Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/91AB3450299911EDA389EC34C4F9AE02.roa
File: 91AB3450299911EDA389EC34C4F9AE02.roa (raw, json)
Hash identifier: dzTViCZ69Dd+v01VTdq8e2RvEYU1N06uBHk7UaC//2M=
Subject key identifier: 99:DC:C8:A0:CD:28:32:7D:73:B8:8D:23:85:64:0D:D9:4A:2C:44:28
Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7
Certificate serial: 0A19
Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/91AB3450299911EDA389EC34C4F9AE02.roa
Signing time: Wed 26 Mar 2025 20:30:34 +0000
ROA not before: Wed 26 Mar 2025 20:30:34 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 136547
IP address blocks: 203.168.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2585 (0xa19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9134172
Validity
Not Before: Mar 26 20:30:34 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67e463ea-8d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7e:7a:60:9c:50:fb:96:8d:bd:70:a2:89:a2:
77:ef:0e:3e:07:55:60:65:85:86:cc:db:c4:b0:22:
f9:37:47:9c:20:cb:92:14:94:1e:38:a5:70:19:49:
24:ce:fe:b3:03:26:a0:6b:ad:72:a1:c9:9f:6a:74:
23:a3:3d:95:2c:12:54:c1:67:22:0d:50:a5:e8:bb:
06:99:7f:28:a4:7a:c5:38:94:89:7d:a8:67:b6:8e:
0f:74:5a:82:40:d3:18:46:27:96:ba:18:37:35:7b:
e7:45:08:8d:14:d7:c2:81:6d:1f:ba:46:d8:12:02:
3a:e5:3d:2b:bd:29:2e:78:1b:25:86:4b:3c:43:b7:
4c:ea:02:12:b3:31:30:96:b7:1c:40:15:fb:83:ed:
58:4f:a6:3c:2c:b4:c2:81:ce:39:72:3a:29:a0:95:
85:36:91:25:e6:91:bf:64:fd:18:33:0d:52:83:1c:
42:94:19:d9:54:6d:30:8d:14:51:1b:13:cd:e7:8c:
9c:00:52:11:9b:42:5f:73:a7:de:d2:97:75:e8:a0:
16:e5:8c:25:8e:08:3c:a7:fe:4e:f5:22:9b:fa:0e:
95:ce:8b:66:38:22:fa:5e:c2:cd:b2:25:d5:7d:13:
4d:56:a0:bd:60:6e:d6:77:2e:bf:ab:48:cd:72:64:
13:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:DC:C8:A0:CD:28:32:7D:73:B8:8D:23:85:64:0D:D9:4A:2C:44:28
X509v3 Authority Key Identifier:
keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/91AB3450299911EDA389EC34C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.168.228.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:c6:c5:d1:2c:c4:96:7f:2c:61:f5:6b:30:4e:6a:49:bc:f3:
13:53:c4:16:4e:06:7e:09:88:ad:13:7e:76:12:27:10:30:a6:
17:a5:57:dc:85:5b:26:f5:20:c8:28:44:df:3e:5a:2d:f9:2b:
db:0a:0f:e2:39:05:4a:a0:4c:f7:c4:de:4c:b7:ae:ac:8a:46:
e6:f8:7e:28:cf:82:7f:4e:7c:f7:27:5d:36:bd:c4:0f:5d:36:
48:f9:5f:d7:fe:30:5f:d0:e0:07:18:49:a4:89:9b:c4:b6:73:
ce:76:df:c3:7b:ed:ad:9a:a1:0d:4c:53:f7:a2:cd:35:fd:36:
de:75:d6:49:f9:7c:81:54:d2:2c:76:87:87:b3:d4:5d:69:74:
3c:3e:34:e0:70:1f:87:ad:54:5b:62:cd:84:b6:a9:65:0e:33:
89:37:f1:41:d5:fc:8f:b8:bc:e7:34:cd:74:43:3f:4e:e0:fa:
a4:1f:70:49:8e:5a:35:d7:d3:9a:33:dd:ea:d6:18:f7:46:6d:
03:24:cd:85:e7:bc:bc:c8:77:ab:1b:a3:83:e2:cb:d8:96:0a:
d0:29:1b:69:7c:70:e7:2e:8e:36:90:5d:f3:e0:02:70:1d:66:
2d:12:23:96:38:41:05:a7:cb:03:f2:69:b7:88:57:f5:65:4c:
4c:f1:0c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:39:25 2025 by rpki-client