Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0B5C0778D0C511EABB9E0868C4F9AE02.roa
File: 0B5C0778D0C511EABB9E0868C4F9AE02.roa (raw, json)
Hash identifier: p0dIujYYWiasSIWvw6oLscevhcZ90zAQp0NU1grDjpM=
Subject key identifier: A0:7E:2A:E3:6B:B2:1D:FD:0A:FC:1D:81:78:F3:9E:9C:90:35:FB:B4
Certificate issuer: /CN=A911E64C/serialNumber=93D16AC5C8B304760E77483F93EEAFABC3A30B12
Certificate serial: 080A
Authority key identifier: 93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0B5C0778D0C511EABB9E0868C4F9AE02.roa
Signing time: Tue 18 Feb 2025 22:09:57 +0000
ROA not before: Tue 18 Feb 2025 22:09:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56192
IP address blocks: 202.0.110.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2058 (0x80a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911E64C
Validity
Not Before: Feb 18 22:09:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=67b50534-7ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:46:11:86:3b:af:8e:47:a3:26:72:47:7f:34:
a1:63:39:6b:07:80:58:13:f9:97:91:69:a2:d6:95:
7c:76:8a:6b:42:b1:a4:f6:db:75:ce:82:9e:56:79:
1b:4e:40:88:fd:54:e3:d6:d4:dc:66:25:5b:00:bb:
ff:86:f8:ec:3a:d4:eb:6d:ce:73:3b:d8:a7:e4:64:
91:5b:2d:69:fb:34:7a:0e:1d:98:0c:c1:a5:f9:f5:
15:dc:7e:0d:e7:03:a5:f3:fe:cb:a9:60:0e:15:47:
d6:91:b7:e0:f4:23:96:1d:15:d4:22:5a:09:06:d5:
81:29:be:93:67:4e:8b:9d:57:72:a5:96:cd:31:03:
06:cd:70:ab:03:30:02:6f:00:96:2d:f1:00:1f:35:
db:c9:d8:d2:63:56:7f:ce:41:8a:73:58:05:95:6b:
f3:43:4d:87:9f:68:ce:1c:47:80:5a:48:dc:21:ee:
c7:0d:bd:fb:43:64:25:31:f8:e0:0d:a6:12:a5:f4:
c8:d4:4c:81:4f:b8:23:62:fc:0e:c9:97:e5:4a:c2:
b5:30:2f:69:c9:e6:fa:cb:16:5e:ec:2e:13:0b:63:
d0:8c:61:0f:8c:3a:f0:77:10:8d:10:0d:64:ef:2d:
e5:85:47:76:53:b2:83:33:31:17:d8:f5:30:99:da:
d4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:7E:2A:E3:6B:B2:1D:FD:0A:FC:1D:81:78:F3:9E:9C:90:35:FB:B4
X509v3 Authority Key Identifier:
keyid:93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0B5C0778D0C511EABB9E0868C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.0.110.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:a0:8d:4a:3e:10:7e:89:f6:d1:b9:61:f9:b0:13:48:0a:75:
20:30:1d:a3:c9:14:45:2e:03:2f:bb:37:df:f3:a8:d7:e2:b0:
7d:0a:f2:62:30:df:72:2f:c1:f5:e9:9d:fd:2c:2b:20:7b:9d:
37:bd:8b:ce:77:64:b0:82:20:27:32:cb:aa:0a:12:02:5e:29:
83:1f:32:1d:fd:38:64:b4:89:e2:bb:a0:a4:ef:e1:1a:e5:fd:
97:de:39:59:e8:cf:2b:fc:e1:7a:af:ce:f2:d1:64:fc:cc:cc:
4c:9c:54:1d:78:74:d9:de:3d:38:6a:15:e4:2a:cd:53:6c:f7:
fa:d2:03:9c:05:b6:fc:d7:b9:75:37:91:73:cb:b5:27:a7:a1:
f5:fd:c8:86:06:78:10:0c:c9:4a:97:3a:fc:01:f3:88:38:25:
90:70:b9:e3:05:e5:26:d1:b6:91:15:3f:0c:d0:1a:38:54:de:
89:3f:d4:7d:ea:e9:85:1b:68:1c:66:35:92:52:e6:f8:0f:f1:
8a:ae:e5:06:43:ae:3b:37:10:e7:f5:a0:db:3b:9b:18:57:42:
d9:2f:3c:2a:4b:42:86:7e:d7:57:c7:bc:56:6b:5a:5f:65:79:
05:aa:a3:0e:7f:5a:02:27:9f:e5:36:d3:74:8a:69:ca:0d:da:
e4:7f:28:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:30:22 2025 by rpki-client