Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/451C283AFE4911ED9352E438C4F9AE02.roa
File: 451C283AFE4911ED9352E438C4F9AE02.roa (raw, json)
Hash identifier: 9xj2eLyG/tdesiN53tFy07gS2PXLIBFRo+Pfj6Aj7f4=
Subject key identifier: 60:89:63:2D:86:FF:E7:AE:D9:94:F9:4A:01:FD:45:92:09:7C:96:87
Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4
Certificate serial: 0C73
Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/451C283AFE4911ED9352E438C4F9AE02.roa
Signing time: Wed 12 Feb 2025 19:27:07 +0000
ROA not before: Wed 12 Feb 2025 19:27:07 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 394811
IP address blocks: 203.23.176.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3187 (0xc73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9174EB5
Validity
Not Before: Feb 12 19:27:07 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67acf60b-e7d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a4:62:6a:23:13:31:a4:d4:7c:45:9a:e3:0b:
f9:69:ab:57:5e:12:f7:bf:9d:00:14:63:d3:7e:7c:
fe:d1:2a:1f:b4:81:1e:39:3d:45:19:c4:ac:83:18:
c1:3c:7d:3e:95:02:44:d0:f8:44:db:77:8c:3a:c1:
4c:2d:24:30:4a:f3:b9:74:43:e6:b6:44:e4:70:8a:
a8:78:aa:5e:09:89:9e:49:0c:51:9e:72:ae:80:24:
f1:e5:4f:52:a0:af:19:9b:c7:2c:54:41:c5:d3:3e:
27:e4:55:dd:67:91:7a:78:b3:ba:91:d3:55:e4:e8:
a6:55:95:9a:ae:6d:15:60:8c:35:34:52:b2:58:75:
f2:57:27:49:9d:ec:6d:ca:f0:6f:1d:4c:d3:85:5c:
04:2c:a7:50:45:9a:d0:71:27:b7:a2:97:17:0f:37:
1f:c3:46:89:eb:79:5e:23:9c:e3:18:9b:71:fa:fb:
a1:7c:db:cf:61:65:37:02:26:50:6f:4d:5c:2b:df:
cc:f8:ab:d2:e6:95:df:fe:4f:41:07:76:d2:87:0d:
e7:ad:65:9f:8f:c4:c4:fa:84:56:ae:9b:77:39:9a:
7b:1a:d7:4e:80:fd:3a:cc:9b:05:0d:fd:c9:f3:d6:
98:b6:b8:6a:2f:6d:8d:2c:7f:4d:7d:01:df:4e:14:
41:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:89:63:2D:86:FF:E7:AE:D9:94:F9:4A:01:FD:45:92:09:7C:96:87
X509v3 Authority Key Identifier:
keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/451C283AFE4911ED9352E438C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.23.176.0/24
Signature Algorithm: sha256WithRSAEncryption
20:05:f0:b1:d4:ee:55:c8:a5:e2:ec:d7:c2:62:5b:41:e9:4d:
56:32:e3:9d:7f:f9:15:d1:07:9a:03:27:36:0a:5e:99:38:cc:
4e:45:f9:0d:61:cc:91:87:0d:39:c6:0b:2c:c2:b7:45:e3:29:
02:87:52:85:7f:6b:fa:dd:1b:c8:31:72:9a:5a:1f:15:ee:c2:
f9:ec:9a:94:29:c0:42:ab:cc:b5:94:0d:f8:a4:b7:ca:0b:a3:
04:bd:3a:a0:ca:b3:36:87:3a:05:c8:5e:3f:98:4f:93:30:58:
46:8b:fa:a4:8d:e6:e0:2a:25:05:bc:27:c8:e0:c7:cd:c3:96:
04:92:75:70:20:6a:58:79:0c:9e:e7:08:aa:a4:3d:eb:23:5a:
22:06:81:aa:8c:db:6d:c6:fd:5d:1f:76:4c:1c:b0:14:73:25:
2d:2e:49:34:1a:5e:e3:16:0a:76:b1:7a:4e:e0:45:dc:e5:04:
80:85:42:c7:f4:59:64:b6:a6:b9:89:c5:9c:eb:e3:78:68:9c:
6a:1b:02:78:90:bd:f9:d6:b2:12:5e:83:d7:78:d4:23:b5:f9:
0c:8e:3f:8c:fd:7b:c6:5e:d4:8a:a3:7f:f0:c6:5c:66:ca:f4:
b3:76:6e:21:0e:60:2e:7e:87:c3:b4:a9:fa:4b:5a:ab:bc:9e:
59:37:50:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:48:39 2025 by rpki-client