bd:40:d5:41:dc:fe:5b:4f:fb:1b:33:c6:e6:45:
c6:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:0F:8B:2E:27:C9:85:06:3F:6E:8A:0D:FF:76:91:0C:59:D2:FD:C7
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/66DF3578E7FD11ED9522E942C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.200.74.0/23
IPv6:
2001:df7:4c00::/48
Signature Algorithm: sha256WithRSAEncryption
04:09:f4:d7:2d:3c:47:66:cd:de:86:04:f9:24:12:c2:88:2b:
32:df:8e:ba:b9:1b:c0:48:73:94:78:76:a9:18:b9:3f:04:3c:
62:21:be:bc:3f:6b:42:ad:12:4a:9c:74:44:c9:79:9b:18:7f:
b7:db:ba:15:28:05:42:9f:a2:83:e2:e6:96:e2:5f:38:23:01:
7e:cb:2a:67:18:0f:31:45:58:b6:f2:96:a8:9e:4c:68:90:8f:
a7:8c:8f:a3:70:c6:8a:5c:34:dd:a7:3d:b5:8b:49:4d:10:8d:
94:6b:52:aa:2b:c0:d5:e9:d3:5c:2a:c6:67:e1:50:65:e9:a0:
b3:3f:29:42:ff:58:49:9a:fc:90:39:76:00:b9:c8:d6:41:a3:
fc:1b:d8:dd:af:04:17:fd:3c:46:47:4f:83:19:9e:6a:a3:9f:
82:45:77:0f:b2:59:4d:4f:dd:fc:2c:69:06:74:34:60:c3:d6:
b8:cc:06:60:76:e6:5b:cc:07:c8:c6:d7:30:fd:13:b3:c9:ef:
0d:c6:d4:ad:53:19:93:ec:f7:56:99:21:2f:8e:5f:44:58:a5:
bd:6b:64:46:77:74:d7:4f:cc:ca:d9:b1:fa:db:a8:34:c0:8d:
0b:c0:b7:19:6c:6a:95:25:b6:c7:6f:74:bb:b2:41:fd:5a:a6:
ab:ad:18:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:51:04 2025 by rpki-client