Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/1DD8238C836E11EEBBF2912FC4F9AE02.roa
File: 1DD8238C836E11EEBBF2912FC4F9AE02.roa (raw, json)
Hash identifier: x3typY+Rz1v7YQKoz8/eFq0vzVSoB9fMyJducWo5h8o=
Subject key identifier: 0F:03:51:8D:2B:B4:91:A1:E2:2E:FB:57:A2:4B:DB:05:EF:A7:AA:3F
Certificate issuer: /CN=A913CC0C/serialNumber=AD765E4AD5C0AB3EF4841D3E3484280BEACBCC2D
Certificate serial: 0104
Authority key identifier: AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/1DD8238C836E11EEBBF2912FC4F9AE02.roa
Signing time: Wed 19 Mar 2025 04:21:10 +0000
ROA not before: Wed 19 Mar 2025 04:21:10 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 4826
IP address blocks: 203.223.179.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 260 (0x104)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913CC0C
Validity
Not Before: Mar 19 04:21:10 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67da4636-1799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7b:f1:93:d6:bc:bc:88:d3:93:9b:bc:3d:35:
aa:db:62:6a:63:77:8c:6c:c0:5e:63:87:a7:d9:90:
45:b0:52:38:bd:97:8a:75:7c:e3:b7:83:bb:80:5a:
48:a5:b3:e6:29:1d:3a:16:ca:b0:cf:c3:8d:c6:aa:
96:37:34:ad:22:1a:56:99:8d:a1:c7:c4:05:8d:db:
04:15:bb:9a:14:97:da:94:67:5b:7d:2e:f6:f5:2e:
2a:59:59:ee:bc:07:41:77:a3:6c:4b:37:85:2a:4b:
0b:3e:34:1a:6e:c7:8f:df:23:30:c2:80:71:c2:41:
e3:f5:63:34:b3:17:4f:92:2b:0f:33:24:b0:2a:00:
9d:f7:0f:7f:b9:f9:32:45:ee:d8:f3:bc:7d:67:01:
3c:1a:96:5a:27:5e:5b:db:1d:a1:83:d0:08:7d:74:
75:c8:41:8f:fd:ef:85:c2:d4:d5:d5:73:e1:62:9f:
35:86:f3:19:83:35:27:ae:6a:e8:2e:d3:cf:c7:94:
f5:37:d4:11:9b:2f:a6:cf:e8:72:8e:79:ac:06:5c:
11:fe:17:ad:8d:1b:0e:12:0a:b4:71:f6:73:82:4b:
0c:8a:87:fc:b2:c2:4c:be:64:21:02:32:50:48:c8:
78:a5:7a:92:79:d7:08:3d:62:57:3b:be:d1:4f:3e:
f5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:03:51:8D:2B:B4:91:A1:E2:2E:FB:57:A2:4B:DB:05:EF:A7:AA:3F
X509v3 Authority Key Identifier:
keyid:AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/1DD8238C836E11EEBBF2912FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.223.179.0/24
Signature Algorithm: sha256WithRSAEncryption
40:20:a7:a3:55:1f:9d:be:8a:10:69:69:34:d3:cb:28:ae:16:
7f:f7:44:b2:3f:eb:f2:7f:36:11:fe:2d:86:79:1e:2b:a6:65:
af:b7:e7:98:3c:31:d9:6e:08:0e:0f:30:a1:e4:3f:5b:40:5a:
4f:71:ed:a7:1e:19:27:b3:92:e1:00:ab:ea:20:ac:9d:f0:4f:
bf:90:14:ea:9d:7c:da:4f:74:c8:8f:e1:43:7f:46:ec:eb:71:
a9:7c:72:f2:09:22:0b:9a:5a:47:eb:12:5b:f1:d5:18:93:4a:
f4:37:13:e1:64:13:6d:96:45:21:1a:ac:d8:25:f3:23:95:8d:
2e:04:1d:5f:92:88:bf:78:6e:78:05:44:7f:b1:c1:cb:29:60:
9a:f0:35:7f:42:33:5f:9a:19:05:47:60:2f:2c:23:3b:7b:56:
aa:57:b1:74:b4:0f:1f:5a:03:d0:f3:f1:1a:32:d3:89:04:c9:
42:41:ad:ce:58:da:11:57:6c:90:9b:f9:34:02:ee:44:18:2c:
3d:6a:a8:8e:9d:67:db:73:41:da:cf:00:64:00:64:f6:00:fb:
28:01:f6:2e:d4:ee:f3:e6:bb:72:73:8a:d4:40:55:dd:4e:ec:
1c:99:1b:f7:04:f9:a9:3b:d3:74:23:44:f9:4e:38:cd:b1:a0:
04:4a:13:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:09:05 2025 by rpki-client