Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/E39BD5801A9711EFB8A15B1FC4F9AE02.roa
File: E39BD5801A9711EFB8A15B1FC4F9AE02.roa (raw, json)
Hash identifier: T4nwWata1Prc8REYtoSwYTdOmhexD/ItQKN1ZZpblaM=
Subject key identifier: 74:70:EE:00:DA:92:F9:E2:AF:C1:AD:3E:C6:4B:E0:A2:F6:47:9A:D9
Certificate issuer: /CN=A91476F2/serialNumber=64B686B05DCBE8BEA92807532DE29A77905156F5
Certificate serial: 0504
Authority key identifier: 64:B6:86:B0:5D:CB:E8:BE:A9:28:07:53:2D:E2:9A:77:90:51:56:F5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/E39BD5801A9711EFB8A15B1FC4F9AE02.roa
Signing time: Sat 25 May 2024 13:08:33 +0000
ROA not before: Sat 25 May 2024 13:08:33 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 55020
IP address blocks: 103.66.56.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1284 (0x504)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91476F2, serialNumber=64B686B05DCBE8BEA92807532DE29A77905156F5
Validity
Not Before: May 25 13:08:33 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=6651e2d1-3824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:a8:0b:c1:40:80:f0:2b:e5:9b:b5:fd:ea:f4:
9f:b1:10:ad:77:f4:4d:f2:11:cf:aa:65:85:8f:f3:
96:2f:3b:8d:e6:9c:86:2a:24:ac:2c:f0:92:02:11:
90:44:52:1b:ab:74:94:0e:85:60:ac:37:f0:f7:79:
10:59:d5:2b:52:10:02:e5:84:42:23:19:aa:3f:eb:
ef:38:50:fd:cf:42:62:49:71:2e:a2:6b:32:44:13:
25:92:78:dc:bf:66:98:a1:09:0e:0f:95:2f:7d:37:
0c:07:cf:b3:00:11:92:9f:72:51:33:e5:b0:44:4f:
d2:cc:c8:4e:d8:e8:3d:5a:80:12:af:cd:1d:ea:d8:
9a:f2:b9:d8:7b:71:b7:73:da:3d:0b:b4:14:6c:e0:
43:53:42:a5:6c:ad:e1:ec:9e:b6:e2:36:ce:c5:c1:
94:a8:91:73:6d:20:80:4d:36:d0:7a:9b:0f:6a:34:
16:f7:23:9e:aa:8b:09:40:5a:c6:ef:b5:a7:f5:33:
c8:bd:1e:ef:ed:35:57:15:99:41:94:14:a3:b1:99:
0e:27:4f:bf:3e:4d:58:1e:1c:5a:f4:af:ae:12:ba:
71:a0:9d:31:3f:76:38:d7:ae:84:9d:35:a2:29:50:
6b:2f:1d:70:c5:3b:39:46:56:0d:5b:99:33:6b:1d:
ff:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:70:EE:00:DA:92:F9:E2:AF:C1:AD:3E:C6:4B:E0:A2:F6:47:9A:D9
X509v3 Authority Key Identifier:
keyid:64:B6:86:B0:5D:CB:E8:BE:A9:28:07:53:2D:E2:9A:77:90:51:56:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/E39BD5801A9711EFB8A15B1FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.66.56.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:d1:a0:a5:1c:b7:16:8e:69:21:ea:91:cf:83:80:d9:4e:19:
20:a8:6d:c6:38:77:ca:8c:d5:99:09:d4:83:9c:a3:6c:89:7e:
a4:64:76:83:6e:00:41:6b:d7:b4:f1:ac:1b:d8:fb:ae:26:98:
7e:63:57:4a:c5:48:20:8b:87:b3:d7:e7:50:23:b2:77:b2:04:
41:86:db:d6:39:4f:bf:16:75:bb:24:30:a4:77:32:2a:f8:e8:
f4:82:bc:e4:e6:7b:02:9b:97:85:43:63:d8:10:bc:a9:dc:4e:
89:e6:84:de:36:01:31:fc:8a:4f:71:cb:e0:f6:a0:28:42:e1:
93:8d:7b:45:39:21:52:bf:2b:f7:e3:61:99:63:e2:a2:8e:a0:
b9:d8:01:8b:6f:e2:b3:d9:2c:bf:ba:1d:12:1e:58:d5:d6:4e:
6e:88:5c:0b:4c:09:20:19:2b:a3:10:1d:d7:47:9a:ab:19:4f:
e7:ed:1d:df:6e:8d:08:e5:4e:4f:b7:20:3a:7e:49:6a:c0:6d:
f9:e9:00:e6:4d:ce:c0:2e:73:0b:c4:80:bd:9d:1c:5a:60:4f:
02:1c:20:41:c7:87:be:2d:30:0f:c3:da:27:4a:b1:7a:d2:33:
35:49:f7:87:28:64:82:0d:8f:3a:50:9e:95:99:52:20:f2:6e:
be:6a:af:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 12:38:49 2025 by rpki-client