Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/5ED417AE869011EEA9011A36C4F9AE02.roa
File: 5ED417AE869011EEA9011A36C4F9AE02.roa (raw, json)
Hash identifier: secqQJuczQrOBoLhJh1bWX70I59NSlP/4Mk301elvvU=
Subject key identifier: EC:26:73:B2:AB:5C:57:71:4E:ED:33:62:3F:EB:80:80:08:1C:22:76
Certificate issuer: /CN=A911BCDD/serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A
Certificate serial: D6
Authority key identifier: 9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/5ED417AE869011EEA9011A36C4F9AE02.roa
Signing time: Tue 31 Dec 2024 04:18:11 +0000
ROA not before: Tue 31 Dec 2024 04:18:11 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 152115
IP address blocks: 203.145.38.0/24 maxlen: 24
2001:df3:26c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 214 (0xd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911BCDD
Validity
Not Before: Dec 31 04:18:11 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67737082-5498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:98:71:b3:f4:c3:37:ae:f2:aa:e2:57:5a:cf:
20:d1:8f:92:2e:58:d3:26:93:bf:ff:44:f4:61:05:
ed:79:5f:6a:34:db:19:6d:96:d0:62:87:18:a1:c7:
2a:d1:81:9d:cd:d0:68:04:14:97:ec:f8:1c:0b:35:
24:cd:1d:3b:eb:f7:e1:21:7c:6c:93:9a:c4:30:e9:
2a:85:4c:d0:ea:ef:12:6a:2f:e1:e2:41:7a:e7:9b:
db:69:e8:66:ec:e2:8a:60:71:60:4d:25:4f:c2:df:
a5:63:e9:5f:1d:4c:0a:cc:82:1a:35:d9:85:de:df:
23:fb:65:ab:25:f9:f4:8c:74:21:c7:cd:cf:ce:9d:
7c:68:c8:d9:c7:55:33:98:ea:e1:aa:e9:99:f1:d9:
5c:a2:97:64:12:87:b4:f4:d9:b2:33:a7:93:02:82:
99:6b:6a:4d:22:7c:86:1e:53:ef:54:e0:a6:70:60:
09:04:87:a2:02:6c:22:2c:2a:c1:43:12:1b:59:39:
75:86:a9:8c:1b:0e:f1:e8:25:26:c5:de:3f:9a:45:
86:08:9a:ce:89:17:cb:4b:a5:db:30:34:d5:b4:a6:
bb:fc:22:25:a9:de:f3:51:3d:4b:29:7a:aa:75:0d:
6e:d1:18:04:38:7e:12:ba:37:39:29:d5:e5:7f:60:
a8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:26:73:B2:AB:5C:57:71:4E:ED:33:62:3F:EB:80:80:08:1C:22:76
X509v3 Authority Key Identifier:
keyid:9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/5ED417AE869011EEA9011A36C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.145.38.0/24
IPv6:
2001:df3:26c0::/48
Signature Algorithm: sha256WithRSAEncryption
3d:ff:8f:b9:8e:c1:c3:f9:b5:4d:47:b0:fa:e7:d4:60:a2:42:
db:c2:6d:22:88:a1:be:4a:7d:e3:6b:f9:58:ad:3d:ff:33:07:
56:b0:8a:62:6c:0b:e4:d7:06:23:98:a8:79:0b:48:bb:88:c0:
c3:26:9f:64:96:2f:56:5f:10:68:bf:20:9f:f7:6d:10:88:42:
84:6a:18:da:85:77:f7:60:9d:13:5d:f0:69:b6:28:29:db:49:
2d:23:ab:77:f2:c0:33:5f:04:58:10:99:fb:fa:0b:9c:48:6b:
07:53:09:0a:93:49:87:c5:2a:78:4f:5a:b3:3e:2d:b6:1b:60:
d8:1e:b3:57:12:a4:0e:b5:cb:87:85:c3:bc:2f:f4:72:ed:8d:
43:55:1c:ff:fb:62:b1:50:f3:fb:c3:86:21:01:3c:68:3a:b5:
d9:66:25:5a:c7:6c:bf:d5:ad:28:f9:c1:88:b6:2b:4b:83:c4:
a1:02:c5:b8:b0:95:09:b6:fa:d7:e1:00:b5:f0:aa:6b:dc:fc:
85:4e:79:a5:d6:1b:c9:ed:05:66:8f:ea:92:b0:41:66:30:05:
c9:f6:3a:f1:47:68:d0:5f:a2:d1:8d:ec:14:69:94:6b:a0:5c:
e6:9d:e8:8a:20:a7:f7:cb:f7:30:20:61:b7:b0:8e:23:fa:3c:
8a:dd:87:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:10:07 2025 by rpki-client