Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913731F/81711ED89D6F11EEBBBC9180C4F9AE02/1701D3A0F36B11EF87FE3725C4F9AE02.roa
File: 1701D3A0F36B11EF87FE3725C4F9AE02.roa (raw, json)
Hash identifier: QbLxvxoGtnLixtzVPkrtacYsAqvISwhCUE00pyCyTag=
Subject key identifier: 58:4C:C4:57:88:95:A5:DD:9D:66:13:75:5E:A0:8E:9A:0B:53:86:77
Certificate issuer: /CN=A913731F/serialNumber=5B75090E9EA04298B47BAF82FAA2280E5E36A4BF
Certificate serial: ED
Authority key identifier: 5B:75:09:0E:9E:A0:42:98:B4:7B:AF:82:FA:A2:28:0E:5E:36:A4:BF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W3UJDp6gQpi0e6-C-qIoDl42pL8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913731F/81711ED89D6F11EEBBBC9180C4F9AE02/1701D3A0F36B11EF87FE3725C4F9AE02.roa
Signing time: Tue 25 Feb 2025 11:32:10 +0000
ROA not before: Tue 25 Feb 2025 11:32:10 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 137453
IP address blocks: 36.50.146.0/24 maxlen: 24
36.50.179.0/24 maxlen: 24
2401:5ba0:a::/48 maxlen: 48
2401:5ba0:b::/48 maxlen: 48
2401:5ba0:c::/48 maxlen: 48
2401:5ba0:d::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 237 (0xed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913731F
Validity
Not Before: Feb 25 11:32:10 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67bdaa39-f823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:83:e1:64:7a:4f:16:88:1a:b9:ff:9b:e6:cc:
e8:fb:2f:3c:bc:ff:d1:e9:13:4e:a9:c5:50:ea:8f:
7f:9e:a1:29:42:9e:28:af:92:73:4b:44:7b:cc:f1:
d9:26:61:9c:c0:78:2d:7a:b3:0b:c7:a2:f7:1f:fa:
fc:1e:7b:12:7d:c0:29:04:cb:62:53:9d:e8:41:d1:
a3:6a:18:9d:42:af:c6:1a:14:b6:55:65:e0:2d:95:
8e:24:9c:e8:7f:0a:83:d5:e0:b9:18:90:09:7d:e2:
e1:69:f3:64:4b:e7:fd:c4:f4:b8:ab:6e:7a:20:22:
6f:e0:11:f6:e0:43:a8:e7:49:85:fa:30:f9:6b:b4:
b0:18:9e:f2:4d:99:77:8c:7a:b7:32:52:fb:9f:7c:
5d:8f:79:d9:70:06:5a:17:5b:05:ae:74:9e:bd:91:
e1:e8:4f:97:31:ce:e6:4c:eb:85:80:aa:71:59:29:
39:96:98:64:3b:5e:ff:09:be:84:12:78:bc:f2:a2:
f9:59:67:2a:60:75:74:f9:cc:52:c4:65:f3:e4:f6:
c8:9d:4d:d1:7f:c2:34:e7:82:47:35:18:76:58:bb:
43:a5:0c:e3:46:f2:dc:f5:ed:97:f6:50:20:6f:94:
c3:8d:ed:3f:d2:cf:b9:1f:a9:61:ed:50:6b:4e:34:
0a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4C:C4:57:88:95:A5:DD:9D:66:13:75:5E:A0:8E:9A:0B:53:86:77
X509v3 Authority Key Identifier:
keyid:5B:75:09:0E:9E:A0:42:98:B4:7B:AF:82:FA:A2:28:0E:5E:36:A4:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913731F/81711ED89D6F11EEBBBC9180C4F9AE02/W3UJDp6gQpi0e6-C-qIoDl42pL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W3UJDp6gQpi0e6-C-qIoDl42pL8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913731F/81711ED89D6F11EEBBBC9180C4F9AE02/1701D3A0F36B11EF87FE3725C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.146.0/24
36.50.179.0/24
IPv6:
2401:5ba0:a::-2401:5ba0:d:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a6:1d:5f:e4:20:85:a9:9c:04:fc:14:2f:7b:8f:99:45:ee:7a:
db:e1:84:35:01:f7:23:0c:1f:23:44:08:13:a7:0c:be:75:2f:
c7:9e:90:72:bd:b9:96:67:7d:22:7d:f0:20:44:3a:6c:e6:22:
ed:aa:53:f4:44:6f:29:a9:58:20:c4:a8:4d:52:d8:32:31:81:
5a:29:45:ea:d1:2a:2f:62:8c:0e:83:26:0f:c9:ed:79:20:22:
7e:89:09:5e:7e:c7:3d:aa:4c:e2:fa:96:dc:80:04:ad:c0:cb:
8f:44:14:39:97:0c:c5:52:dd:5c:f4:76:26:a1:b6:c6:60:8d:
75:f3:a9:d2:f0:b5:7f:48:bb:31:75:0e:b9:84:ee:1b:a7:17:
f8:cd:3a:11:be:02:0a:51:1b:3a:c3:1d:17:12:48:3e:e4:b2:
da:1b:28:f5:65:76:92:36:d7:11:ee:77:c1:85:5f:ad:c1:72:
b7:67:e5:44:90:5a:15:43:51:7f:87:05:2a:e1:67:34:0a:6e:
c7:2f:71:9f:70:e4:7c:c9:7d:01:83:24:95:99:c8:4b:2e:d5:
35:66:75:80:6b:e1:ef:62:1d:a6:ed:df:e0:12:a6:78:d4:21:
36:bd:2e:5d:ab:43:c2:7e:ec:4c:62:34:65:ab:67:6c:2b:e2:
4c:dc:9c:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:55:04 2025 by rpki-client