Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B2CD/DE972FEE846511EEBDCC2D65C4F9AE02/203223B6E05211EFBD383A20C4F9AE02.roa
File: 203223B6E05211EFBD383A20C4F9AE02.roa (raw, json)
Hash identifier: X+YJftYaEHw8oxCuCywtK3Q0DtoIPEzEdc8O0A8n2vk=
Subject key identifier: F6:39:DD:67:8B:7F:E5:27:C3:4A:9F:F5:31:2A:E7:5A:E0:54:67:25
Certificate issuer: /CN=A916B2CD/serialNumber=AC332130B1C09FD4AB237495A4EA9634B74C12BA
Certificate serial: FC
Authority key identifier: AC:33:21:30:B1:C0:9F:D4:AB:23:74:95:A4:EA:96:34:B7:4C:12:BA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rDMhMLHAn9SrI3SVpOqWNLdMEro.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916B2CD/DE972FEE846511EEBDCC2D65C4F9AE02/203223B6E05211EFBD383A20C4F9AE02.roa
Signing time: Mon 03 Feb 2025 04:28:09 +0000
ROA not before: Mon 03 Feb 2025 04:28:09 +0000
ROA not after: Mon 02 Jun 2025 00:00:00 +0000
asID: 4820
IP address blocks: 203.3.176.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 252 (0xfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916B2CD
Validity
Not Before: Feb 3 04:28:09 2025 GMT
Not After : Jun 2 00:00:00 2025 GMT
Subject: CN=67a045d9-5e13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4e:15:34:9b:9a:61:2b:61:6f:9f:2c:89:4f:
a9:0d:33:9c:10:fb:30:f5:a2:96:d7:c9:70:ae:70:
f8:6e:3f:eb:12:b8:29:27:4e:c7:bd:90:10:0a:40:
30:0f:0e:94:e5:d9:7b:97:dd:89:f8:53:d7:6a:90:
8d:9b:57:d0:d7:92:87:d8:35:f8:2a:2d:db:f8:3f:
ef:6e:0e:4e:94:22:6a:bd:33:52:71:df:a4:1c:54:
43:7e:f1:28:63:ee:39:e5:b7:a0:00:91:a0:7c:ef:
64:e1:00:7c:81:88:8b:77:aa:7f:be:e2:eb:30:bc:
78:49:e1:fd:2d:5e:c4:96:8e:68:ff:35:3e:0b:04:
25:da:8a:8b:34:fd:15:b4:de:34:77:74:c3:ad:a3:
27:1e:25:63:87:6d:a9:9b:8b:11:7c:b6:d8:ca:25:
9e:98:d2:a2:49:bc:36:f6:b0:5b:cf:db:fe:8b:1e:
8d:bc:e1:50:80:5a:c6:98:53:19:70:e9:57:01:ef:
45:a7:4f:db:23:7b:88:0d:06:b8:e0:9f:18:4c:e7:
74:e4:d7:5f:cc:11:0b:64:95:cd:c2:cd:c8:01:0a:
16:1f:c2:a1:94:8f:c1:ed:2a:23:49:0a:f3:00:0d:
18:46:6c:6d:ac:f6:03:23:89:35:3a:59:d6:e0:41:
f3:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:39:DD:67:8B:7F:E5:27:C3:4A:9F:F5:31:2A:E7:5A:E0:54:67:25
X509v3 Authority Key Identifier:
keyid:AC:33:21:30:B1:C0:9F:D4:AB:23:74:95:A4:EA:96:34:B7:4C:12:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916B2CD/DE972FEE846511EEBDCC2D65C4F9AE02/rDMhMLHAn9SrI3SVpOqWNLdMEro.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rDMhMLHAn9SrI3SVpOqWNLdMEro.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B2CD/DE972FEE846511EEBDCC2D65C4F9AE02/203223B6E05211EFBD383A20C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.3.176.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:86:1e:3e:cd:e9:24:e5:4d:f3:70:a5:84:a3:78:1c:9f:5e:
9c:a9:ae:91:75:a0:86:06:51:b2:d0:67:10:5a:56:fe:bf:ee:
53:e6:f7:a9:49:ee:66:1b:bb:d5:72:ff:64:25:e5:82:4b:a8:
f5:f3:ea:c7:dd:78:4d:e8:47:7a:e5:0a:0e:f0:77:f9:10:53:
99:21:00:41:7d:e3:b8:23:60:1e:19:1c:b8:75:68:db:93:fa:
ca:71:25:62:6f:88:53:48:6c:3d:37:dc:32:94:ad:78:46:68:
2f:7c:8e:fc:b2:c1:b4:87:f9:b8:ea:09:67:4b:56:ec:cb:69:
c0:c9:3c:50:03:6b:ec:9f:64:b6:4c:e2:17:a4:43:67:36:19:
79:e2:30:cd:81:10:23:68:15:8c:df:b7:1e:8e:2f:65:f8:9b:
a2:da:30:3a:e8:8c:1b:83:2e:c7:08:d2:e9:50:bc:87:ad:f7:
5b:9d:6c:d0:08:76:39:50:8c:4e:90:d9:08:4f:08:1f:4a:56:
47:26:29:44:06:c0:48:a2:7f:14:01:b3:52:a7:c6:3c:1b:92:
a1:b1:7b:19:90:f2:06:43:30:fe:9f:1e:52:a2:cd:a8:9c:d6:
5c:01:c0:e3:50:1c:fd:7f:ad:4b:3c:f7:f7:60:90:6c:88:c8:
54:14:76:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:16:20 2025 by rpki-client