Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/482C95F68DB811E98ACC9F7EC4F9AE02.roa
File: 482C95F68DB811E98ACC9F7EC4F9AE02.roa (raw, json)
Hash identifier: zEScPtSmfxNjAFuYUiCbjBlCrAeiT/w5Td2/JrWEkDk=
Subject key identifier: 7A:0A:64:78:86:40:E7:3B:48:1F:F0:36:BF:31:20:5A:BC:D6:B1:6A
Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A
Certificate serial: 34E9
Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/482C95F68DB811E98ACC9F7EC4F9AE02.roa
Signing time: Mon 22 Jul 2024 14:40:37 +0000
ROA not before: Mon 22 Jul 2024 14:40:37 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 55325
IP address blocks: 203.209.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13545 (0x34e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91697FA
Validity
Not Before: Jul 22 14:40:37 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=669e6f64-5ada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d0:8a:e7:df:4d:d4:64:4a:14:cd:a0:ad:9a:
70:0b:c5:6a:a0:56:01:68:df:2d:7a:7b:30:db:34:
9e:38:42:37:ff:aa:a5:96:13:7d:a9:ec:33:64:18:
e0:29:ac:8b:c9:23:f5:96:42:50:5f:ae:e0:eb:39:
75:21:9f:f2:c4:7d:de:5c:94:6b:b6:c2:75:9b:04:
af:7b:9b:60:f7:46:7e:9d:28:d0:0a:45:11:66:9f:
5c:2a:37:00:4c:0e:5a:c5:0b:d8:08:41:a9:f9:d9:
b7:f0:4b:87:cd:a7:cc:50:83:79:a7:a9:ca:c3:53:
a8:92:1c:86:cd:70:f2:7a:b9:6d:54:b4:09:ec:36:
8b:a9:32:35:c7:2c:57:ce:7a:4e:d4:23:d7:d3:e5:
f7:7b:a6:ac:13:13:8a:76:9e:a6:09:53:5a:63:e1:
85:61:53:56:4c:2f:4e:d1:27:a2:47:84:ff:1a:a7:
0d:ed:5a:5f:26:26:2f:1b:e5:2e:8e:9d:46:2b:86:
31:1b:80:c3:f2:b8:bb:e3:33:5c:c1:e1:98:68:f3:
24:2c:82:bd:a1:80:10:66:67:91:a6:34:f1:6e:ed:
e9:50:92:3c:b5:ef:38:9a:a1:7a:b5:2d:16:11:c8:
88:f8:6b:d0:df:d2:c4:e9:ed:47:43:6b:10:0d:34:
68:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:0A:64:78:86:40:E7:3B:48:1F:F0:36:BF:31:20:5A:BC:D6:B1:6A
X509v3 Authority Key Identifier:
keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/482C95F68DB811E98ACC9F7EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.209.124.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:07:60:0a:f3:a5:ea:a2:77:7c:7c:45:03:18:0f:9f:49:c1:
fb:d6:05:fd:ae:26:1c:58:a2:81:aa:94:8c:9f:5b:0f:a0:85:
67:6d:94:a0:25:4b:74:77:7b:0e:07:20:22:3d:27:9e:52:7d:
64:3c:35:0e:33:53:0c:84:fb:bc:1d:88:c1:0d:96:15:af:09:
7b:3c:1d:fa:24:34:59:48:39:09:f1:80:34:4b:99:fa:37:35:
2a:d8:93:1a:a3:03:1f:6a:57:08:78:2f:5c:71:fe:a7:02:7b:
4d:bc:9f:1f:c9:ae:b0:f4:25:fc:03:23:20:6e:9c:27:3b:33:
03:09:3e:52:f0:19:53:81:19:dc:c5:82:d2:90:f0:b3:3e:d9:
e0:b3:59:a8:05:4c:80:4c:6b:e8:43:d1:e3:52:2d:c6:ee:5e:
f7:7e:ea:db:a4:c4:40:ac:6d:37:ab:0d:78:f8:d6:5a:d6:80:
17:65:8b:0d:24:c9:76:fa:05:8b:06:08:db:64:bc:89:e1:b8:
90:0e:df:3e:3e:a2:28:d4:3c:af:7e:a9:ff:49:f6:90:6b:26:
66:c8:95:cf:ba:4d:d4:31:07:e0:1d:9f:b2:08:2e:87:26:04:
a6:84:05:97:f0:c6:ec:1d:00:71:16:c6:88:79:03:c8:72:59:
00:bf:a8:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:19:37 2025 by rpki-client