Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/FCC3542E445E11EBB692887EC4F9AE02.roa
File: FCC3542E445E11EBB692887EC4F9AE02.roa (raw, json)
Hash identifier: mIOY2vhOsc+nNqge7lnkHLB5M4DsgX2WsmX/mvk1lyU=
Subject key identifier: AD:19:14:DA:5F:F5:86:3F:D0:82:BF:F3:05:6F:02:ED:67:92:3A:6A
Certificate issuer: /CN=A91E0435/serialNumber=42911B109D46E88661FA85616C812803C5AB3C64
Certificate serial: 06AC
Authority key identifier: 42:91:1B:10:9D:46:E8:86:61:FA:85:61:6C:81:28:03:C5:AB:3C:64
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/FCC3542E445E11EBB692887EC4F9AE02.roa
Signing time: Mon 02 Dec 2024 22:00:56 +0000
ROA not before: Mon 02 Dec 2024 22:00:56 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 141456
IP address blocks: 103.160.8.0/24 maxlen: 24
103.160.20.0/24 maxlen: 24
2001:df1:3a40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1708 (0x6ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E0435/serialNumber=42911B109D46E88661FA85616C812803C5AB3C64
Validity
Not Before: Dec 2 22:00:56 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=674e2e18-c028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:33:61:d5:6f:b4:cb:1f:ff:20:ef:6d:57:ef:
3b:e4:46:a2:00:8c:39:1d:dd:a7:7e:5f:5c:30:d7:
ed:fa:dd:08:e4:54:38:6c:d1:c3:67:5f:26:d2:9d:
62:eb:ad:62:11:ea:b0:a5:93:03:e3:f5:c9:4f:f0:
eb:88:c8:d8:a4:95:8c:c3:71:49:82:69:2c:e2:a7:
12:da:a6:a5:80:ba:7e:ff:61:54:66:a7:e6:95:05:
9d:dd:ff:95:5a:84:4c:8c:c3:49:45:ca:b3:c1:58:
f7:3d:24:c6:a6:39:4d:5c:ed:98:26:fd:6f:79:1b:
08:25:e0:75:df:6d:27:3e:fd:41:a5:25:b3:57:ac:
74:68:65:bf:ea:7c:35:e4:40:cb:4a:24:8d:97:f0:
db:2f:5a:1b:0f:99:f3:d6:24:ba:7c:38:d2:47:98:
71:ea:da:2c:6a:bd:eb:80:19:6a:c3:f4:9f:74:ab:
26:31:57:aa:9c:25:b0:7f:a7:f2:d1:c2:e0:62:cd:
a7:ff:de:38:0e:74:5c:6b:cb:6d:5b:b5:15:d3:d9:
83:a9:70:9d:82:e1:6b:3d:c5:a7:dc:13:0e:92:19:
45:10:3b:0a:e0:29:98:11:a9:cd:e6:06:10:72:18:
1c:d0:c3:5e:f8:2a:dd:96:2e:90:25:d6:c9:4e:31:
5b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:19:14:DA:5F:F5:86:3F:D0:82:BF:F3:05:6F:02:ED:67:92:3A:6A
X509v3 Authority Key Identifier:
keyid:42:91:1B:10:9D:46:E8:86:61:FA:85:61:6C:81:28:03:C5:AB:3C:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/FCC3542E445E11EBB692887EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.8.0/24
103.160.20.0/24
IPv6:
2001:df1:3a40::/48
Signature Algorithm: sha256WithRSAEncryption
05:1a:17:6d:1b:05:e4:e5:9f:e4:d6:d6:6a:63:b3:03:ef:7d:
cb:ae:29:b9:b9:97:45:68:e8:87:43:ae:44:bd:d7:0b:7e:4a:
b1:4f:34:e8:80:c6:29:f4:c9:e1:97:57:37:8a:53:2e:e6:d7:
61:57:cb:f2:10:05:d7:3f:ef:ee:9b:8f:83:cb:ef:b2:05:b9:
af:84:cd:50:2e:1e:52:46:e6:cd:f6:80:01:e2:a6:3c:da:60:
35:89:75:12:28:7e:86:a2:b7:9c:b5:d9:e6:f9:9a:ed:49:7e:
f6:b6:4b:77:16:6f:e7:e7:c5:0f:90:b3:42:8a:4d:56:af:a2:
e8:2d:5e:15:d5:86:46:d7:ac:2c:a8:8a:c1:6e:5c:eb:3e:c4:
83:a7:bc:26:2e:5c:af:f9:3a:b1:64:cd:e3:69:66:38:a3:20:
c7:54:8d:1a:a9:25:80:17:b0:0e:1c:4b:6d:76:09:f2:fc:34:
eb:c1:a0:17:ae:a4:7f:00:29:3e:89:84:2d:9c:a1:e7:ed:76:
9f:37:84:17:5e:d8:ab:e6:c6:01:e9:cc:74:bc:49:ee:6d:a4:
df:52:b7:af:c5:40:58:d6:a8:33:62:b9:00:10:8e:c4:5c:78:
65:80:2b:53:f7:57:4e:02:53:3c:b0:03:20:e1:7e:9e:05:ad:
aa:7c:97:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:05:35 2025 by rpki-client