Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123600/AC964F582B2C11EE8A53D314C4F9AE02/51BD88882B6011EEB0127E84C4F9AE02.roa
File: 51BD88882B6011EEB0127E84C4F9AE02.roa (raw, json)
Hash identifier: b/tyuT5HVmPK9JfwUWtYKqOXXB/oMLOeGmEa5cvBbbc=
Subject key identifier: AB:5E:E9:D7:E4:81:A6:93:94:D7:67:62:20:6F:C8:C8:DD:EC:E1:72
Certificate issuer: /CN=A9123600/serialNumber=07D85A83798BB176BC03153D510A6B96326CF564
Certificate serial: 0116
Authority key identifier: 07:D8:5A:83:79:8B:B1:76:BC:03:15:3D:51:0A:6B:96:32:6C:F5:64
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B9hag3mLsXa8AxU9UQprljJs9WQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9123600/AC964F582B2C11EE8A53D314C4F9AE02/51BD88882B6011EEB0127E84C4F9AE02.roa
Signing time: Fri 03 Jan 2025 03:26:32 +0000
ROA not before: Fri 03 Jan 2025 03:26:32 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 151607
IP address blocks: 202.14.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278 (0x116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9123600
Validity
Not Before: Jan 3 03:26:32 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=677758e8-be0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a2:0e:c8:31:a9:a0:49:af:54:d8:7a:72:e7:
16:94:40:86:d7:8f:af:89:b5:51:78:5f:73:37:38:
8e:af:01:78:cf:ad:6c:30:02:8b:4c:e3:36:68:e8:
6d:43:1b:61:a4:6a:60:39:9d:0e:c4:bd:93:c5:46:
cb:1d:1d:e5:e4:1a:26:44:7f:cf:53:41:d2:ec:8d:
02:53:27:1c:79:ae:c8:3e:24:d2:64:0a:82:f2:d2:
ee:2d:64:ce:67:44:5b:f3:78:b7:26:ae:3b:94:af:
8c:7e:c1:6f:a3:56:83:aa:af:10:c0:f3:cd:62:25:
e6:de:6d:67:0d:ec:72:36:fb:0a:d8:3c:d7:7f:ee:
a7:39:3a:2d:47:cc:6c:16:c8:1c:7c:1d:1c:4f:1f:
8d:b5:d0:72:57:56:fc:a7:80:6c:6f:82:fe:a4:ec:
58:c3:23:55:4e:ea:db:1e:24:28:e1:27:b7:e7:49:
7d:47:4f:e3:6c:5b:0e:75:81:ff:7b:0f:d1:9b:2c:
2f:3a:a9:bc:9a:0d:d2:90:69:2c:79:c6:60:96:59:
3b:6e:e1:a6:e2:a5:a9:7b:a4:22:01:52:57:97:cd:
1e:a7:ff:51:e3:c9:3b:3d:bf:b6:8c:42:1b:73:59:
10:bb:42:c3:dd:1c:0a:35:62:95:1f:63:9e:35:9d:
af:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5E:E9:D7:E4:81:A6:93:94:D7:67:62:20:6F:C8:C8:DD:EC:E1:72
X509v3 Authority Key Identifier:
keyid:07:D8:5A:83:79:8B:B1:76:BC:03:15:3D:51:0A:6B:96:32:6C:F5:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9123600/AC964F582B2C11EE8A53D314C4F9AE02/B9hag3mLsXa8AxU9UQprljJs9WQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B9hag3mLsXa8AxU9UQprljJs9WQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123600/AC964F582B2C11EE8A53D314C4F9AE02/51BD88882B6011EEB0127E84C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.14.168.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:b0:0c:cc:ba:17:67:f0:9a:4b:69:d2:07:69:6c:40:b6:f2:
69:0b:ad:41:f2:8a:dc:25:65:4f:fb:db:b8:73:63:6c:fb:23:
8b:3c:bd:5b:8c:3f:7d:ce:24:c4:06:c1:04:f3:7a:55:34:4d:
65:ba:a4:4c:65:4f:22:19:5c:67:77:39:ba:6c:70:b4:e4:b3:
61:26:7f:6c:37:04:07:3f:7a:4c:ab:ac:b0:db:72:f7:c4:56:
d5:bd:3d:68:79:a7:ea:e1:f1:e6:ce:09:d3:e1:59:10:3b:ba:
bb:a1:51:68:27:a5:5f:8d:61:dd:6c:42:c7:a1:85:33:62:ae:
6b:b0:e0:7c:5e:56:45:2c:c5:90:c7:8d:83:fe:3c:32:10:00:
bb:d3:79:b8:e0:16:bc:af:e4:e8:77:3e:ad:66:50:c6:44:70:
b0:ed:5d:db:01:9d:ed:6f:fc:0c:4e:33:11:f0:ae:a4:46:08:
55:6d:90:33:8a:28:e4:29:64:f6:95:2b:23:14:9d:5a:c7:2c:
81:ab:e2:91:a3:e5:7f:b7:7c:d5:64:4f:bf:9b:bd:11:d5:75:
51:69:86:29:97:1e:b0:b4:eb:e3:89:d6:16:ac:a4:18:9f:ea:
57:97:69:bd:48:bb:71:18:f3:61:6c:f3:a4:28:8d:17:b1:7d:
3c:7c:9b:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:19:02 2025 by rpki-client