Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/E229C20A381311EEB4C10216C4F9AE02.roa
File: E229C20A381311EEB4C10216C4F9AE02.roa (raw, json)
Hash identifier: 9jB+OYvABBKwzd++lKNlIRrAf8KkNDb1VdhMhyvn+4E=
Subject key identifier: 32:CB:4D:D3:E5:CB:D3:BB:F3:36:66:3C:97:03:6B:46:24:14:FE:88
Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Certificate serial: 3894
Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/E229C20A381311EEB4C10216C4F9AE02.roa
Signing time: Tue 16 Jul 2024 14:30:46 +0000
ROA not before: Tue 16 Jul 2024 14:30:46 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 151040
IP address blocks: 110.170.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14484 (0x3894)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9137ABC
Validity
Not Before: Jul 16 14:30:46 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66968416-b364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:99:3b:c3:a4:ab:95:0d:b9:d4:2a:54:5f:a3:
ba:e1:ad:ec:5d:61:62:5e:f2:c3:b0:17:b3:cd:b2:
cd:7d:2e:07:2c:bd:63:f9:26:9e:4b:33:63:50:4b:
37:c1:48:87:73:f6:3f:cd:cb:fe:03:36:9a:07:8e:
14:8f:28:89:e7:eb:b0:8f:ad:44:36:3c:50:7f:b8:
06:06:f9:cd:9b:3e:bc:be:2b:dc:1e:d2:81:80:4b:
04:b2:d0:d6:d7:81:6c:29:3c:66:92:94:9c:1b:f9:
56:65:2d:5a:4f:ad:91:74:c2:a3:20:fd:44:dd:8b:
25:9d:24:00:1f:e4:86:d8:c7:c5:77:c8:19:2d:9d:
65:c8:a8:73:8a:fb:15:15:cd:b8:0d:ac:2a:67:a7:
6b:9e:ad:8f:f4:86:b5:91:dc:2d:92:6d:96:d9:d8:
e9:4b:1b:1b:30:18:29:89:3e:4b:0f:52:37:5a:97:
40:d3:f0:13:9e:ff:48:50:a9:63:81:29:8f:a4:b3:
0b:7e:70:ef:0a:cd:17:f0:2a:9b:ad:ff:be:6e:80:
94:23:42:00:15:85:ec:de:d1:d2:97:0b:f2:11:3b:
e8:8e:a3:ac:fb:c9:69:9d:b7:08:ea:ec:bc:78:45:
f6:cf:84:07:e3:65:72:1c:46:0b:71:9f:c4:c4:1e:
1e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:CB:4D:D3:E5:CB:D3:BB:F3:36:66:3C:97:03:6B:46:24:14:FE:88
X509v3 Authority Key Identifier:
keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/E229C20A381311EEB4C10216C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
110.170.231.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:f5:ed:08:0a:c1:72:71:1f:f6:59:63:88:03:f3:e1:fa:39:
52:33:ba:55:3f:68:4e:e8:d6:c6:8e:f5:ef:2e:8e:b6:50:a0:
6e:99:36:66:7e:fe:0d:f2:0c:ce:6e:89:f9:82:81:7b:5c:c5:
5b:11:fe:a0:34:f6:65:31:1d:f8:b0:8b:89:d0:2a:54:8c:a0:
07:d8:69:db:4a:ff:a5:5b:ec:52:bb:34:08:8c:c9:fd:7f:54:
7c:fd:73:77:1b:83:09:46:85:7e:92:ef:dc:d4:3b:36:d0:40:
f2:b9:e5:eb:5a:f4:ed:85:ad:bd:ed:b8:5e:59:c0:6e:f1:3c:
19:e3:65:72:73:8b:c2:15:2e:45:65:86:a3:24:99:21:6f:e6:
7e:dc:be:80:34:ba:e5:9e:82:e5:92:fa:c7:b6:13:9c:87:39:
74:98:c7:b8:b2:6c:b1:5f:f3:04:93:6a:2c:45:b3:ab:a1:da:
fc:66:e7:8a:3a:c5:f8:26:a7:2b:ee:92:8a:94:3d:ed:d6:6d:
3b:26:25:68:52:ea:8a:12:f8:8c:12:91:36:25:6f:e0:10:1f:
50:3a:b0:ba:c0:e0:19:83:b7:5d:b4:43:b0:26:9e:77:10:28:
e7:1b:bd:50:39:86:0e:8a:de:89:7a:c7:4d:f6:c5:e0:13:40:
a7:81:1d:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:23:08 2025 by rpki-client