Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/E0CD5510BE6111ED88CAF164C4F9AE02.roa
File: E0CD5510BE6111ED88CAF164C4F9AE02.roa (raw, json)
Hash identifier: DZxtCrPx9nVC06xsT0giYHAu0uYg4D08gJHGXJpz69w=
Subject key identifier: CA:4D:11:EF:A9:16:8E:3A:5F:37:F9:65:6A:70:C6:42:37:B0:4F:5C
Certificate issuer: /CN=A911BD54/serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA
Certificate serial: 24FB
Authority key identifier: 2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/E0CD5510BE6111ED88CAF164C4F9AE02.roa
Signing time: Tue 31 Dec 2024 15:53:37 +0000
ROA not before: Tue 31 Dec 2024 15:53:37 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 147187
IP address blocks: 147.50.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9467 (0x24fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911BD54
Validity
Not Before: Dec 31 15:53:37 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67741381-e9c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:34:e2:54:ed:73:b4:6a:08:27:19:0a:9a:8f:
39:69:86:ef:ec:85:0c:70:bd:3f:b3:99:ad:21:0e:
f6:9e:e3:6c:24:dd:57:40:8e:f4:0b:24:e5:b5:3f:
aa:1d:4b:3c:d7:e0:29:eb:6c:ed:9a:d5:c8:47:2d:
a5:51:89:75:61:9c:68:e6:24:9c:68:9c:b1:fc:96:
28:21:15:00:f3:48:38:da:25:b3:37:a1:69:fd:3b:
27:a2:89:1a:63:f2:34:f0:ab:dd:bb:6b:f0:10:40:
eb:38:82:bd:23:af:1c:78:62:92:df:62:1c:fe:af:
f3:e5:cc:1f:0e:62:72:1e:73:c6:32:27:98:e6:a2:
28:48:01:a0:97:c2:ff:41:23:2d:7e:80:cf:5b:98:
71:cd:3c:d2:d7:03:3f:63:14:8f:b4:d2:0b:f1:3c:
53:ed:9b:b7:7a:58:ca:5b:cb:37:34:e9:e5:d5:9c:
9d:97:52:7b:b3:43:94:88:f4:8f:78:b0:33:58:6c:
6b:89:a6:bd:86:cd:eb:74:25:d9:32:0b:35:4e:2d:
5a:db:70:2f:b3:4b:40:a8:6b:3f:7a:33:a8:2f:57:
f4:b5:b5:d7:7c:64:ed:00:03:af:ed:e5:ca:cf:d0:
a7:a3:0d:98:cd:60:a8:0f:41:8a:c2:cb:8c:57:c7:
42:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:4D:11:EF:A9:16:8E:3A:5F:37:F9:65:6A:70:C6:42:37:B0:4F:5C
X509v3 Authority Key Identifier:
keyid:2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/E0CD5510BE6111ED88CAF164C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
147.50.204.0/24
Signature Algorithm: sha256WithRSAEncryption
07:03:64:07:e3:f6:1d:12:38:c5:7b:5b:0a:13:19:41:8e:cf:
05:9b:d3:58:b7:69:d1:ed:1f:56:93:d7:91:4c:15:5e:a2:09:
0f:ca:a6:fe:55:e3:8f:a2:cb:12:e3:2f:48:3c:3b:8e:61:08:
2b:c2:a4:5c:e7:e9:e5:bd:99:9b:b4:dc:d3:66:2b:b2:34:0a:
8d:fd:0f:cd:21:19:d4:57:fe:e0:66:c9:ea:83:57:e2:76:cb:
df:6f:ef:32:cf:4c:4b:c5:01:7c:45:db:de:d0:61:b5:62:e7:
76:91:5d:76:cb:8d:c7:47:e0:6e:e4:7d:ac:a3:cd:c1:ca:7c:
b7:6e:4f:44:f3:ed:e6:58:f2:90:53:77:c1:1d:b1:ee:ff:db:
c2:0a:b3:3a:0c:b4:33:5c:8b:52:4d:5c:22:eb:f6:d5:d1:fc:
d3:bf:95:5d:fe:22:fc:7f:52:ff:b3:eb:de:cf:9d:c3:cb:27:
b2:79:4b:a5:5f:ea:8b:e8:73:1a:dd:03:d4:28:0f:cf:4f:e2:
7e:13:4b:92:2b:40:63:30:eb:4a:71:ac:75:fd:83:56:12:39:
52:6f:63:66:2e:67:81:81:95:76:cf:a4:03:ac:73:b9:e8:78:
4b:64:f7:50:47:9d:22:c1:49:91:8b:ad:84:43:36:9e:80:4f:
0c:1b:62:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:08:53 2025 by rpki-client