Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa
File: 03C522BA8CF211ED8699F014C4F9AE02.roa (raw, json)
Hash identifier: osXWx1pbxHv+AmHj+bmzgWhkOOzEZkepu7gweinGAO4=
Subject key identifier: 3B:49:73:A9:15:C8:41:6D:E4:37:67:E9:14:D1:30:D6:66:6D:66:81
Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09
Certificate serial: 3495
Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa
Signing time: Tue 18 Feb 2025 08:36:42 +0000
ROA not before: Tue 18 Feb 2025 08:36:42 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 148000
IP address blocks: 36.50.36.0/24 maxlen: 24
36.50.50.0/24 maxlen: 24
2409::/40 maxlen: 40
2409::/48 maxlen: 48
2409:1::/48 maxlen: 48
2409:e:eb::/48 maxlen: 48
2409:e:ed::/48 maxlen: 48
240a:e000::/20 maxlen: 20
240a:eabc::/32 maxlen: 32
240a:eabc:abcd::/48 maxlen: 48
240a:eabc:d00d::/48 maxlen: 48
240a:eff0::/32 maxlen: 32
240a:eff1::/32 maxlen: 32
240a:eff2::/32 maxlen: 32
240a:eff4::/32 maxlen: 32
240a:eff6::/32 maxlen: 32
240a:eff8::/32 maxlen: 32
240a:eff9::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13461 (0x3495)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914BC7A
Validity
Not Before: Feb 18 08:36:42 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=67b4469a-dcd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3b:3f:ba:5c:50:47:a3:bd:84:6c:ca:b8:fd:
69:25:95:63:99:b9:5e:3a:83:74:ef:4e:f9:18:14:
39:d6:1a:82:49:7b:3b:5a:6a:50:60:93:39:75:78:
1a:be:27:74:ae:72:bf:68:ce:07:63:d9:6e:89:7f:
8d:da:7c:e2:08:c5:3e:70:ba:ee:f8:17:4e:99:fd:
93:d0:86:84:ca:f2:dd:e1:7f:97:74:0c:ae:d7:04:
85:b1:68:90:db:e5:4f:b5:62:45:82:88:1e:22:30:
17:d8:31:ee:f4:2f:0e:e1:29:ca:29:fd:1e:c4:1a:
4f:0b:1d:03:af:64:b1:8b:e3:78:29:87:ae:61:aa:
1c:4f:46:76:5a:85:0e:a0:f2:f6:69:1c:ab:92:90:
e5:36:0e:5c:2f:e4:f7:bd:cb:96:ed:03:37:87:05:
47:2c:1b:57:07:89:5e:3c:95:6c:55:21:fa:dd:74:
cd:4c:cd:34:c7:76:0e:88:de:89:2a:bf:e2:ba:99:
6c:c9:31:17:59:9c:39:0c:2e:01:95:24:cf:9d:69:
7d:91:2c:33:6f:73:e5:c9:e2:21:18:50:ca:c5:e6:
b9:c6:be:41:05:3a:1e:3b:12:49:0c:44:a3:1d:35:
b7:15:a2:8b:76:f2:65:9c:0f:e9:fe:1f:72:87:2d:
5a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:49:73:A9:15:C8:41:6D:E4:37:67:E9:14:D1:30:D6:66:6D:66:81
X509v3 Authority Key Identifier:
keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.36.0/24
36.50.50.0/24
IPv6:
2409::/40
2409:1::/48
2409:e:eb::/48
2409:e:ed::/48
240a:e000::/20
Signature Algorithm: sha256WithRSAEncryption
c7:dd:29:17:45:86:87:0c:40:d9:53:21:2f:cb:b4:94:07:dd:
b8:a1:69:b2:a8:8e:57:2a:24:2d:5f:b4:83:5e:5a:43:cd:85:
b4:14:da:2d:bf:01:bb:78:32:1b:6e:03:66:9b:6f:01:13:5b:
6c:a4:b5:b0:bf:cd:8b:96:e0:05:ca:1d:d4:d7:93:26:8b:e9:
76:db:0e:49:94:11:70:71:0a:1f:1e:92:b8:27:ac:2f:be:38:
e9:c1:83:b1:03:1c:b4:4c:ec:54:84:c4:d7:45:45:2e:32:7b:
ee:30:9b:4d:de:ad:9b:4b:3f:57:9a:76:98:25:c9:38:71:38:
86:5c:ac:ff:14:80:cb:1e:96:3c:a8:1c:be:df:bc:30:4c:34:
85:b6:58:f5:f4:ba:e6:cb:b8:70:0e:f7:c8:32:bb:14:68:b5:
10:c5:2f:b1:13:bd:11:78:e4:57:75:e2:f8:4e:50:be:3a:a8:
bb:30:f2:96:5e:4d:1c:a1:35:8f:83:a3:8a:0b:42:7f:8a:e6:
30:05:e3:5a:25:0e:5d:c3:b4:bd:f5:2d:46:0e:d2:e0:c3:d1:
36:0c:89:ee:e0:a9:a0:ec:73:1d:a0:e3:6e:c8:ee:d8:0a:96:
7e:75:43:45:88:45:d5:ec:b1:6c:02:40:bf:1a:44:f8:b5:ad:
8a:98:7a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:07:06 2025 by rpki-client