Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/61EFB2ACAC3611EDA5995F3FC4F9AE02.roa
File: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (raw, json)
Hash identifier: 4F/pO+DMZTaTanjCd4dRpqI6rwchzZD2B/zrGpX4dy4=
Subject key identifier: 4D:3A:DE:23:BD:9F:13:97:AC:42:A0:6C:3A:25:0D:14:66:B3:0E:43
Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6
Certificate serial: 0A12
Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/61EFB2ACAC3611EDA5995F3FC4F9AE02.roa
Signing time: Sat 22 Jun 2024 21:14:04 +0000
ROA not before: Sat 22 Jun 2024 21:14:04 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 24462
IP address blocks: 202.77.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2578 (0xa12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911647C
Validity
Not Before: Jun 22 21:14:04 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66773e9b-cc12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:87:87:46:d1:ef:8f:b2:84:ad:e3:33:b4:7b:
4c:35:42:7c:84:74:2a:f7:16:95:45:63:a8:ba:7f:
c5:f6:5d:8a:51:50:fa:63:98:06:5c:51:ca:7e:40:
aa:36:30:72:20:12:62:df:3e:67:12:2e:ec:24:a3:
fb:f2:56:6c:22:1c:38:a3:be:82:16:7c:a8:1f:b5:
0f:9f:ba:1b:57:a9:8f:0a:09:a2:4b:03:5f:40:33:
c7:0b:14:cd:24:34:2c:7f:ff:33:cb:48:ee:6a:ca:
f3:d1:19:74:33:cc:6e:f0:f1:8a:b1:cd:a1:58:20:
38:a1:ce:f4:22:4b:22:ff:1a:a1:56:38:00:07:eb:
a8:7b:70:32:28:7e:cb:e8:aa:f2:33:d5:3d:41:ea:
11:e2:22:0e:5b:19:80:e5:b4:5b:65:50:7b:89:3e:
0c:e1:e6:94:18:36:7b:fb:6b:33:56:4f:95:af:16:
05:9f:30:48:8b:b5:17:b5:88:cf:d4:bb:a0:4b:fe:
9c:79:7b:4a:79:c8:57:43:03:e8:52:ea:a9:5c:07:
bf:47:55:49:94:f8:c8:48:49:3a:e2:51:6e:29:2e:
90:c9:79:6e:ab:4d:ab:1d:d8:07:ec:1d:81:bb:66:
9b:f4:2f:13:32:b1:b3:0c:50:64:94:45:bf:22:8d:
8a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:3A:DE:23:BD:9F:13:97:AC:42:A0:6C:3A:25:0D:14:66:B3:0E:43
X509v3 Authority Key Identifier:
keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/61EFB2ACAC3611EDA5995F3FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.77.51.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:f0:ef:70:a3:37:87:57:73:d4:ef:e2:bd:c5:d1:3e:f0:14:
d9:63:63:3f:49:be:17:e0:f5:5d:d1:6c:1d:62:f5:4d:b0:37:
d4:b9:5f:81:99:d1:8f:aa:20:60:0d:74:7d:81:f3:a9:c7:47:
32:67:f3:b2:21:34:18:85:e7:8f:a3:21:5b:06:a5:3a:b5:24:
a2:5c:70:c6:f0:32:09:ef:75:f5:9f:e7:05:30:f9:ee:24:77:
2e:d5:18:a7:2b:22:6d:a9:19:60:e3:9a:23:f5:fb:5b:f1:8f:
28:74:79:03:cd:07:7c:db:37:51:1f:e8:6b:72:c3:8c:08:b2:
19:20:3d:1b:28:28:3e:9f:5e:e1:6f:aa:81:17:84:a1:59:f2:
07:7f:17:02:ed:ea:63:66:ee:79:7a:a4:4c:5d:9c:55:a1:b9:
6c:9a:77:36:79:e0:f4:a2:f5:b0:78:52:28:97:88:5c:a2:2b:
06:2e:62:06:8d:e7:0e:1a:4e:6b:2e:db:93:45:a2:61:49:d6:
57:43:3f:5c:8b:02:df:57:7a:84:d8:08:43:f0:43:8b:e5:eb:
1e:1a:c3:ee:fe:19:0f:d3:21:44:41:65:94:e0:d7:ec:66:a5:
d2:9a:71:82:92:c4:4f:8c:6b:00:4f:78:33:33:b8:d9:fe:c9:
3f:e2:a4:6a
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICChIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE
NTQ0QTYyQTYwHhcNMjQwNjIyMjExNDA0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02Njc3M2U5Yi1jYzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3YeHRtHvj7KEreMztHtMNUJ8hHQq9xaVRWOoun/F9l2KUVD6Y5gGXFHKfkCq
NjByIBJi3z5nEi7sJKP78lZsIhw4o76CFnyoH7UPn7obV6mPCgmiSwNfQDPHCxTN
JDQsf/8zy0juasrz0Rl0M8xu8PGKsc2hWCA4oc70Iksi/xqhVjgAB+uoe3AyKH7L
6KryM9U9QeoR4iIOWxmA5bRbZVB7iT4M4eaUGDZ7+2szVk+VrxYFnzBIi7UXtYjP
1LugS/6ceXtKechXQwPoUuqpXAe/R1VJlPjISEk64lFuKS6QyXluq02rHdgH7B2B
u2ab9C8TMrGzDFBklEW/Io2KTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFE063iO9
nxOXrEKgbDolDRRmsw5DMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1
MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ
cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MTY0N0MvNDM3Q0M0MDY4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvNjFFRkIyQUNB
QzM2MTFFREE1OTk1RjNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADKTTMwDQYJKoZIhvcNAQELBQADggEBAKTw73CjN4dXc9Tv
4r3F0T7wFNljYz9Jvhfg9V3RbB1i9U2wN9S5X4GZ0Y+qIGANdH2B86nHRzJn87Ih
NBiF54+jIVsGpTq1JKJccMbwMgnvdfWf5wUw+e4kdy7VGKcrIm2pGWDjmiP1+1vx
jyh0eQPNB3zbN1Ef6Gtyw4wIshkgPRsoKD6fXuFvqoEXhKFZ8gd/FwLt6mNm7nl6
pExdnFWhuWyadzZ54PSi9bB4UiiXiFyiKwYuYgaN5w4aTmsu25NFomFJ1ldDP1yL
At9XeoTYCEPwQ4vl6x4aw+7+GQ/TIURBZZTg1+xmpdKacYKSxE+MawBPeDMzuNn+
yT/ipGo=
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:19:26 2025 by rpki-client