Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914287F/64489EE02D2311EB91918480C4F9AE02/45CED05E2D2511EBAA63DE82C4F9AE02.roa
File: 45CED05E2D2511EBAA63DE82C4F9AE02.roa (raw, json)
Hash identifier: MMDW5GKNwb6UBpTQg+bN7/Wer/8y34uE+hwA4JCHhWg=
Subject key identifier: C3:BA:AD:53:C4:38:50:01:CF:48:22:26:63:17:13:6A:14:E1:54:77
Certificate issuer: /CN=A914287F/serialNumber=E09C9F7245B98498AE9233B1980D7B4F4C738D0F
Certificate serial: 0713
Authority key identifier: E0:9C:9F:72:45:B9:84:98:AE:92:33:B1:98:0D:7B:4F:4C:73:8D:0F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JyfckW5hJiukjOxmA17T0xzjQ8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914287F/64489EE02D2311EB91918480C4F9AE02/45CED05E2D2511EBAA63DE82C4F9AE02.roa
Signing time: Fri 14 Feb 2025 23:00:08 +0000
ROA not before: Fri 14 Feb 2025 23:00:08 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 4637
IP address blocks: 203.28.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1811 (0x713)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914287F
Validity
Not Before: Feb 14 23:00:08 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67afcaf8-44d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e3:c1:aa:81:e3:4c:34:36:17:6c:cc:97:9b:
85:88:55:ee:ae:34:5d:93:da:5a:a9:6f:41:69:61:
7b:8c:07:7b:9f:19:b2:40:3d:87:72:91:fa:7b:ea:
07:8a:32:2a:be:ba:4c:70:17:19:67:1f:ae:97:9b:
a8:9a:8e:c5:04:e9:a5:31:6f:2d:eb:8a:41:e4:46:
68:c1:ae:49:9a:27:61:ae:d9:45:16:8c:9a:92:fe:
e4:8c:d4:39:0a:d8:c3:b5:50:82:fd:83:e8:32:fc:
c7:1f:cc:a4:94:3b:6c:e6:9b:91:a7:c3:ad:19:17:
93:18:aa:49:dc:01:ed:91:0f:82:5b:40:27:c9:da:
0c:f4:d3:16:df:4d:68:87:81:8c:c6:a5:ef:98:44:
cd:d8:04:71:b8:51:d7:95:b7:bf:70:d0:3d:01:63:
1c:e2:f7:3e:60:a2:0d:7b:e7:ab:8d:e1:5b:29:fa:
9b:22:c7:85:30:7a:2f:44:3f:00:cd:c9:90:d1:a5:
1c:87:fd:32:25:b3:a5:da:f2:ab:ab:a2:eb:c3:11:
d1:88:c4:5c:1b:65:e5:84:5f:76:79:80:b8:f1:38:
5a:b8:b7:15:a8:9d:53:cf:f1:eb:0b:c8:2a:89:29:
e7:de:54:a5:dc:e0:82:8e:91:1f:f7:41:41:c2:5f:
70:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:BA:AD:53:C4:38:50:01:CF:48:22:26:63:17:13:6A:14:E1:54:77
X509v3 Authority Key Identifier:
keyid:E0:9C:9F:72:45:B9:84:98:AE:92:33:B1:98:0D:7B:4F:4C:73:8D:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914287F/64489EE02D2311EB91918480C4F9AE02/4JyfckW5hJiukjOxmA17T0xzjQ8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JyfckW5hJiukjOxmA17T0xzjQ8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914287F/64489EE02D2311EB91918480C4F9AE02/45CED05E2D2511EBAA63DE82C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.28.106.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:34:77:9c:e8:96:33:d7:09:7f:f3:7d:db:38:55:65:01:8b:
99:c7:bd:40:1e:8e:73:e3:29:be:7f:4c:03:89:e7:a0:4e:e4:
21:52:aa:51:d1:2c:a8:db:76:bb:2b:eb:2d:02:86:ea:d8:40:
ab:52:98:c4:cd:8f:8e:f2:81:22:df:dd:3b:82:ad:59:1a:7d:
b6:4d:a4:1c:35:cb:51:64:42:53:54:e5:74:29:9f:83:14:d6:
2b:ed:6c:ba:bf:9e:ff:3a:a0:27:85:31:39:30:7b:49:44:75:
3b:54:f3:af:31:de:7a:fd:91:c1:cd:e4:e4:d8:db:d4:0c:76:
8d:cf:99:db:91:58:87:c2:39:38:5e:71:98:1c:35:d9:9d:e7:
f8:35:37:b2:a1:f6:b5:31:31:d8:4d:2a:2c:c5:f8:f8:14:9b:
d1:e7:43:37:43:62:ba:43:30:84:4f:0e:dc:34:76:ea:b9:45:
48:52:5e:66:93:24:b5:ca:f5:ad:7f:7a:a5:c6:77:c4:ad:7e:
15:45:5a:c2:15:49:9b:a7:c1:c8:92:67:36:98:75:8d:46:b6:
62:e9:2a:ff:b3:24:d2:01:50:48:a6:1f:e2:86:50:48:7e:33:
17:4b:f4:12:f7:19:78:04:d0:6c:8d:50:a5:8e:b8:a5:17:64:
0a:f4:78:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:15:43 2025 by rpki-client