Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/19C59818FFD911EF998B5E3DC4F9AE02.roa
File: 19C59818FFD911EF998B5E3DC4F9AE02.roa (raw, json)
Hash identifier: b6EElxK46XK+P+krS4+kYExCj7YPLPhqmEi+uys0viM=
Subject key identifier: 1B:5A:7B:B7:03:40:B0:A1:50:F0:32:8B:88:1F:7F:65:4B:4B:17:1A
Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7
Certificate serial: 0A1E
Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/19C59818FFD911EF998B5E3DC4F9AE02.roa
Signing time: Wed 26 Mar 2025 20:30:39 +0000
ROA not before: Wed 26 Mar 2025 20:30:39 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 9513
IP address blocks: 203.83.64.0/18 maxlen: 18
203.83.64.0/19 maxlen: 19
203.83.65.0/24 maxlen: 24
203.83.72.0/22 maxlen: 22
203.83.72.0/24 maxlen: 24
203.83.73.0/24 maxlen: 24
203.83.74.0/24 maxlen: 24
203.83.75.0/24 maxlen: 24
203.83.78.0/23 maxlen: 23
203.83.84.0/24 maxlen: 24
203.83.96.0/19 maxlen: 19
203.83.96.0/22 maxlen: 22
203.83.110.0/24 maxlen: 24
203.83.111.0/24 maxlen: 24
203.83.114.0/23 maxlen: 23
203.83.116.0/22 maxlen: 22
203.83.116.0/23 maxlen: 23
203.83.118.0/24 maxlen: 24
203.168.128.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2590 (0xa1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9134172
Validity
Not Before: Mar 26 20:30:39 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67e463ef-ea2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4a:06:39:24:d4:73:6f:90:bc:cd:04:70:08:
72:d8:70:c5:6d:59:0d:85:11:76:3f:ed:41:8b:8c:
20:11:81:9b:e8:75:0b:7e:8e:69:a2:07:73:21:05:
76:5d:51:d8:23:88:21:d9:09:5c:54:df:b3:9e:d9:
cd:b6:7d:c0:e3:40:34:25:80:48:cf:76:13:cd:eb:
57:f7:2f:a4:68:d9:c9:46:4b:46:51:10:64:d7:63:
f3:f6:ba:2f:b6:d3:f6:3c:6d:75:0d:99:7a:b3:e9:
71:3f:7d:53:49:0c:9a:7a:96:97:3d:be:ce:65:23:
ab:4c:03:54:80:c7:ac:ea:2d:c9:fb:1a:29:b6:82:
0d:af:70:96:0c:8d:67:48:1d:00:f0:20:a4:d8:cf:
06:e9:dd:62:06:b6:2b:17:04:30:81:c7:a2:00:bb:
78:4f:47:d0:1a:c3:46:df:ed:a9:38:b9:db:8b:b4:
bf:b8:fa:19:43:5e:4f:ca:8e:40:0a:9d:16:c5:0f:
43:ea:f9:2f:cb:63:45:9f:41:51:58:a4:9c:bd:d7:
92:bc:27:04:d4:12:69:7b:4c:0a:8b:c2:60:ab:54:
4f:94:2f:48:82:4c:bd:2d:1d:36:22:b5:e9:d2:7c:
3a:89:01:5f:1d:7a:e2:77:38:f8:4d:68:a1:ef:a2:
a3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:5A:7B:B7:03:40:B0:A1:50:F0:32:8B:88:1F:7F:65:4B:4B:17:1A
X509v3 Authority Key Identifier:
keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/19C59818FFD911EF998B5E3DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.83.64.0/18
203.168.128.0/21
Signature Algorithm: sha256WithRSAEncryption
2c:ef:84:1b:5f:3b:a0:5d:9a:31:2b:e8:6e:53:a1:b6:01:e6:
d2:f1:b0:01:6d:0a:1e:d2:db:69:1c:df:ce:5f:a0:55:15:c0:
14:ff:e8:e4:b7:16:bb:c3:11:71:fe:ca:69:6b:eb:96:5d:9c:
ab:43:db:e0:82:94:8b:e9:c3:a2:bb:b5:da:a4:d2:34:a0:6c:
ec:3a:05:da:78:50:a7:28:75:22:8b:0c:84:51:8d:4d:83:07:
d9:17:2a:dc:01:9b:73:ea:6a:e6:f6:2b:65:33:5e:a9:2a:7e:
27:5a:71:dd:74:c5:3d:25:f3:37:36:b5:39:b5:fa:8a:ee:fc:
9f:de:57:3a:da:1d:8c:36:63:4e:b6:3a:05:b3:b6:e7:db:c6:
b3:aa:b3:14:9f:83:9f:5e:4a:14:ef:b6:a3:64:d3:f0:48:04:
7c:97:73:22:29:9d:20:b3:78:05:bb:22:de:42:06:41:7e:0c:
96:e0:57:14:e3:96:1f:be:cc:25:a0:2d:79:11:7c:25:57:0d:
26:f0:61:08:21:ca:0a:1a:bc:1b:ca:a9:de:8d:ea:9c:b2:cf:
38:7c:7f:04:6d:ac:41:d2:93:0c:7f:f0:2a:53:d9:cb:1c:96:
e2:96:d3:d0:3f:88:06:3d:e8:97:12:99:3e:e2:a7:ba:30:71:
6a:b2:85:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 01:15:38 2025 by rpki-client