Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/BB4F8D0CE04611EC8B00CD1BC4F9AE02.roa
File: BB4F8D0CE04611EC8B00CD1BC4F9AE02.roa (raw, json)
Hash identifier: ZWriitWAJ0evBmMuwnHsBtv3b6vEMgANnb6g2EABJ3g=
Subject key identifier: 23:97:9C:91:B3:6F:3E:CC:F3:22:1E:DE:5F:EE:AC:9D:51:2A:C8:C1
Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19
Certificate serial: 04F5
Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/BB4F8D0CE04611EC8B00CD1BC4F9AE02.roa
Signing time: Wed 31 Jul 2024 02:33:18 +0000
ROA not before: Wed 31 Jul 2024 02:33:18 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 134682
IP address blocks: 203.146.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1269 (0x4f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91262CA
Validity
Not Before: Jul 31 02:33:18 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66a9a26e-b8de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b7:9b:02:69:85:16:3e:f6:89:68:05:24:f3:
25:3c:ba:2e:9d:08:62:e3:58:0b:66:b5:ed:8b:fd:
86:37:71:59:ca:6e:1b:65:f2:06:17:ac:6b:cc:01:
f3:92:83:8a:db:22:f8:20:70:db:bc:4c:7c:8a:05:
dd:d3:3e:a4:82:78:40:b4:10:b3:7f:31:78:eb:38:
48:96:97:d2:1c:44:b0:86:51:e4:6c:dc:93:b6:c9:
66:e8:46:8b:cc:27:a4:b3:6e:99:a5:56:30:eb:04:
1b:d8:a7:96:47:f5:e8:0b:ed:be:72:f0:56:e2:b4:
14:43:91:16:c2:15:60:8a:15:a9:57:3f:1d:db:cc:
ff:d8:73:49:0f:a3:7c:b6:5b:b7:3a:72:07:7f:9c:
bb:fd:40:fd:bf:d2:c2:00:39:95:f8:ac:03:72:90:
a7:df:b6:5e:98:24:27:5e:c9:a6:e9:b3:73:da:7f:
05:2d:d9:2d:d7:e6:96:d9:48:c8:b4:9e:d8:d7:99:
d7:83:46:9e:0c:c3:b9:40:64:2f:e8:e1:3b:d5:b8:
ee:1b:b3:10:3d:54:ef:d1:3d:45:14:f2:b0:70:cd:
14:f7:14:9d:da:0b:0c:c4:ad:ad:b6:5f:00:bb:47:
77:6d:c2:69:92:34:58:30:40:64:23:45:90:83:eb:
8d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:97:9C:91:B3:6F:3E:CC:F3:22:1E:DE:5F:EE:AC:9D:51:2A:C8:C1
X509v3 Authority Key Identifier:
keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/BB4F8D0CE04611EC8B00CD1BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.146.104.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:0a:e7:b1:aa:42:42:cb:dd:83:72:d5:ae:40:2f:cc:ec:aa:
e9:6a:d4:2a:a7:2e:45:03:99:9c:48:34:6c:a4:0a:4b:6f:c1:
44:64:1b:26:bd:84:51:0a:be:3b:ad:dc:df:a8:f9:7b:83:0f:
37:c5:61:a0:ba:2e:ce:25:da:b8:05:68:a0:b2:25:5a:b6:06:
08:65:5f:96:fc:74:99:26:cf:1b:c9:db:18:63:8f:88:8d:f1:
48:85:fb:c1:43:98:87:5a:7b:ea:2f:77:5d:25:ca:1e:54:a6:
af:f5:3e:5e:47:34:11:b3:15:eb:a9:a9:fd:65:b8:de:4d:54:
bf:a7:5f:59:b0:62:c4:96:cc:cf:74:3c:00:52:9c:67:02:a4:
07:f2:f7:5c:38:f4:d7:4a:c1:6d:b4:16:27:63:f9:fc:25:8b:
02:87:ed:12:6c:9a:ff:9f:f4:e7:fa:02:d0:0d:e9:dc:26:79:
dc:ed:10:d3:d5:f1:f2:2f:72:e9:92:59:d4:8e:60:e1:bd:5a:
e3:90:3e:66:c4:3c:76:50:02:fa:1e:bd:a4:de:4b:68:58:9a:
b6:58:aa:c6:2b:45:64:cc:2d:09:cc:52:06:b9:c3:d7:60:a9:
4c:44:83:b0:8b:e9:5b:ed:2b:49:d4:b6:22:1d:6b:e6:6c:4d:
ae:5a:6f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:30:46 2025 by rpki-client