Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/58C8DF8E1D3711ED9E2D8867C4F9AE02.roa
File: 58C8DF8E1D3711ED9E2D8867C4F9AE02.roa (raw, json)
Hash identifier: FSYr699megaB2rJpIagzzWfYpNq6JBYAS+eCRbgyO2c=
Subject key identifier: 61:97:BA:28:B6:ED:CA:6B:72:21:AC:08:E9:3D:4F:98:97:F1:01:B8
Certificate issuer: /CN=A91C05AD/serialNumber=F512AD663A63326355CA8D8E9100B3CEAB3CB9FB
Certificate serial: 01E0
Authority key identifier: F5:12:AD:66:3A:63:32:63:55:CA:8D:8E:91:00:B3:CE:AB:3C:B9:FB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9RKtZjpjMmNVyo2OkQCzzqs8ufs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/58C8DF8E1D3711ED9E2D8867C4F9AE02.roa
Signing time: Fri 13 Sep 2024 05:47:53 +0000
ROA not before: Fri 13 Sep 2024 05:47:53 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 142618
IP address blocks: 103.111.38.0/24 maxlen: 24
103.111.39.0/24 maxlen: 24
2001:df1:1a40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 480 (0x1e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C05AD/serialNumber=F512AD663A63326355CA8D8E9100B3CEAB3CB9FB
Validity
Not Before: Sep 13 05:47:53 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66e3d209-b523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:03:ec:fd:e1:7f:f5:45:ce:da:09:3b:1a:e5:
c9:59:c0:11:ee:92:6e:51:2b:a1:b5:26:ec:13:b1:
95:07:d1:93:56:76:be:e4:0e:47:39:ea:4f:f6:b4:
8d:22:1c:64:d0:f6:aa:1b:09:cb:87:c5:17:f5:11:
12:3d:45:66:c4:9e:07:8d:ea:9b:65:5a:02:e3:ef:
ca:00:fa:35:73:44:7a:cf:03:f2:84:ff:bf:3f:a3:
00:56:b0:52:92:a8:f1:07:b3:94:7f:86:d0:71:02:
4b:07:8f:4c:cf:af:6c:4d:fd:28:75:22:11:a2:66:
d4:43:75:fd:58:76:3c:90:bb:8f:10:b7:c2:c8:e3:
b5:cb:b2:47:ad:bb:f2:ec:99:77:89:9e:86:82:49:
b8:84:09:2d:e8:0b:2c:70:ec:d5:ea:91:a3:cf:06:
5c:51:b1:61:e7:36:ec:57:31:fb:5c:34:43:37:38:
45:84:5c:67:e4:57:07:52:40:8a:62:54:ba:1e:9f:
00:bd:a5:fb:be:d1:71:f1:b2:b1:08:9d:8d:81:4d:
a7:49:57:31:90:ed:2d:90:89:14:4b:46:ff:e4:49:
ba:18:da:2f:88:9a:3f:73:4a:c6:49:69:e3:35:b0:
db:23:41:b7:c8:da:a0:6a:e5:5f:91:43:bb:25:42:
cb:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:97:BA:28:B6:ED:CA:6B:72:21:AC:08:E9:3D:4F:98:97:F1:01:B8
X509v3 Authority Key Identifier:
keyid:F5:12:AD:66:3A:63:32:63:55:CA:8D:8E:91:00:B3:CE:AB:3C:B9:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/9RKtZjpjMmNVyo2OkQCzzqs8ufs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9RKtZjpjMmNVyo2OkQCzzqs8ufs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/58C8DF8E1D3711ED9E2D8867C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.111.38.0/23
IPv6:
2001:df1:1a40::/48
Signature Algorithm: sha256WithRSAEncryption
68:81:32:4e:06:dc:8f:f7:35:5e:23:15:53:d7:7c:d0:8a:81:
77:59:82:de:46:56:db:bc:ce:39:88:8a:f5:5a:fe:98:f7:ec:
2b:30:b1:84:24:10:ce:2b:75:80:50:13:19:f5:7d:5c:7c:ff:
d1:68:ad:5a:0f:30:23:ca:ed:19:49:2d:67:46:f9:9b:07:4c:
84:94:0b:e1:c2:57:70:9a:01:8d:92:c9:88:59:d4:9c:94:5e:
4e:a6:d5:f1:97:1e:29:13:70:39:22:19:e6:4d:31:b2:bc:5f:
68:b6:8a:82:90:30:85:d1:58:1e:48:ab:c1:51:4f:78:53:3d:
45:ce:16:3f:9e:c4:64:1b:60:7c:09:27:23:85:57:13:11:a6:
46:93:ad:5c:59:63:61:00:65:df:8f:bc:b1:8e:2a:2f:84:97:
85:9e:1f:7a:1c:9d:42:31:a7:29:40:63:ec:29:22:05:ee:9c:
a8:7d:1e:90:30:0c:15:b0:76:a2:8f:3c:f8:d6:c5:20:b9:a0:
5a:18:1d:5d:a0:9c:f3:65:79:80:92:97:a3:85:22:34:31:a3:
6a:b6:c8:ea:a5:ad:e7:b1:51:04:ef:2f:3e:c7:e5:7f:8d:28:
b7:1a:92:b9:ae:4a:ce:41:18:8b:c5:1d:2d:39:d8:82:4f:b2:
a3:6b:dd:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:03:41 2025 by rpki-client