Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/696CCB682A4311EBBD69BE46C4F9AE02.roa
File: 696CCB682A4311EBBD69BE46C4F9AE02.roa (raw, json)
Hash identifier: 8OYf8mEpPucFEvMRW/W78dtixXmjCZ1X5ocLo47rpIk=
Subject key identifier: BF:24:40:5D:6E:7D:F4:50:60:17:C8:19:D7:4E:DF:EA:15:7D:1A:0D
Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928
Certificate serial: 0765
Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/696CCB682A4311EBBD69BE46C4F9AE02.roa
Signing time: Tue 02 Jul 2024 23:11:29 +0000
ROA not before: Tue 02 Jul 2024 23:11:29 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 56223
IP address blocks: 203.150.250.0/24 maxlen: 24
203.151.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1893 (0x765)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914DC5D
Validity
Not Before: Jul 2 23:11:29 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66848921-b882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d0:96:29:20:0a:97:41:4d:00:ba:7a:dc:61:
43:8b:19:20:96:c1:eb:2a:69:2c:bd:4b:24:51:b6:
df:4a:a3:65:36:9f:e4:6d:0a:8c:84:16:73:24:92:
92:1b:05:86:59:ae:21:1f:8a:20:3a:ce:c0:2d:ba:
5c:65:18:94:81:9f:e9:d8:2e:74:a8:28:02:8b:37:
0d:fe:97:a6:26:65:12:81:97:a0:c0:aa:19:74:77:
aa:45:6b:4e:de:a6:c0:d8:fd:91:74:2c:52:9d:0c:
da:9d:53:f3:7b:97:83:39:39:2b:7a:21:53:53:f6:
bb:25:e2:14:71:b7:db:11:62:4f:4a:48:cc:fa:98:
33:7f:e8:80:19:bc:68:44:17:35:24:ae:1c:dd:25:
69:3c:93:9b:a2:be:b2:28:6a:55:ec:b3:0b:47:ae:
52:b6:87:f5:34:28:aa:4d:f7:32:59:a0:22:ae:e4:
88:61:c5:cf:12:71:a7:f5:8e:be:d9:fc:3d:0d:9a:
76:09:3b:22:d7:66:04:64:40:66:f5:98:9e:fa:d8:
4a:c9:d3:0d:c2:b2:1d:fb:34:d5:b2:9a:34:80:de:
b8:a8:9d:ad:3e:ed:e1:23:e8:e0:21:e8:f2:ed:51:
ab:ea:38:71:93:b3:18:1d:e5:bf:05:56:48:8c:db:
0e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:24:40:5D:6E:7D:F4:50:60:17:C8:19:D7:4E:DF:EA:15:7D:1A:0D
X509v3 Authority Key Identifier:
keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/696CCB682A4311EBBD69BE46C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.150.250.0/24
203.151.111.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:6a:40:76:f5:20:97:7a:0f:a3:b9:08:65:a1:9e:dd:05:52:
da:10:f5:28:53:ec:21:23:70:98:52:c0:58:87:f2:23:b1:71:
82:92:58:c0:b8:9a:47:01:66:bb:ee:ba:a1:89:39:15:ff:65:
d3:94:2e:a6:f9:87:8d:ee:b4:e8:42:73:d7:dc:39:7b:b7:35:
9a:44:4a:5d:f1:fa:12:f1:46:9d:de:11:6e:e2:4a:91:e8:81:
53:aa:95:ce:d1:08:e3:82:c8:ae:d8:c8:53:d5:25:ea:f7:b8:
74:e1:b0:be:bf:eb:bc:86:d3:b0:72:f0:3a:c9:ac:99:53:4c:
ac:da:19:91:66:c3:cc:a4:13:6c:33:31:b6:4d:34:25:b9:28:
fd:19:d5:b9:e2:f6:1e:18:c0:d8:63:47:9f:e5:7a:55:ac:e1:
b6:12:0b:54:e9:e4:4a:00:20:31:68:6f:3b:76:e8:9e:3c:4e:
f1:5f:76:1d:e1:5d:6c:6b:1e:e5:69:3f:d9:1e:76:e6:a2:90:
d4:92:e7:65:31:b9:f6:ae:54:6b:c3:5e:cb:fd:c0:c4:28:cb:
5c:4e:64:16:28:73:fa:21:51:6c:d2:e4:cb:15:fe:43:6d:c4:
f8:7e:b6:47:6d:52:9f:ed:e7:71:a2:59:6c:2e:97:f6:c1:7c:
fe:b8:2c:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 15:51:28 2025 by rpki-client