Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FAF6D732CD3811EDBD37B674C4F9AE02.roa
File: FAF6D732CD3811EDBD37B674C4F9AE02.roa (raw, json)
Hash identifier: 55hbp1lHPqWHR3myIKlQM0s8jhZDD5OMMu+AbqKM2eA=
Subject key identifier: 49:6C:6A:C2:00:D1:06:04:A3:4E:E9:AF:F7:9E:D1:F3:3F:6C:6F:22
Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B
Certificate serial: 35FC
Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FAF6D732CD3811EDBD37B674C4F9AE02.roa
Signing time: Fri 16 Aug 2024 14:40:34 +0000
ROA not before: Fri 16 Aug 2024 14:40:34 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 45996
IP address blocks: 110.172.112.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13820 (0x35fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9149F3E
Validity
Not Before: Aug 16 14:40:34 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66bf64e2-bb29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c4:5c:65:a9:9e:a3:7f:e4:7b:a7:44:0c:3b:
09:cd:ad:d3:1c:f1:4b:a7:cf:15:d0:86:fc:84:3c:
ea:bb:1d:c9:81:b4:51:85:4b:28:49:2b:3e:6a:1e:
88:41:79:7f:19:cb:a9:9a:4e:ba:69:b6:7d:3c:66:
d7:4f:4d:ff:c7:4c:e1:2a:e6:c4:fe:c4:88:d1:24:
61:7f:33:75:7c:de:1e:f5:67:09:2d:09:af:47:69:
dc:b6:c9:16:44:c8:c3:e9:37:e8:91:8d:9e:26:76:
54:b9:3b:87:01:66:64:4e:37:eb:64:c0:92:70:dc:
93:5b:fe:e9:8f:95:e0:63:5b:84:09:da:3e:5f:20:
f4:73:59:70:4f:b5:a3:a3:1d:88:d6:57:9f:44:e3:
48:11:86:0b:f8:e2:45:2a:7d:49:f1:74:1e:d9:c4:
e6:89:3b:4b:51:ec:23:32:69:99:a2:42:b9:b8:d8:
56:dd:05:55:7b:2f:6d:6a:c8:57:2b:a3:e7:b4:69:
f0:8b:03:cf:59:57:6c:92:62:20:35:ad:98:c2:c2:
c4:31:14:67:ea:74:84:64:64:c6:5e:b5:4f:77:fd:
eb:ca:e3:24:8a:c6:9b:fd:87:6e:a3:34:8a:c6:01:
35:28:29:d2:f4:07:a6:d2:29:8c:67:40:8b:a4:e9:
7a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:6C:6A:C2:00:D1:06:04:A3:4E:E9:AF:F7:9E:D1:F3:3F:6C:6F:22
X509v3 Authority Key Identifier:
keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FAF6D732CD3811EDBD37B674C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
110.172.112.0/20
Signature Algorithm: sha256WithRSAEncryption
64:99:59:78:b7:89:82:60:8b:af:dd:68:31:5e:c8:b9:a0:5d:
bd:b3:d5:f2:5a:bd:7d:27:98:8c:31:08:ef:04:0e:8d:83:5d:
10:ad:4a:96:91:5f:ee:94:eb:a8:81:f2:56:09:9b:c3:97:53:
3d:63:56:4e:f8:e6:e4:53:c9:a9:5f:8c:6e:40:12:73:99:89:
a7:36:a3:ff:56:ed:c8:47:9d:0a:85:c3:9b:60:79:83:b2:d6:
fe:60:c4:2c:ab:ac:fe:30:b7:dc:85:42:2f:e6:b8:42:65:75:
e1:b4:42:32:71:0f:d7:24:61:ab:6b:b7:05:88:d7:0d:92:36:
c5:6d:0a:d7:f2:5a:4e:5d:4b:3e:2d:62:90:4a:f0:98:bc:06:
dc:dd:8d:85:07:2d:93:ab:29:3b:57:96:f0:69:d8:11:1d:a6:
ac:b6:76:99:8a:3b:2a:7f:e1:f2:2e:ba:88:0f:1a:78:65:af:
0c:eb:3d:72:ae:0d:94:f5:61:ae:ec:11:c4:21:0d:b0:d1:1f:
44:96:06:84:55:5f:b2:d9:f4:ba:ef:ab:e0:44:e6:b2:e8:b1:
4f:71:3e:c5:ea:cc:00:da:8e:bc:35:fa:07:d9:db:38:a6:0d:
04:c3:28:f1:b2:60:86:4e:06:c9:59:e4:2f:15:ee:1b:bf:01:
12:42:86:79
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICNfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG
OURGN0M1NEIwHhcNMjQwODE2MTQ0MDM0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmJmNjRlMi1iYjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtsRcZameo3/ke6dEDDsJza3THPFLp88V0Ib8hDzqux3JgbRRhUsoSSs+ah6I
QXl/Gcupmk66abZ9PGbXT03/x0zhKubE/sSI0SRhfzN1fN4e9WcJLQmvR2nctskW
RMjD6TfokY2eJnZUuTuHAWZkTjfrZMCScNyTW/7pj5XgY1uECdo+XyD0c1lwT7Wj
ox2I1lefRONIEYYL+OJFKn1J8XQe2cTmiTtLUewjMmmZokK5uNhW3QVVey9tashX
K6PntGnwiwPPWVdskmIgNa2YwsLEMRRn6nSEZGTGXrVPd/3ryuMkisab/YduozSK
xgE1KCnS9Aem0imMZ0CLpOl6swIDAQABo4IClTCCApEwHQYDVR0OBBYEFElsasIA
0QYEo07pr/ee0fM/bG8iMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE
ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4
VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvRkFGNkQ3MzJD
RDM4MTFFREJEMzdCNjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBARurHAwDQYJKoZIhvcNAQELBQADggEBAGSZWXi3iYJgi6/d
aDFeyLmgXb2z1fJavX0nmIwxCO8EDo2DXRCtSpaRX+6U66iB8lYJm8OXUz1jVk74
5uRTyalfjG5AEnOZiac2o/9W7chHnQqFw5tgeYOy1v5gxCyrrP4wt9yFQi/muEJl
deG0QjJxD9ckYatrtwWI1w2SNsVtCtfyWk5dSz4tYpBK8Ji8BtzdjYUHLZOrKTtX
lvBp2BEdpqy2dpmKOyp/4fIuuogPGnhlrwzrPXKuDZT1Ya7sEcQhDbDRH0SWBoRV
X7LZ9Lrvq+BE5rLosU9xPsXqzADajrw1+gfZ2zimDQTDKPGyYIZOBslZ5C8V7hu/
ARJChnk=
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:06:52 2025 by rpki-client