Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/15714ED2776A11ED98AF7341C4F9AE02.roa
File: 15714ED2776A11ED98AF7341C4F9AE02.roa (raw, json)
Hash identifier: WBxu67wj7qK+1XHnF6Gm/tpT83HjDxcRJ+5R7dbCf7I=
Subject key identifier: 71:15:54:12:86:D4:B0:69:EB:5B:50:7B:99:DA:08:C4:5E:0B:70:A2
Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020
Certificate serial: 01A4
Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/15714ED2776A11ED98AF7341C4F9AE02.roa
Signing time: Sun 09 Feb 2025 02:24:55 +0000
ROA not before: Sun 09 Feb 2025 02:24:55 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 9555
IP address blocks: 203.7.140.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 420 (0x1a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911F316
Validity
Not Before: Feb 9 02:24:55 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67a811f6-e412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:31:f3:2e:a4:65:fa:a2:4b:23:6f:dc:db:3d:
ad:9d:df:0e:85:04:cb:a7:ea:ec:57:68:b6:a0:a8:
24:99:dd:c8:38:34:0b:90:cb:2f:31:cc:da:11:ab:
e4:e6:70:d0:4c:d3:ad:1c:9e:3f:df:73:fa:d4:43:
0b:c0:c6:ee:4e:57:63:a9:65:ff:d7:21:01:e0:cd:
5a:6b:85:c7:de:1f:54:34:80:23:a6:17:d7:60:f7:
31:32:f9:9f:a6:9b:e5:db:21:38:f0:b8:ea:8a:86:
e1:1e:5e:20:5b:f9:ee:2a:1b:9b:ff:dd:a4:10:fa:
16:27:3a:67:74:fe:49:f1:e0:c4:aa:6e:11:34:88:
a2:78:87:00:56:48:78:d1:d4:c1:0b:17:bf:13:51:
6c:41:f9:d9:97:bb:43:61:ac:30:ab:d5:36:ee:98:
fb:0f:2a:1c:d5:45:49:01:90:55:29:a8:05:53:c3:
da:65:56:05:52:ca:75:0c:6e:5e:de:0c:a7:0b:03:
c6:a2:3e:f1:26:ae:31:c3:d7:08:b3:7c:a6:b0:4c:
05:8f:c7:dd:2e:f4:b1:b2:9b:4d:e8:90:7b:e6:96:
cf:fc:f4:42:a0:76:2b:5a:52:7d:21:ad:b0:1d:d8:
41:7d:ac:ca:e6:34:01:44:97:7d:0b:a7:4d:7a:ee:
e0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:15:54:12:86:D4:B0:69:EB:5B:50:7B:99:DA:08:C4:5E:0B:70:A2
X509v3 Authority Key Identifier:
keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/15714ED2776A11ED98AF7341C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.7.140.0/22
Signature Algorithm: sha256WithRSAEncryption
34:c4:fd:57:26:74:94:0d:4a:f4:9a:69:a9:e8:99:ee:84:0f:
26:a5:ca:ea:69:40:b6:39:18:e8:9b:db:87:7a:17:88:63:66:
51:e1:77:be:10:ed:bc:13:e1:df:47:68:93:71:0b:5b:d9:ab:
f8:69:b6:84:cb:c7:ec:73:ca:ba:1e:a2:7e:e7:1e:ea:68:a2:
44:79:80:1a:06:26:96:56:e0:b2:5f:57:38:46:c4:85:83:a5:
de:ca:d5:9b:bb:60:b3:aa:20:e4:11:f7:9d:49:3e:ac:84:c7:
e9:62:54:15:34:b6:0e:9b:90:a8:da:49:5c:b5:f3:29:b6:c5:
e7:fc:94:e8:ee:bc:bb:77:bf:14:e7:09:81:b8:45:1b:a7:62:
c7:c5:f2:84:48:d9:a4:ce:55:74:a6:ec:47:36:de:0c:34:e6:
47:01:c2:fa:e1:5e:4a:d3:5e:26:79:4c:0f:63:2b:3a:39:4e:
bc:a8:ae:e3:a9:20:73:88:09:8f:29:c7:d8:ff:7d:4f:a1:6c:
21:bb:8b:1b:ed:05:1a:b4:5e:5b:9b:0b:5a:43:ed:8a:f3:ed:
fb:2a:f2:b9:97:5f:5b:52:8d:d7:89:96:a5:d3:29:d3:c3:69:
22:63:59:43:37:ac:f7:7c:3b:5e:c0:7f:61:4f:53:d4:ea:23:
d1:7b:f2:4b
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB
RTM2RDkwMjAwHhcNMjUwMjA5MDIyNDU1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2E4MTFmNi1lNDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzzHzLqRl+qJLI2/c2z2tnd8OhQTLp+rsV2i2oKgkmd3IODQLkMsvMczaEavk
5nDQTNOtHJ4/33P61EMLwMbuTldjqWX/1yEB4M1aa4XH3h9UNIAjphfXYPcxMvmf
ppvl2yE48LjqiobhHl4gW/nuKhub/92kEPoWJzpndP5J8eDEqm4RNIiieIcAVkh4
0dTBCxe/E1FsQfnZl7tDYawwq9U27pj7Dyoc1UVJAZBVKagFU8PaZVYFUsp1DG5e
3gynCwPGoj7xJq4xw9cIs3ymsEwFj8fdLvSxsptN6JB75pbP/PRCoHYrWlJ9Ia2w
HdhBfazK5jQBRJd9C6dNeu7ggQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHEVVBKG
1LBp61tQe5naCMReC3CiMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3
NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr
Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MUYzMTYvQTFERjE1MjA3NzRDMTFFREI4MjZCQzBCQzRGOUFFMDIvMTU3MTRFRDI3
NzZBMTFFRDk4QUY3MzQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBALLB4wwDQYJKoZIhvcNAQELBQADggEBADTE/VcmdJQNSvSa
aanome6EDyalyuppQLY5GOib24d6F4hjZlHhd74Q7bwT4d9HaJNxC1vZq/hptoTL
x+xzyroeon7nHupookR5gBoGJpZW4LJfVzhGxIWDpd7K1Zu7YLOqIOQR951JPqyE
x+liVBU0tg6bkKjaSVy18ym2xef8lOjuvLt3vxTnCYG4RRunYsfF8oRI2aTOVXSm
7Ec23gw05kcBwvrhXkrTXiZ5TA9jKzo5TryoruOpIHOICY8px9j/fU+hbCG7ixvt
BRq0XlubC1pD7Yrz7fsq8rmXX1tSjdeJlqXTKdPDaSJjWUM3rPd8O17Af2FPU9Tq
I9F78ks=
-----END CERTIFICATE-----
Generated at Sat Apr 5 10:32:05 2025 by rpki-client