Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/A3C232F4E46011EF82734320C4F9AE02.roa
File: A3C232F4E46011EF82734320C4F9AE02.roa (raw, json)
Hash identifier: QMZJ1vaqhEl+C0PrWE/XxVdxehbMvng9MIG2vvqJ80Q=
Subject key identifier: 03:DA:F1:36:C2:54:FC:DC:98:CD:E6:40:23:A4:D3:D8:88:3C:3E:E6
Certificate issuer: /CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB
Certificate serial: F2
Authority key identifier: AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/A3C232F4E46011EF82734320C4F9AE02.roa
Signing time: Thu 06 Feb 2025 08:01:59 +0000
ROA not before: Thu 06 Feb 2025 08:01:59 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 839
IP address blocks: 43.231.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242 (0xf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9155647
Validity
Not Before: Feb 6 08:01:59 2025 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=67a46c76-513a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ad:fa:50:78:b0:01:0c:7f:a6:38:ab:33:e8:
9c:f0:52:be:41:6e:bf:37:28:1b:12:c4:2f:58:85:
83:7f:46:a6:f3:5f:7b:c2:ce:23:7f:f2:2a:21:9b:
ff:df:8b:ae:1a:84:a4:fc:e0:dd:68:e4:86:b0:15:
dd:a1:2a:b2:68:ba:3f:83:c9:f1:c6:23:e9:ac:23:
7d:26:60:d6:75:75:d6:f1:49:fa:f9:25:38:05:b2:
79:81:b1:b3:dc:de:f5:0e:3f:64:3c:51:b4:eb:7f:
fc:9d:9e:c2:72:8d:95:a0:19:60:1d:8f:d7:eb:25:
81:2a:6f:93:fa:69:72:09:17:34:2f:36:c2:61:1d:
3c:eb:d9:b3:21:8b:30:95:7e:a5:51:13:b7:b6:64:
53:97:89:a2:22:fa:4c:00:47:9a:70:1e:ee:eb:04:
1a:e2:f9:b0:66:49:8e:68:14:66:73:eb:a8:f2:a3:
7c:19:56:4c:ad:b7:fe:5e:f2:dc:be:66:34:4c:48:
62:35:9a:1e:fd:6c:37:7c:71:61:88:1e:fc:c2:19:
fc:77:55:8f:31:1b:d5:c8:80:e6:f4:2f:a0:d5:67:
2b:b3:52:e3:bc:15:87:ef:41:0d:91:47:74:08:b4:
cd:49:7e:2b:84:f8:d5:be:42:b3:56:ce:c3:94:71:
04:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:DA:F1:36:C2:54:FC:DC:98:CD:E6:40:23:A4:D3:D8:88:3C:3E:E6
X509v3 Authority Key Identifier:
keyid:AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/A3C232F4E46011EF82734320C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.231.207.0/24
Signature Algorithm: sha256WithRSAEncryption
95:48:ea:79:19:75:9a:28:2e:c4:3e:44:73:cd:e2:9a:9c:66:
17:eb:7b:81:75:02:ac:f2:76:16:99:c0:92:d8:00:d8:e2:ec:
12:33:59:b2:fd:e2:8d:c4:bd:8a:27:32:f3:3e:1a:ef:ef:86:
b1:4e:98:05:b1:07:ef:76:1a:67:3f:78:bb:74:81:74:49:d5:
14:5f:be:eb:eb:11:11:17:94:79:9b:0c:b9:2c:47:16:3c:04:
5f:a2:0c:90:25:2e:bc:04:c6:fd:28:bd:7c:2b:d6:ad:8f:ce:
2c:be:b2:36:b9:42:10:83:b9:97:10:ed:e2:1c:f9:b7:13:82:
d0:a3:3e:f5:39:39:e7:89:db:d8:04:11:d3:1a:b1:c1:af:4d:
87:8d:e9:83:4c:aa:36:bf:a5:3c:45:fb:ce:b4:c4:9c:14:c4:
a6:36:8a:a2:c9:f2:71:71:27:89:46:3b:4e:e9:70:11:70:84:
ed:0d:1c:cd:d0:ed:4c:4d:16:72:26:2c:d2:57:57:9d:64:83:
65:f3:c5:19:9e:e7:8f:45:59:56:23:3a:c8:f2:2f:2e:9e:bc:
44:4e:e0:09:54:3f:ec:31:d0:44:8a:52:ac:05:4b:ee:ec:5d:
57:f9:e3:51:17:c9:4a:7a:fd:35:77:cf:1a:29:69:fe:78:80:
3f:68:ec:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:08:58 2025 by rpki-client