Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168250/04E7193E422011EABCF54214C4F9AE02/57A0244A58CE11EE89D0D922C4F9AE02.roa
File: 57A0244A58CE11EE89D0D922C4F9AE02.roa (raw, json)
Hash identifier: G1yG4G5GnHFk44oVX8zc2tz6fnBhfGQCQ8DtzZirWBc=
Subject key identifier: FB:FC:B6:B5:70:E3:14:11:EF:26:F5:73:42:CC:4D:51:C8:B4:F3:3A
Certificate issuer: /CN=A9168250/serialNumber=A45A035D655FB475A34F437F9C0AA53211EBB376
Certificate serial: 0A0F
Authority key identifier: A4:5A:03:5D:65:5F:B4:75:A3:4F:43:7F:9C:0A:A5:32:11:EB:B3:76
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pFoDXWVftHWjT0N_nAqlMhHrs3Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9168250/04E7193E422011EABCF54214C4F9AE02/57A0244A58CE11EE89D0D922C4F9AE02.roa
Signing time: Tue 30 Jan 2024 20:38:51 +0000
ROA not before: Tue 30 Jan 2024 20:38:51 +0000
ROA not after: Sat 01 Jun 2024 00:00:00 +0000
asID: 24459
IP address blocks: 202.37.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2575 (0xa0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9168250
Validity
Not Before: Jan 30 20:38:51 2024 GMT
Not After : Jun 1 00:00:00 2024 GMT
Subject: CN=65b95e5b-0239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:90:22:4c:5c:64:88:28:2c:78:07:f6:f5:f0:
95:23:76:c1:e0:e4:e2:6d:76:96:97:18:6a:b3:db:
7f:29:c6:f1:53:88:c3:fb:f5:01:1a:5c:3c:19:5d:
e0:68:c3:bc:c8:d4:7c:83:09:5a:b1:ef:bc:a8:4c:
3d:b8:d6:1c:cc:f2:c1:f6:28:16:24:19:1f:08:ac:
cc:b4:42:29:66:c6:b5:a0:f1:e0:a8:a3:f3:1b:e3:
5b:d7:68:eb:87:2a:5e:c7:7c:08:5c:c4:c2:cd:17:
0a:f4:38:e4:81:97:eb:13:7b:f7:0e:1d:e8:61:ec:
99:79:20:a0:05:29:cf:fe:67:57:23:bd:a4:01:c3:
dd:4e:62:08:6d:63:ee:b9:73:58:aa:fe:74:09:9b:
1a:8c:80:40:4b:1c:f8:ab:b5:0c:43:66:16:4f:ae:
91:df:0e:cd:94:f5:dd:0a:42:7e:7f:70:d4:c7:b4:
e2:35:24:94:09:19:f0:88:ac:2a:34:06:18:5d:b7:
3a:ca:a0:a0:94:8f:6e:a5:e5:28:62:6f:2e:2f:f5:
06:89:e3:3f:82:ea:fb:08:63:d2:fd:b5:91:c5:80:
1d:c2:f3:5f:d7:79:1f:05:b7:02:e9:12:53:25:30:
86:ed:db:26:25:8d:39:37:76:33:21:d9:3e:c1:a9:
aa:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:FC:B6:B5:70:E3:14:11:EF:26:F5:73:42:CC:4D:51:C8:B4:F3:3A
X509v3 Authority Key Identifier:
keyid:A4:5A:03:5D:65:5F:B4:75:A3:4F:43:7F:9C:0A:A5:32:11:EB:B3:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9168250/04E7193E422011EABCF54214C4F9AE02/pFoDXWVftHWjT0N_nAqlMhHrs3Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pFoDXWVftHWjT0N_nAqlMhHrs3Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168250/04E7193E422011EABCF54214C4F9AE02/57A0244A58CE11EE89D0D922C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.37.129.0/24
Signature Algorithm: sha256WithRSAEncryption
07:7a:3c:8d:40:7c:e1:bf:cb:b7:4d:86:0c:9c:7d:9b:8e:db:
6b:a8:39:a4:db:ff:2e:1e:c9:09:96:06:17:b5:20:22:be:ad:
bd:d3:56:dc:24:3f:da:b8:0d:39:fe:86:c9:cc:36:18:e8:40:
9f:d9:5c:3a:d0:68:f1:75:15:bc:dc:f1:8e:8b:ce:11:5b:53:
4a:56:fa:e2:1d:84:81:34:66:08:2d:8d:62:70:3f:f6:c2:54:
29:b3:64:bc:81:ed:cb:fc:24:4f:36:18:34:f5:9d:d9:ef:a0:
d2:41:89:c9:ad:b6:ad:72:fa:a7:e8:0f:ae:b3:0b:bb:ba:85:
a2:68:e7:cf:bb:2b:ca:95:01:45:95:87:37:13:83:cb:08:a5:
99:ab:3d:2c:db:df:8f:32:d0:01:a9:62:89:ec:46:31:fb:56:
cd:1d:d9:64:15:b4:4e:31:8a:c1:e9:fe:73:ed:65:56:e4:5d:
80:54:f9:09:e6:22:74:f9:52:33:70:4a:71:2f:9b:83:5c:d2:
cb:fe:e9:cc:12:5d:2d:34:1a:71:17:88:88:0f:56:29:ce:64:
bd:fa:71:4b:d0:58:cd:19:ef:85:5e:72:ff:b6:f1:51:7a:29:
66:82:75:11:14:9f:d6:13:b9:b9:87:62:cc:98:8b:76:6b:89:
18:da:b2:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:46:50 2025 by rpki-client