Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/02640B0CF97911EF99F9BE80C4F9AE02.roa
File: 02640B0CF97911EF99F9BE80C4F9AE02.roa (raw, json)
Hash identifier: cI8Rp+uDdJ361Bt2iDuipm5XRt6w/fm/O6/Pc4tHNDU=
Subject key identifier: DD:BC:07:DB:FD:5C:89:D8:35:F6:CD:06:CB:17:0E:4D:0D:45:32:8E
Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01
Certificate serial: 06
Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/02640B0CF97911EF99F9BE80C4F9AE02.roa
Signing time: Wed 05 Mar 2025 04:19:20 +0000
ROA not before: Wed 05 Mar 2025 04:19:20 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 45158
IP address blocks: 203.62.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91466E8
Validity
Not Before: Mar 5 04:19:20 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=67c7d0c8-5402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:65:03:97:07:da:23:6f:2b:1d:4c:a7:60:db:
00:51:79:38:54:58:84:ee:eb:6c:5a:62:74:b9:ec:
3a:f8:28:63:c2:49:57:f0:78:93:5c:fc:eb:75:ad:
6f:86:a5:99:b9:82:37:e3:2f:47:eb:00:a4:1c:22:
4c:90:e0:0b:f9:1a:d0:61:09:0b:82:c8:58:bd:36:
32:70:7f:04:14:dd:9a:59:09:20:47:11:0f:42:45:
b0:f3:47:86:4a:d7:4e:48:df:a4:0a:23:31:20:46:
10:8f:9c:15:b7:13:f5:ff:d3:81:0b:0e:9e:a1:46:
10:bd:78:7e:c4:74:90:2c:9a:57:72:74:87:5b:69:
56:db:85:14:63:2d:15:ea:f7:d3:4a:3b:5a:66:83:
c7:09:2e:48:68:e6:3d:d8:61:27:25:43:a4:2f:89:
ae:23:bb:b3:6b:cd:f3:5d:39:cf:81:57:5f:7c:ef:
fd:9b:97:a2:a8:71:bb:a0:c7:5f:32:b9:f5:7f:48:
30:4f:0c:96:b8:0f:12:dd:b1:7e:87:07:87:c2:76:
84:cd:64:d5:87:4a:b4:59:dc:19:2f:be:44:ec:cf:
58:e5:48:54:7b:19:6e:6a:96:12:f7:07:79:96:57:
bb:57:73:22:c8:1e:97:c1:df:8e:7e:27:00:1f:c5:
37:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BC:07:DB:FD:5C:89:D8:35:F6:CD:06:CB:17:0E:4D:0D:45:32:8E
X509v3 Authority Key Identifier:
keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/02640B0CF97911EF99F9BE80C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.62.134.0/24
Signature Algorithm: sha256WithRSAEncryption
49:6e:95:ad:5e:0d:38:85:8e:21:2d:e4:9f:bc:5f:66:66:a5:
8b:cc:99:41:dc:50:66:2a:bc:39:f0:bc:cc:cf:37:d5:38:9e:
80:48:a7:6a:44:83:b4:fc:f4:9f:37:69:e6:71:34:4a:e9:96:
5b:2e:c1:dd:36:9d:4a:7c:a8:66:5c:cf:8a:d3:3b:e4:a8:4a:
48:d2:0f:d1:1a:ce:f7:d1:06:9b:92:88:51:6b:c4:d8:88:ab:
02:63:b1:27:bc:81:ed:49:a7:ac:f0:8f:0b:a2:5a:1b:c3:7f:
99:cb:11:26:0f:1a:2c:5a:f0:59:3a:ee:f9:66:c8:20:64:04:
47:18:fc:4c:32:4f:74:28:f2:b9:89:1e:eb:9a:31:1c:e8:ed:
56:73:48:97:fb:3d:b0:75:81:ec:88:0c:2a:1f:7d:d2:de:8a:
91:2f:d4:90:f4:52:43:f5:19:c5:c0:ef:5b:8f:39:14:59:25:
07:08:e8:56:b7:fa:9b:2e:dd:7e:9a:d8:9b:e9:6c:98:23:06:
e3:fa:7e:8f:14:63:9d:ea:35:39:4d:b6:61:e8:39:ef:32:35:
51:3c:e2:00:c0:2b:d4:ff:d3:de:9c:da:e0:12:ca:d1:ad:86:
5b:f5:83:eb:a4:b3:0b:55:7d:78:cf:fb:11:15:40:b6:be:5b:
4c:8d:f5:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:44:14 2025 by rpki-client