Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9133A27/E26646E4F70311EEA31F5D7AC4F9AE02/90195128FAC411EEB1CDF882C4F9AE02.roa
File: 90195128FAC411EEB1CDF882C4F9AE02.roa (raw, json)
Hash identifier: zKqmtZ3hPlN9AWLx9aGbTTOZenzY439Vd/KzhKuSP5I=
Subject key identifier: 04:F5:CC:38:0E:49:7D:96:89:86:38:06:99:87:C7:94:B1:89:8B:D0
Certificate issuer: /CN=A9133A27/serialNumber=DCAD644705CF18C27D7FC2017385D23EE7203955
Certificate serial: 7D
Authority key identifier: DC:AD:64:47:05:CF:18:C2:7D:7F:C2:01:73:85:D2:3E:E7:20:39:55
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K1kRwXPGMJ9f8IBc4XSPucgOVU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9133A27/E26646E4F70311EEA31F5D7AC4F9AE02/90195128FAC411EEB1CDF882C4F9AE02.roa
Signing time: Thu 05 Dec 2024 05:18:59 +0000
ROA not before: Thu 05 Dec 2024 05:18:59 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 137199
IP address blocks: 203.32.66.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125 (0x7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9133A27
Validity
Not Before: Dec 5 05:18:59 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=675137c3-bd22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:28:cb:fc:13:97:a1:97:fd:98:15:68:20:76:
32:b8:b3:6a:a0:8a:62:e0:f2:5e:ea:56:05:08:89:
77:8d:c4:e4:d8:a7:43:47:d8:f8:28:29:ad:1c:36:
8b:01:ef:e2:64:86:97:be:f0:f4:77:dc:37:37:45:
f4:50:ef:85:1e:08:6a:53:c5:44:7d:17:4c:19:b4:
40:01:6e:c6:cf:09:9a:07:c2:29:50:59:24:45:a7:
b6:2d:cf:c7:74:24:33:21:45:82:f3:c2:90:5e:10:
7a:a2:00:44:ba:fb:82:eb:ad:0e:8f:a5:f4:a0:f0:
43:63:11:ae:f3:8b:f0:b1:f6:5c:f9:ce:11:67:fd:
aa:14:c0:62:78:c3:e8:1a:55:4f:19:1d:c0:b5:dc:
f2:b5:95:c2:16:f6:fa:b1:22:03:27:08:af:1a:86:
08:cd:76:8c:e6:0d:a2:42:bf:78:59:6d:fd:03:df:
1c:cf:4a:80:c9:66:8d:1f:a6:b8:ad:bf:5a:3d:c3:
d0:de:69:99:1c:51:0a:66:cc:89:c1:25:91:07:05:
ac:68:fe:00:c0:1c:d8:08:d2:7e:56:c0:81:a9:5b:
0a:31:82:f9:20:ad:a9:f4:72:13:2f:48:c3:2f:be:
60:78:06:7f:44:6c:24:48:8c:2e:6f:a8:76:4e:ff:
cd:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:F5:CC:38:0E:49:7D:96:89:86:38:06:99:87:C7:94:B1:89:8B:D0
X509v3 Authority Key Identifier:
keyid:DC:AD:64:47:05:CF:18:C2:7D:7F:C2:01:73:85:D2:3E:E7:20:39:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9133A27/E26646E4F70311EEA31F5D7AC4F9AE02/3K1kRwXPGMJ9f8IBc4XSPucgOVU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K1kRwXPGMJ9f8IBc4XSPucgOVU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133A27/E26646E4F70311EEA31F5D7AC4F9AE02/90195128FAC411EEB1CDF882C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.32.66.0/24
Signature Algorithm: sha256WithRSAEncryption
50:f9:3d:3b:ea:08:53:21:ae:ff:a7:ff:aa:2a:e5:6e:fb:17:
b4:22:af:31:fa:46:a1:9b:1a:d6:ca:36:e0:36:a0:10:70:b1:
f5:e6:33:1c:62:52:e3:13:99:d1:7c:3e:b6:ac:51:3f:b6:1a:
b4:d7:45:16:c6:69:eb:36:82:f3:6a:1d:62:b1:a7:7c:00:49:
85:1f:c7:74:e9:8b:3c:fa:71:b9:dd:3d:28:9a:c6:dd:c0:20:
7c:ba:ee:3d:46:1c:ff:4b:e8:57:8a:d4:24:21:6d:a4:70:88:
b7:a8:a2:5e:68:60:20:d4:26:85:67:6f:0d:c0:ec:4b:5e:77:
70:1b:dd:f6:62:0e:8b:15:08:12:d9:fa:f8:e4:ca:2e:b1:e8:
1a:ed:f1:5a:90:74:ec:ed:49:59:7d:97:89:42:e0:7b:80:b1:
20:d0:84:86:a1:a5:4b:c0:8b:41:d9:c1:bb:df:59:c1:be:2f:
ba:78:f9:ee:f6:83:9e:1c:a9:72:23:27:3a:c7:80:04:d1:a8:
78:07:86:ec:9b:3a:00:de:1c:7f:cf:b5:49:83:f0:7a:dc:a8:
fb:35:26:d2:e4:69:f8:af:a4:af:4d:c9:e8:cf:9d:79:91:47:
c3:55:22:cd:1e:0d:b0:f0:ef:76:8f:47:ae:f4:cd:03:19:76:
75:cc:31:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:18:21 2025 by rpki-client