Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/791E1D14836E11EEAD2B0731C4F9AE02.roa
File: 791E1D14836E11EEAD2B0731C4F9AE02.roa (raw, json)
Hash identifier: Zs0S8blgDDMs3jrlGY37AkPWRyP83xeb73R0yUfKf24=
Subject key identifier: 04:3C:DE:B9:76:CC:8B:7D:7D:CD:44:D8:C3:AA:39:E7:57:00:D5:62
Certificate issuer: /CN=A913CC0C/serialNumber=AD765E4AD5C0AB3EF4841D3E3484280BEACBCC2D
Certificate serial: 0103
Authority key identifier: AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/791E1D14836E11EEAD2B0731C4F9AE02.roa
Signing time: Wed 19 Mar 2025 04:21:09 +0000
ROA not before: Wed 19 Mar 2025 04:21:09 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 151833
IP address blocks: 203.223.179.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 259 (0x103)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913CC0C
Validity
Not Before: Mar 19 04:21:09 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67da4635-2f3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:7c:b9:ac:9d:50:d6:4a:7b:16:8d:e6:61:d7:
49:3c:7a:80:99:d0:9a:da:f3:4d:7d:9a:03:6b:99:
9b:ea:63:64:54:66:13:db:0b:28:8c:3a:5e:f9:6e:
c6:87:0a:0c:f0:33:ab:e7:62:7f:24:b4:5f:56:b0:
01:10:88:b4:7f:85:2c:fb:cb:38:6d:90:3d:81:84:
88:6e:ed:3f:df:47:1e:a1:be:08:d3:46:e7:bb:6c:
62:22:f4:b3:1a:9a:9d:47:6c:e7:b4:18:fb:df:35:
7c:d4:d6:e6:e6:89:11:67:ed:22:9d:59:ba:bf:0c:
09:2c:b0:e6:6f:92:f8:0f:ba:e7:be:c8:94:fd:dc:
c9:cc:cf:c0:25:3b:d9:9c:d5:43:d7:7c:42:7e:05:
f2:15:92:e3:29:ae:1e:bd:c8:3e:59:be:9a:b5:bc:
a1:79:3d:52:fb:11:05:b0:5b:ff:ca:f0:8c:44:29:
f8:39:8d:ba:ce:10:77:ae:6c:cf:09:c5:3f:14:9a:
e3:2d:b6:b2:bf:af:17:51:46:2b:94:7f:f1:4c:48:
d3:ea:33:57:c7:30:79:68:30:14:6b:ed:8a:4d:1e:
ca:21:d9:ab:a4:00:fb:39:89:92:10:4d:49:e4:f8:
44:f1:0a:ef:28:8c:5d:32:74:e9:ed:92:b3:ea:6c:
4a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:3C:DE:B9:76:CC:8B:7D:7D:CD:44:D8:C3:AA:39:E7:57:00:D5:62
X509v3 Authority Key Identifier:
keyid:AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/791E1D14836E11EEAD2B0731C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.223.179.0/24
Signature Algorithm: sha256WithRSAEncryption
35:69:50:80:c3:c7:9a:6f:68:71:df:ce:43:87:55:32:39:2c:
9d:70:8b:11:2a:76:ca:17:25:b5:b4:8d:0c:5d:c8:40:a2:30:
4c:29:29:b3:72:f4:02:86:15:31:92:a7:f8:0b:b1:f7:d9:e7:
16:c6:0c:a2:ce:08:72:34:7f:6f:1a:c5:d6:23:17:88:b5:ef:
23:6e:78:38:11:b4:58:a2:ce:6c:3c:d7:49:c3:f3:0b:cd:16:
fc:50:d4:a9:24:af:86:54:b1:d0:e8:c7:70:7c:05:67:cd:47:
d9:0b:be:3e:ba:b1:44:4e:0c:b4:60:06:38:ef:4d:08:ba:f6:
e9:fd:cb:0a:af:07:ca:b9:bb:21:21:84:be:56:eb:02:87:27:
a8:74:48:45:7c:aa:2b:d6:ae:46:de:56:de:e2:80:e4:83:10:
7e:40:2a:f3:4b:d9:6b:23:a6:b4:8e:62:e9:2b:67:af:13:ca:
3a:6f:f7:1a:d4:ef:f4:36:d8:16:40:d5:b2:ae:77:9d:15:44:
4c:50:64:5e:bb:50:0c:1f:00:1d:ed:2a:2b:08:f2:95:06:98:
32:9f:a7:7f:21:25:23:5c:20:3c:8a:0a:8b:d2:73:9f:cb:ad:
d6:bd:b0:53:df:46:02:1b:77:e7:1c:d2:cb:e3:e5:43:5c:8a:
af:5c:b1:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:49:22 2025 by rpki-client