Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/73F285E8AB9811EFA8AE2F41C4F9AE02.roa
File: 73F285E8AB9811EFA8AE2F41C4F9AE02.roa (raw, json)
Hash identifier: vUB29u4/ZG950SZQlGKSABEROlZRU7j8mRKL5tgh7BY=
Subject key identifier: D2:83:1B:29:D7:8F:26:98:95:16:C7:C9:69:DD:57:8B:2C:8F:97:E7
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 48BA
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/73F285E8AB9811EFA8AE2F41C4F9AE02.roa
Signing time: Tue 10 Dec 2024 08:59:11 +0000
ROA not before: Tue 10 Dec 2024 08:59:11 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 152992
IP address blocks: 103.6.234.0/23 maxlen: 24
103.11.198.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18618 (0x48ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Dec 10 08:59:11 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=675802df-6442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:94:7e:e4:3c:c4:af:8e:34:69:c6:16:f7:76:
52:c1:16:c3:fd:af:69:78:3e:2a:3c:d3:8a:aa:38:
28:5b:5c:d0:61:4e:3d:50:2e:5a:cd:7b:08:b6:cb:
ff:bb:ba:b6:e0:34:a4:b4:d0:84:04:12:27:68:3a:
eb:99:44:63:10:7a:e6:35:20:7c:b0:c6:3b:50:e2:
e8:ef:30:47:9a:6b:37:39:95:f7:9a:67:0d:fa:94:
d3:b2:2f:ac:f4:d1:98:37:54:dd:82:21:91:90:d6:
c6:f1:79:6b:fc:28:88:a4:23:59:51:ad:5a:02:5a:
b0:c8:49:f2:36:f7:62:6c:2f:50:d9:e0:bc:a6:a9:
8f:e7:44:60:e9:f0:f9:81:c5:02:dc:96:ab:aa:3c:
97:2e:65:9e:f6:4a:eb:87:21:f8:e4:e0:e0:fc:e6:
b8:b2:13:09:c0:6f:2b:e4:d1:75:aa:d1:e9:24:ed:
0c:18:22:12:6a:3e:da:13:29:e1:4c:12:d2:56:8c:
49:08:8d:1a:c2:1b:7b:18:8e:6f:07:16:96:c6:f5:
fe:99:cc:d2:cf:37:a5:75:50:c2:ec:ad:ed:e5:a4:
74:35:a3:8f:08:4e:22:f0:ff:76:6b:b0:3e:2e:9a:
6a:58:f2:af:a4:a0:01:00:a0:4d:df:a0:6e:5c:37:
1d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:83:1B:29:D7:8F:26:98:95:16:C7:C9:69:DD:57:8B:2C:8F:97:E7
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/73F285E8AB9811EFA8AE2F41C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.6.234.0/23
103.11.198.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:26:0a:ec:06:a4:30:57:33:6f:b9:cf:3a:f6:55:11:07:7a:
8e:aa:0d:0b:e7:4d:6a:69:4d:bb:54:69:6d:29:0d:23:1c:79:
70:14:3e:5e:4f:8d:84:8c:22:17:94:2c:48:d6:a1:f0:89:7e:
36:62:f3:0d:d5:68:1b:d2:6a:6b:55:29:15:1d:cc:8b:fa:5a:
5d:ac:f8:6b:73:45:56:14:15:01:a2:fa:2e:74:b8:42:71:f3:
b5:bb:35:ac:0c:cd:5d:b6:84:ed:2f:91:01:60:4c:1e:52:cb:
0f:2b:73:43:18:6e:b4:6d:5e:ff:9d:27:7b:6a:64:09:70:7f:
57:45:a9:35:cf:ef:bb:d3:9b:e2:75:75:52:c7:fe:4b:34:bd:
79:88:96:21:8d:45:31:85:ee:d4:70:10:b9:e3:37:e1:c5:ed:
e7:63:8d:0f:99:10:92:65:1f:5c:1c:d2:60:11:ed:7a:a3:88:
1e:1c:5f:c0:0e:d7:15:bb:59:d6:94:df:54:9c:67:c2:2f:bf:
40:57:92:49:4b:c6:3b:d4:38:e1:2f:02:74:2c:37:6f:28:d1:
4a:ef:4f:56:9a:52:9f:9d:84:dd:50:20:57:80:55:49:f2:5d:
fc:33:06:33:db:49:bb:33:bc:0e:88:f9:62:3f:5e:35:82:95:
98:03:db:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:10:19 2025 by rpki-client