Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D897/097711925AD511EB945C4B36C4F9AE02/9CC98174539711EEA9B2324DC4F9AE02.roa
File: 9CC98174539711EEA9B2324DC4F9AE02.roa (raw, json)
Hash identifier: jIuIPn8j5ZccqDe120+/qUjhEXWCn1vWyx6axQilbV8=
Subject key identifier: 1B:DA:5C:BB:DE:7E:C8:D3:48:18:E3:AD:BF:D6:86:85:97:1B:64:14
Certificate issuer: /CN=A915D897/serialNumber=20465A3A9C0837E7B6883073371DBA09222FBF4A
Certificate serial: 0672
Authority key identifier: 20:46:5A:3A:9C:08:37:E7:B6:88:30:73:37:1D:BA:09:22:2F:BF:4A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEZaOpwIN-e2iDBzNx26CSIvv0o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915D897/097711925AD511EB945C4B36C4F9AE02/9CC98174539711EEA9B2324DC4F9AE02.roa
Signing time: Sat 30 Nov 2024 22:11:59 +0000
ROA not before: Sat 30 Nov 2024 22:11:59 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 149814
IP address blocks: 203.26.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1650 (0x672)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915D897
Validity
Not Before: Nov 30 22:11:59 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=674b8daf-3fb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:10:80:1e:b5:ed:3e:8f:27:d0:b5:9f:1e:0c:
72:50:46:bc:ab:18:95:cf:c8:db:c4:08:d8:c1:34:
d7:68:04:5f:cb:b4:fe:28:f5:54:d6:38:08:79:52:
cb:1f:a2:3f:96:84:a1:00:b5:c6:dc:f8:db:36:52:
95:7d:19:df:36:08:6a:12:76:82:40:23:b1:4a:23:
87:2d:13:17:9d:5e:38:be:b4:65:e4:02:b0:df:de:
18:36:0c:7d:16:72:2b:9c:bb:c2:d1:76:0a:9f:d7:
86:64:a6:26:9f:82:36:ef:9f:14:f9:31:27:b7:6c:
bd:20:af:ec:e6:98:95:ae:8c:21:ae:1c:34:e7:b8:
10:5a:65:86:46:12:88:0a:04:56:07:77:b8:1f:a0:
fe:38:ae:c6:b8:94:27:56:6b:07:16:79:6c:57:75:
61:0f:89:0d:82:40:41:1f:cb:65:12:51:d8:d6:49:
70:b0:cd:ea:1e:0f:76:8f:52:5c:ce:28:aa:77:ee:
a4:db:c1:f8:d3:17:e3:0b:55:10:73:91:f3:27:b0:
37:fb:da:c8:fc:04:cb:4b:a8:88:34:3c:df:d1:bf:
28:51:44:0f:88:72:3b:e5:8b:70:47:dd:a2:fc:3d:
46:4c:b0:26:57:66:17:ce:23:42:0f:8e:c6:b8:96:
28:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:DA:5C:BB:DE:7E:C8:D3:48:18:E3:AD:BF:D6:86:85:97:1B:64:14
X509v3 Authority Key Identifier:
keyid:20:46:5A:3A:9C:08:37:E7:B6:88:30:73:37:1D:BA:09:22:2F:BF:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915D897/097711925AD511EB945C4B36C4F9AE02/IEZaOpwIN-e2iDBzNx26CSIvv0o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEZaOpwIN-e2iDBzNx26CSIvv0o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D897/097711925AD511EB945C4B36C4F9AE02/9CC98174539711EEA9B2324DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.26.184.0/24
Signature Algorithm: sha256WithRSAEncryption
42:b7:75:dd:86:a1:83:46:16:a0:63:37:54:13:31:26:4f:74:
78:a7:38:42:c9:b4:e1:b0:54:99:c1:0b:b1:59:92:93:9e:57:
a8:b0:cc:e9:57:7e:1b:dc:70:02:5b:12:8b:7f:7b:d2:57:e8:
e0:1b:1c:9b:8a:fe:0c:9f:18:23:c3:40:c6:e1:c0:9e:2d:e0:
32:04:0f:66:5f:15:15:a1:83:ab:88:11:25:56:53:42:6f:ff:
47:e7:cf:10:cc:71:3e:31:32:a2:be:fc:06:b2:a0:75:ba:83:
26:27:55:6d:81:e6:ba:fd:c1:5b:13:d2:2c:1d:e5:92:39:66:
c8:8c:e3:2c:5c:07:34:bd:31:7b:dd:60:8d:ba:95:83:0a:cb:
30:90:b0:a9:42:1a:e0:ed:b6:2d:f5:54:82:4d:88:bc:f5:d5:
da:e2:73:d1:d0:21:43:1e:d5:49:89:54:bc:b7:e2:5d:31:cf:
f2:14:4e:04:09:fe:83:e9:d0:e9:fc:b6:bf:e9:1a:be:93:b7:
71:c9:d9:c2:cc:51:ed:dd:a8:40:b8:4c:fa:1d:ee:0e:66:94:
7b:77:98:4b:cd:52:31:36:90:cc:ef:ef:e4:f0:e2:14:72:e8:
58:71:eb:8b:37:86:cc:3e:63:fb:94:24:4f:46:a3:72:26:99:
2b:8a:2a:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 13:59:04 2025 by rpki-client