Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/615256767E1711ED9825061BC4F9AE02.roa
File: 615256767E1711ED9825061BC4F9AE02.roa (raw, json)
Hash identifier: 1T1zjML7UpzAySzaA1xTPw9wcVRmPPrlunnJIXfjacQ=
Subject key identifier: F4:2D:72:25:AB:0F:A4:53:49:D1:AC:09:88:3E:64:71:A5:9A:DF:3A
Certificate issuer: /CN=A9171634/serialNumber=3FC971292CE91A591A8CDFA7D1AE09CA46E03E87
Certificate serial: 32F7
Authority key identifier: 3F:C9:71:29:2C:E9:1A:59:1A:8C:DF:A7:D1:AE:09:CA:46:E0:3E:87
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8lxKSzpGlkajN-n0a4JykbgPoc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/615256767E1711ED9825061BC4F9AE02.roa
Signing time: Sat 17 Dec 2022 14:30:41 +0000
ROA not before: Sat 17 Dec 2022 14:30:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 37989
IP address blocks: 203.123.48.0/21 maxlen: 27
2405:fc00::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13047 (0x32f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9171634
Validity
Not Before: Dec 17 14:30:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=639dd290-ff0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:56:c2:de:b6:9e:92:08:3c:31:01:7e:5b:bf:
62:88:11:27:50:b0:12:3f:e2:3d:28:83:18:6c:65:
59:6f:e0:40:c5:69:ca:9e:2f:ca:9b:de:f9:d9:22:
e2:35:30:0d:21:d4:aa:f1:cd:70:5b:23:30:03:69:
c5:93:e1:ff:78:3c:9a:98:5e:08:08:7b:4d:25:8a:
54:5a:52:aa:82:4d:a3:cb:f6:f3:e7:eb:1c:0e:59:
e4:16:f2:00:1c:b1:95:be:38:ff:97:67:a0:10:82:
2f:9b:92:b3:da:63:6f:15:78:e9:f1:03:bb:df:27:
02:cc:91:c9:8d:af:61:34:b5:c6:fb:db:76:89:cb:
57:5d:da:e4:d3:84:7e:c4:89:c4:07:5e:6a:17:d6:
7e:fc:de:44:b8:85:8a:ed:6d:08:de:f7:c0:49:60:
ef:7d:07:7d:55:c5:b7:e1:9c:9f:f8:43:94:73:b5:
d7:84:46:6e:4f:88:d0:bb:48:18:d1:93:ca:01:85:
d6:74:ae:ce:26:b7:7e:14:8e:8a:6b:0e:7a:43:ce:
47:77:bd:0b:a8:8f:57:66:71:ec:a8:f1:43:af:0b:
8d:2a:3d:ba:6e:65:61:e8:ed:f9:7a:b5:12:b3:aa:
03:6c:e2:16:c2:8d:35:fb:7d:bd:65:ab:a2:29:7f:
d6:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:2D:72:25:AB:0F:A4:53:49:D1:AC:09:88:3E:64:71:A5:9A:DF:3A
X509v3 Authority Key Identifier:
keyid:3F:C9:71:29:2C:E9:1A:59:1A:8C:DF:A7:D1:AE:09:CA:46:E0:3E:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/P8lxKSzpGlkajN-n0a4JykbgPoc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8lxKSzpGlkajN-n0a4JykbgPoc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/615256767E1711ED9825061BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.123.48.0/21
IPv6:
2405:fc00::/32
Signature Algorithm: sha256WithRSAEncryption
0e:0e:bf:fb:01:ef:44:83:2b:e0:47:c1:df:9c:af:ec:6c:46:
d7:64:ba:a2:4e:4f:b0:6e:21:63:af:96:01:0b:5e:d3:02:5e:
aa:82:d3:b9:2e:76:73:98:5e:3a:48:2b:31:8e:a2:d5:f2:97:
af:40:cf:09:2b:e5:54:9e:88:21:3a:2b:75:79:bf:15:da:a7:
83:e2:9a:2b:85:89:9b:de:38:3c:f5:3e:84:39:2b:58:96:76:
71:73:30:9d:73:9c:85:a4:c3:15:84:fb:30:03:66:de:d6:e8:
a8:f1:4c:f8:0b:9f:9d:30:8f:58:c5:d2:a9:a6:a8:5d:f1:20:
53:d8:f6:ff:9e:86:db:25:9f:e5:bd:1b:a7:51:d9:99:3e:bd:
ba:4a:96:da:41:2a:f6:83:77:4c:63:54:01:2b:35:da:36:78:
d8:a9:c7:92:00:a6:ce:fc:fc:29:b7:94:45:d7:48:d5:49:7e:
2a:fe:9c:35:ca:42:6b:98:2b:d6:f4:5d:23:dd:92:8e:21:38:
db:8f:3f:04:b1:1a:f9:76:f1:5f:8c:06:87:29:68:44:8a:aa:
1b:40:bc:f2:62:eb:2b:d1:8c:d2:f2:5e:6b:36:3f:27:bc:1d:
da:d0:a4:c1:fe:0f:18:60:51:ea:f4:42:b7:72:ab:c1:f7:99:
a6:26:32:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 13:42:55 2025 by rpki-client