Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D897/097711925AD511EB945C4B36C4F9AE02/45490AB25AD611EB946A2C37C4F9AE02.roa
File: 45490AB25AD611EB946A2C37C4F9AE02.roa (raw, json)
Hash identifier: bm3yECqfcINDVceeUuebyksKLDGjoVN5Jq0eB4u8roc=
Subject key identifier: 6A:7B:D5:58:D7:37:6A:C0:14:6C:8F:C7:ED:57:F9:A5:E0:A5:74:91
Certificate issuer: /CN=A915D897/serialNumber=20465A3A9C0837E7B6883073371DBA09222FBF4A
Certificate serial: 0671
Authority key identifier: 20:46:5A:3A:9C:08:37:E7:B6:88:30:73:37:1D:BA:09:22:2F:BF:4A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEZaOpwIN-e2iDBzNx26CSIvv0o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915D897/097711925AD511EB945C4B36C4F9AE02/45490AB25AD611EB946A2C37C4F9AE02.roa
Signing time: Sat 30 Nov 2024 22:11:58 +0000
ROA not before: Sat 30 Nov 2024 22:11:58 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 1221
IP address blocks: 203.26.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1649 (0x671)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915D897
Validity
Not Before: Nov 30 22:11:58 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=674b8dae-b199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:73:a8:6a:67:21:1e:ff:db:4a:eb:e1:0f:fe:
08:b4:89:6d:5e:29:63:5b:4a:62:a0:03:76:32:42:
d1:82:25:cc:27:3d:58:e2:bf:93:90:7f:e0:60:b1:
bd:82:9a:12:56:ba:da:09:8f:24:a0:f5:77:b1:f5:
98:9c:63:13:20:da:a4:ab:e0:c4:6e:5b:04:16:90:
dc:50:b9:47:ac:b5:a5:1f:b9:b4:dd:fa:18:4a:88:
f8:32:34:7d:19:3d:d5:e4:b1:d8:19:50:65:4e:72:
9b:42:f5:50:d3:f0:c3:50:c2:12:5b:a8:5a:f3:7d:
88:3c:ac:61:e4:65:1c:a9:e3:09:67:c0:6c:4f:ef:
c5:f7:f5:49:f1:15:d0:99:49:c3:5c:ea:27:5e:96:
66:27:1c:38:30:7b:08:1f:30:80:6e:26:eb:99:8c:
e1:99:d3:a8:cc:b8:1a:d8:81:eb:49:a1:36:fc:83:
fd:f7:ca:fd:9e:9d:53:5d:9e:ed:e6:db:7d:2f:dc:
0d:72:9d:29:bf:e9:e9:9a:b6:9d:ba:b2:32:20:e5:
df:1d:48:3b:dc:46:ff:dd:5c:c6:cc:72:9c:3b:f3:
eb:c3:d2:03:1e:91:d6:67:54:e1:cc:39:09:9d:de:
42:30:75:cd:43:5b:ad:e6:49:b8:0b:d8:00:47:8d:
d9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7B:D5:58:D7:37:6A:C0:14:6C:8F:C7:ED:57:F9:A5:E0:A5:74:91
X509v3 Authority Key Identifier:
keyid:20:46:5A:3A:9C:08:37:E7:B6:88:30:73:37:1D:BA:09:22:2F:BF:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915D897/097711925AD511EB945C4B36C4F9AE02/IEZaOpwIN-e2iDBzNx26CSIvv0o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEZaOpwIN-e2iDBzNx26CSIvv0o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D897/097711925AD511EB945C4B36C4F9AE02/45490AB25AD611EB946A2C37C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.26.184.0/24
Signature Algorithm: sha256WithRSAEncryption
54:9e:b6:fd:38:25:ba:38:14:43:eb:d3:bc:24:25:6e:ba:6b:
a6:83:ec:8e:09:b2:23:68:11:33:07:66:71:de:88:32:2a:fe:
af:7c:c0:1e:95:76:46:1e:86:27:62:e3:7d:87:ff:69:45:4a:
11:0f:d3:36:c7:d1:c9:2f:c7:0d:b9:f0:fd:63:58:fc:03:aa:
ba:9c:43:af:db:df:30:77:e1:37:67:b9:9e:c7:b5:a3:f1:cd:
7a:b6:a4:28:41:71:b8:a2:f7:8b:10:bc:ab:76:a4:4d:82:60:
6c:4e:8a:b9:06:c1:d7:1b:59:ef:e9:d8:a9:c5:93:07:32:49:
63:7f:a1:3b:d3:e2:b2:d9:65:29:d7:0a:9d:ca:b1:13:e0:61:
6b:11:26:24:b0:d1:05:0b:a6:ff:1a:e8:e4:c1:32:7a:8f:6b:
7e:7d:ad:22:c3:6d:48:00:f4:0d:81:b8:38:d9:03:3e:f8:32:
04:61:66:f6:18:6b:24:28:99:52:80:ac:b1:e5:b2:a5:92:4b:
86:b0:04:45:e8:ee:b2:3d:f6:72:94:29:17:19:46:34:fa:ca:
7c:b2:b5:fa:73:07:ce:b3:28:10:e8:63:8c:a9:fd:70:e6:8d:
8c:49:92:fe:8f:c6:a5:9f:1e:5f:56:a1:db:80:f3:e4:d6:72:
b7:4e:f8:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 10:46:54 2025 by rpki-client