Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/E8716FD4EA3511EF89116C52C4F9AE02.roa
File: E8716FD4EA3511EF89116C52C4F9AE02.roa (raw, json)
Hash identifier: /ib2O66BEz/+EIpjbYLfsm9ZEc6Tr2GDRN2PvAJwp9o=
Subject key identifier: F4:99:28:21:95:85:E8:C6:4F:BA:1B:BC:46:E9:6D:99:C1:BC:67:92
Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800
Certificate serial: 08
Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/E8716FD4EA3511EF89116C52C4F9AE02.roa
Signing time: Thu 13 Feb 2025 18:11:13 +0000
ROA not before: Thu 13 Feb 2025 18:11:13 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 12008
IP address blocks: 203.119.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9144CB7
Validity
Not Before: Feb 13 18:11:13 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67ae35c0-0610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:01:22:28:7b:e7:cb:95:05:ea:e1:b7:94:a4:
30:7d:4f:88:54:f4:bc:34:1f:96:f6:04:71:17:d8:
97:4d:50:81:0d:ea:40:e6:e8:59:24:68:d6:85:15:
bf:ad:88:a1:41:dc:b0:99:1b:a5:58:ec:d4:5b:9f:
a0:c9:f2:62:51:18:26:e2:5e:5f:e9:dd:c5:ab:4d:
f6:dd:d6:c3:41:bf:c2:f4:39:2b:fd:94:85:2e:6f:
c0:b3:de:c9:91:b6:ef:28:03:4d:97:ff:9f:f5:8d:
1a:8e:15:48:aa:55:4d:58:5a:37:32:81:a2:87:ae:
30:e2:9b:67:be:6d:c3:91:e2:4f:f9:f5:9b:e3:00:
77:92:77:bf:dd:21:3b:22:05:0c:a6:53:7b:d6:5c:
3e:0d:ee:bf:ec:45:f1:f8:fd:7f:ee:18:bf:57:fa:
b9:a1:cb:f7:66:03:5d:04:e5:ba:59:bc:7e:a9:fc:
90:20:66:e5:c2:4d:3c:7c:86:c1:ad:b0:1d:cc:97:
d1:70:e4:bb:06:75:2a:db:01:08:48:7f:6f:ee:ba:
c6:c8:12:a6:54:46:27:8d:e2:6e:13:e8:16:cd:66:
5b:23:65:26:cc:0a:f5:4f:7a:a9:cf:93:7e:26:51:
fd:23:03:91:ff:14:9d:12:f5:69:52:71:53:9d:01:
e5:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:99:28:21:95:85:E8:C6:4F:BA:1B:BC:46:E9:6D:99:C1:BC:67:92
X509v3 Authority Key Identifier:
keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/E8716FD4EA3511EF89116C52C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.119.15.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:fe:c2:26:ab:55:12:bc:90:fa:21:7f:85:98:ca:e5:fb:3c:
d6:34:ca:99:5b:5f:0a:0a:0e:73:84:55:ef:a0:40:22:90:fb:
4f:a1:83:f1:66:7c:72:85:1b:95:ab:f7:50:90:b9:b9:6d:1f:
58:a1:4e:4f:98:cc:d0:d4:fe:5e:1b:b3:93:bf:ce:88:f7:7b:
a3:4b:fb:e8:99:81:d4:d5:b2:0a:18:a6:b9:4f:d3:be:e0:d3:
bd:3b:d0:0b:fc:3c:a7:46:65:c2:d1:4a:cc:ce:8e:35:c2:62:
64:0a:22:ab:16:b3:d5:b1:84:43:e4:01:ae:e9:4e:ee:8b:1f:
4e:1f:62:6a:b9:97:d1:6c:e7:1d:83:e5:57:ba:bc:63:25:80:
48:86:cf:d7:87:70:ae:69:55:cc:8c:ac:68:a2:b4:e7:34:01:
2d:c5:2c:12:37:2a:19:e3:0a:93:96:f3:5b:85:f4:2f:ba:c2:
bf:de:8b:56:b2:f2:9f:8c:d5:94:0f:33:4e:0c:f5:bd:b3:3e:
b4:8c:6d:c1:47:50:fb:58:6f:bc:29:f1:de:ad:99:2b:bb:c5:
5c:5e:3c:f5:e0:e1:da:5d:e9:d3:fc:8c:7a:23:4c:e3:ec:17:
4e:79:c2:7a:5a:e2:cc:47:a3:95:4a:b7:8e:8a:4d:75:c8:90:
ba:65:e1:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:18:32 2025 by rpki-client