Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/C41A81A6D94C11EFB488143AC4F9AE02.roa
File: C41A81A6D94C11EFB488143AC4F9AE02.roa (raw, json)
Hash identifier: pLvQEkXTeWraQ9GY9qDqk5Cco5KEXGnP8DBSY2kyxZI=
Subject key identifier: 4F:4E:03:93:31:A7:06:46:B0:74:C6:5D:A1:BC:1A:16:48:0D:34:FE
Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7
Certificate serial: 09D0
Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/C41A81A6D94C11EFB488143AC4F9AE02.roa
Signing time: Thu 23 Jan 2025 05:42:00 +0000
ROA not before: Thu 23 Jan 2025 05:42:00 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 9513
IP address blocks: 203.83.64.0/18 maxlen: 18
203.83.64.0/19 maxlen: 19
203.83.65.0/24 maxlen: 24
203.83.72.0/22 maxlen: 22
203.83.72.0/24 maxlen: 24
203.83.73.0/24 maxlen: 24
203.83.74.0/24 maxlen: 24
203.83.75.0/24 maxlen: 24
203.83.78.0/23 maxlen: 23
203.83.84.0/24 maxlen: 24
203.83.96.0/19 maxlen: 19
203.83.96.0/22 maxlen: 22
203.83.110.0/24 maxlen: 24
203.83.111.0/24 maxlen: 24
203.83.114.0/23 maxlen: 23
203.83.116.0/22 maxlen: 22
203.83.116.0/23 maxlen: 23
203.83.118.0/24 maxlen: 24
203.168.128.0/19 maxlen: 19
203.168.128.0/20 maxlen: 20
203.168.128.0/21 maxlen: 21
203.168.128.0/24 maxlen: 24
203.168.129.0/24 maxlen: 24
203.168.130.0/24 maxlen: 24
203.168.131.0/24 maxlen: 24
203.168.132.0/24 maxlen: 24
203.168.133.0/24 maxlen: 24
203.168.134.0/24 maxlen: 24
203.168.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2512 (0x9d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9134172
Validity
Not Before: Jan 23 05:42:00 2025 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=6791d6a8-6e57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:ae:83:4a:a6:8d:28:3c:3e:f2:bf:0c:7b:5a:
35:ba:c7:82:04:8f:12:b5:9e:7e:62:44:b2:11:ce:
34:e7:c5:23:35:94:20:8c:94:56:b6:0b:d8:e3:b3:
5b:24:04:17:f7:99:d3:b8:69:bc:72:7f:e1:f5:8e:
b4:30:4b:57:e9:ee:3b:93:a2:7c:6a:49:26:11:f3:
aa:03:cd:5f:d6:22:e0:de:eb:de:e3:97:2b:19:eb:
21:13:ee:5f:d7:89:07:33:a4:b4:a6:2c:5d:85:83:
dd:59:63:df:36:ee:07:b5:f9:39:85:b1:ee:5f:f3:
73:7d:00:31:32:b4:d1:ce:dc:69:be:99:f3:e0:a1:
37:84:b4:db:2b:8d:81:0a:4d:98:56:72:61:bc:ab:
55:02:15:90:2d:a7:97:31:f2:02:40:03:38:42:38:
1c:d1:05:26:46:b8:8a:15:82:11:9f:3d:97:69:9b:
4c:f3:a3:9f:d1:96:b4:3c:16:fd:da:42:94:91:49:
0a:89:9f:2d:e7:cb:a4:2f:07:a1:91:44:3d:ef:ad:
3b:23:e1:fe:0c:ff:f0:72:ae:94:05:28:74:8b:22:
29:e5:fd:ec:e9:71:a0:14:72:39:d1:58:f6:9e:28:
d4:81:c7:1e:da:f2:2e:b8:51:34:41:98:ae:f2:81:
98:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:4E:03:93:31:A7:06:46:B0:74:C6:5D:A1:BC:1A:16:48:0D:34:FE
X509v3 Authority Key Identifier:
keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/C41A81A6D94C11EFB488143AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.83.64.0/18
203.168.128.0/19
Signature Algorithm: sha256WithRSAEncryption
7f:5a:7b:e0:01:bf:8d:a7:2e:7f:12:59:be:55:1d:5d:92:bf:
9a:4d:d5:cc:36:72:28:ac:c9:e9:39:c7:66:14:0c:dd:5f:cd:
5e:b0:39:96:4f:a0:b4:84:79:b9:a5:37:a0:f9:51:c4:37:d7:
c9:ce:da:70:68:57:a5:14:12:c5:c8:68:a7:03:bf:4a:ce:b1:
d4:7f:d8:97:d7:14:79:dc:b7:99:4b:da:08:4b:ce:1a:be:6c:
a7:2f:ee:a4:10:f4:2a:a9:a5:35:49:4c:b6:0d:f8:c3:0f:75:
37:82:6b:b7:56:0c:9b:f2:35:49:d5:07:b7:98:80:df:df:ab:
58:6a:09:f1:10:93:c9:6e:81:34:6e:0a:77:fe:e7:4f:f6:3c:
57:6b:43:59:24:f2:79:63:8c:c5:0e:2f:1c:f1:ed:b9:8f:c2:
5f:1e:8f:6e:a3:1f:fd:db:f2:71:e4:5f:0e:03:9b:60:d1:20:
38:83:d4:43:8d:14:37:3d:51:01:e7:4a:b2:a6:90:2c:fe:c5:
41:94:c3:38:84:76:75:e6:2e:8a:0e:51:72:a6:f3:09:3c:ac:
ea:a3:1c:5b:5c:74:a0:c3:0b:a6:e6:50:7f:85:48:d7:a4:e6:
f5:0f:96:9c:ed:2a:ab:72:b5:da:59:04:02:b1:99:ca:d1:06:
01:a2:74:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:39:20 2025 by rpki-client