Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40E8489ED94411E98E28CD85C4F9AE02.roa
File: 40E8489ED94411E98E28CD85C4F9AE02.roa (raw, json)
Hash identifier: j23duFjEJU2EfKkc6elfR4f7ejjBfoNJUJB2A0cAoRU=
Subject key identifier: 0B:B2:89:9F:7E:6F:34:CE:15:0A:85:46:26:4F:48:DA:47:FB:84:8B
Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8
Certificate serial: 25FE
Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40E8489ED94411E98E28CD85C4F9AE02.roa
Signing time: Thu 26 Sep 2024 15:52:59 +0000
ROA not before: Thu 26 Sep 2024 15:52:59 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 9256
IP address blocks: 125.5.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9726 (0x25fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9145446
Validity
Not Before: Sep 26 15:52:59 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66f5835b-e75c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7c:6c:5f:2b:7f:50:8a:d8:fd:fa:c0:16:8b:
c1:32:ba:9f:39:e9:14:87:6d:99:24:7b:78:73:66:
fd:f4:98:db:48:fc:4d:ed:ff:57:0f:ac:5f:d2:41:
a8:21:f7:a4:92:93:6a:d7:3d:7b:c0:dc:6f:7d:91:
5c:b7:46:04:3a:04:84:86:fc:6b:d9:ac:d9:c9:4a:
de:ee:d7:e3:fa:11:5c:71:1e:b6:bc:0b:a0:73:f1:
c4:e7:c0:15:4f:61:2c:e4:1a:d6:19:84:9d:4e:2b:
f8:bf:3c:da:54:02:d6:3e:2a:eb:82:71:89:45:8e:
27:89:2d:81:fe:44:ed:83:00:ef:10:bd:3b:6b:69:
e1:ec:8e:68:a3:ab:92:77:54:16:d2:96:4a:2f:f1:
db:93:0f:ce:ec:55:68:59:6f:bc:93:40:4b:16:48:
85:76:10:81:d9:3d:ac:0d:ff:81:78:65:df:af:65:
f2:7a:67:1d:50:d2:67:da:07:bc:55:2d:6b:d0:04:
7a:aa:f8:c9:d2:6f:fd:73:57:c0:e8:bd:25:d4:7c:
39:95:c8:31:88:6f:f9:9f:f4:a0:69:ee:4d:3b:d7:
bf:33:27:0f:1c:fd:d0:cc:da:8d:62:2b:86:48:e7:
e0:92:de:5e:ff:2a:89:00:1d:65:a2:4d:b2:b2:c4:
2d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:B2:89:9F:7E:6F:34:CE:15:0A:85:46:26:4F:48:DA:47:FB:84:8B
X509v3 Authority Key Identifier:
keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40E8489ED94411E98E28CD85C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
125.5.99.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:fa:0f:6e:7f:a4:80:fb:2f:36:c0:98:3f:30:52:60:e7:b1:
d5:ae:2a:7a:68:71:08:f1:e4:06:4f:c2:3e:25:ba:e1:b0:6b:
ed:9e:3f:3b:6e:66:60:ee:23:ff:9f:d1:19:ef:60:5c:b3:53:
be:46:17:1a:b5:b6:b1:a5:ac:e0:49:e4:f1:cf:e9:3e:8e:78:
24:4e:c5:73:0b:41:93:e1:79:a3:07:1f:ef:97:d4:95:96:5b:
d3:51:25:82:1c:ca:60:c4:09:11:d0:46:30:55:64:62:7a:a0:
5b:28:e4:e1:0a:37:a2:bf:11:f6:72:38:13:46:f7:93:84:9d:
72:b9:4b:ff:c9:c2:ea:89:fe:78:40:f2:4d:4d:18:29:eb:9c:
cb:1d:e0:36:cc:b7:7f:2d:4c:fd:ac:52:54:55:98:6a:cb:bf:
98:fd:e6:71:40:02:2f:1e:75:b8:10:ea:2a:32:e6:d3:96:18:
f2:1a:93:b3:57:ce:fa:5c:35:6c:58:0c:0b:8c:fd:28:b5:5b:
b5:75:9d:76:73:00:f4:fd:ea:96:75:36:f3:f2:95:ea:b2:93:
dc:17:f8:a3:35:82:41:63:ee:7c:ea:ec:e0:b0:ae:4c:21:1f:
bb:eb:42:dc:28:dd:5f:79:d0:ad:52:ba:bb:05:33:ca:8e:86:
2c:2d:a2:8d
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICJf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF
MDgxRjFBRjgwHhcNMjQwOTI2MTU1MjU5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmY1ODM1Yi1lNzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4XxsXyt/UIrY/frAFovBMrqfOekUh22ZJHt4c2b99JjbSPxN7f9XD6xf0kGo
IfekkpNq1z17wNxvfZFct0YEOgSEhvxr2azZyUre7tfj+hFccR62vAugc/HE58AV
T2Es5BrWGYSdTiv4vzzaVALWPirrgnGJRY4niS2B/kTtgwDvEL07a2nh7I5oo6uS
d1QW0pZKL/Hbkw/O7FVoWW+8k0BLFkiFdhCB2T2sDf+BeGXfr2XyemcdUNJn2ge8
VS1r0AR6qvjJ0m/9c1fA6L0l1Hw5lcgxiG/5n/Sgae5NO9e/MycPHP3QzNqNYiuG
SOfgkt5e/yqJAB1lok2yssQtWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAuyiZ9+
bzTOFQqFRiZPSNpH+4SLMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG
QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH
dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvNDBFODQ4OUVE
OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAB9BWMwDQYJKoZIhvcNAQELBQADggEBALH6D25/pID7LzbA
mD8wUmDnsdWuKnpocQjx5AZPwj4luuGwa+2ePztuZmDuI/+f0RnvYFyzU75GFxq1
trGlrOBJ5PHP6T6OeCROxXMLQZPheaMHH++X1JWWW9NRJYIcymDECRHQRjBVZGJ6
oFso5OEKN6K/EfZyOBNG95OEnXK5S//JwuqJ/nhA8k1NGCnrnMsd4DbMt38tTP2s
UlRVmGrLv5j95nFAAi8edbgQ6ioy5tOWGPIak7NXzvpcNWxYDAuM/Si1W7V1nXZz
APT96pZ1NvPyleqyk9wX+KM1gkFj7nzq7OCwrkwhH7vrQtwo3V950K1SursFM8qO
hiwtoo0=
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:10:04 2025 by rpki-client