Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/52B02EA61E0111E9A590C837C4F9AE02.roa
File: 52B02EA61E0111E9A590C837C4F9AE02.roa (raw, json)
Hash identifier: T4/MbUhGJf+iHJuQPsWtb3rLByOnc9ocTMH1jQZhK28=
Subject key identifier: 36:2C:9E:34:81:6B:0F:CE:EB:0F:01:1B:49:B2:09:C3:58:64:17:A7
Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Certificate serial: 38C3
Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/52B02EA61E0111E9A590C837C4F9AE02.roa
Signing time: Tue 16 Jul 2024 14:31:27 +0000
ROA not before: Tue 16 Jul 2024 14:31:27 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 55498
IP address blocks: 119.46.151.0/24 maxlen: 24
2001:fb0:1075::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14531 (0x38c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9137ABC
Validity
Not Before: Jul 16 14:31:27 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=6696843f-80c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:73:ba:a4:d8:ca:63:da:b8:d3:47:c8:49:06:
14:d6:26:fa:44:70:aa:48:c4:22:e0:67:39:48:37:
fb:91:0f:9a:de:e8:39:cb:74:74:a1:53:50:50:06:
74:33:a0:c6:36:ac:21:41:c9:31:94:4a:cb:76:6b:
f3:fb:8d:55:01:5d:05:0e:b6:03:fe:f8:92:d4:bf:
c9:4d:c5:1a:df:50:a9:68:1c:76:a1:2f:25:9f:75:
26:bc:58:df:c7:d9:4a:1f:ed:6b:36:f7:8d:85:13:
87:a2:69:8d:c6:aa:b7:b3:a3:eb:16:0d:63:99:85:
24:0f:cd:17:ef:55:d8:9b:b6:85:45:9c:5a:70:fb:
ae:90:46:fb:19:1e:cf:06:c9:5d:17:b6:82:8e:e2:
6e:b3:68:3e:45:00:7f:24:8d:67:fe:46:d9:cd:ee:
4b:05:13:49:f3:60:ce:01:55:a3:9a:94:0e:5e:48:
ff:66:11:48:cc:26:71:7d:28:99:7d:6d:a0:b0:9d:
f0:cf:fc:90:5c:e8:bc:16:57:7a:5e:cc:02:55:51:
5d:74:0b:ca:86:01:72:b3:c7:42:ae:1d:6c:b6:81:
b0:95:9c:d5:df:5e:83:21:0f:52:ac:1b:12:86:ab:
8b:2f:a8:e1:84:c3:9a:f8:d8:4c:78:d0:5d:bf:1e:
3b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:2C:9E:34:81:6B:0F:CE:EB:0F:01:1B:49:B2:09:C3:58:64:17:A7
X509v3 Authority Key Identifier:
keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/52B02EA61E0111E9A590C837C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
119.46.151.0/24
IPv6:
2001:fb0:1075::/48
Signature Algorithm: sha256WithRSAEncryption
0a:f7:1b:e8:b2:ba:6f:d0:a0:49:06:02:b7:9e:1e:05:4f:66:
f8:13:cd:4f:44:c9:bc:48:20:31:9d:f4:6e:7e:c1:27:35:c2:
47:18:f5:f4:63:6b:69:ee:b9:01:8a:e9:a2:a6:2f:c6:e7:98:
c2:c9:25:91:9f:da:04:f1:7b:85:87:db:a4:50:1e:fd:45:5d:
7d:89:3a:d5:a1:37:b9:e6:51:1c:28:b8:8a:8d:2c:74:f6:cf:
a5:4d:11:02:ec:12:ee:09:93:e5:47:4a:42:46:13:4b:69:a4:
b7:b7:f5:96:91:9f:83:fd:9d:0c:c8:1f:50:69:16:fe:60:1f:
08:26:9f:ff:2e:2b:c8:cd:55:e2:6f:36:64:7c:4b:85:39:f7:
6f:17:44:fb:f3:aa:17:67:b7:d2:25:f5:a8:2d:62:75:cc:ec:
37:34:b5:aa:25:d9:46:04:5c:1e:0b:7e:11:3b:d1:0f:28:73:
91:17:18:fd:87:a3:2b:c2:69:d6:ae:12:46:c5:d2:71:87:4e:
36:b9:ac:d8:d1:70:79:dd:7f:63:be:e4:e8:a0:f2:c7:13:63:
48:54:57:cf:ff:27:2c:38:9e:52:8a:af:7f:86:b4:e5:c8:43:
38:c1:fe:3f:95:8c:22:8c:b1:86:4c:67:94:95:d2:8f:af:c0:
e1:7d:db:d0
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICOMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB
NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTI3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02Njk2ODQzZi04MGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA93O6pNjKY9q400fISQYU1ib6RHCqSMQi4Gc5SDf7kQ+a3ug5y3R0oVNQUAZ0
M6DGNqwhQckxlErLdmvz+41VAV0FDrYD/viS1L/JTcUa31CpaBx2oS8ln3UmvFjf
x9lKH+1rNveNhROHommNxqq3s6PrFg1jmYUkD80X71XYm7aFRZxacPuukEb7GR7P
BsldF7aCjuJus2g+RQB/JI1n/kbZze5LBRNJ82DOAVWjmpQOXkj/ZhFIzCZxfSiZ
fW2gsJ3wz/yQXOi8Fld6XswCVVFddAvKhgFys8dCrh1stoGwlZzV316DIQ9SrBsS
hquLL6jhhMOa+NhMeNBdvx473QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDYsnjSB
aw/O6w8BG0myCcNYZBenMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE
NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4
Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNTJCMDJFQTYx
RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBAB3LpcwDwQCAAIwCQMHACABD7AQdTANBgkqhkiG9w0BAQsF
AAOCAQEACvcb6LK6b9CgSQYCt54eBU9m+BPNT0TJvEggMZ30bn7BJzXCRxj19GNr
ae65AYrpoqYvxueYwsklkZ/aBPF7hYfbpFAe/UVdfYk61aE3ueZRHCi4io0sdPbP
pU0RAuwS7gmT5UdKQkYTS2mkt7f1lpGfg/2dDMgfUGkW/mAfCCaf/y4ryM1V4m82
ZHxLhTn3bxdE+/OqF2e30iX1qC1idczsNzS1qiXZRgRcHgt+ETvRDyhzkRcY/Yej
K8Jp1q4SRsXScYdONrms2NFwed1/Y77k6KDyxxNjSFRXz/8nLDieUoqvf4a05chD
OMH+P5WMIoyxhkxnlJXSj6/A4X3b0A==
-----END CERTIFICATE-----
Generated at Mon Apr 7 11:16:47 2025 by rpki-client