Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175866/F19D2202AFD911EE84C6F27BC4F9AE02/A4F5FB1ED0BC11EE8238E71AC4F9AE02.roa
File: A4F5FB1ED0BC11EE8238E71AC4F9AE02.roa (raw, json)
Hash identifier: 80qu5haW6721xx7xV/uutyDDcTxrv0bPQaiLvhProi4=
Subject key identifier: C7:E5:03:19:54:7F:50:63:B8:9E:3E:DD:D4:2B:7C:C2:20:79:C4:0F
Certificate issuer: /CN=A9175866/serialNumber=D595542E520F48AF75E77903EA66A39C64C1D0A3
Certificate serial: E2
Authority key identifier: D5:95:54:2E:52:0F:48:AF:75:E7:79:03:EA:66:A3:9C:64:C1:D0:A3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ZVULlIPSK9153kD6majnGTB0KM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9175866/F19D2202AFD911EE84C6F27BC4F9AE02/A4F5FB1ED0BC11EE8238E71AC4F9AE02.roa
Signing time: Sat 15 Mar 2025 04:50:40 +0000
ROA not before: Sat 15 Mar 2025 04:50:40 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 44444
IP address blocks: 116.50.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226 (0xe2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9175866
Validity
Not Before: Mar 15 04:50:40 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67d50720-d839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:79:43:1d:d3:a2:b0:35:af:04:e4:9b:c4:80:
22:c0:8d:7d:4d:88:dc:78:c5:3c:b9:7b:f5:c2:8e:
39:62:c1:f3:44:c3:50:63:fd:30:99:d5:4b:2f:4e:
fd:7e:1d:88:ba:11:7b:6a:05:4b:1b:30:76:fb:93:
07:6f:b6:c7:67:3e:e9:f5:a7:b4:48:a6:8e:03:7d:
66:38:9f:36:38:51:ac:7b:8a:83:72:89:82:42:a1:
ac:bd:f8:d6:a2:6b:96:c3:7f:20:d5:3f:d9:54:13:
79:17:b6:d2:ff:83:72:70:df:b6:b5:bb:ba:b5:77:
0b:96:8b:95:8c:c4:cd:56:03:8a:06:3b:dc:4a:15:
6c:8f:53:38:57:f6:11:6f:f7:dc:59:94:74:2e:7d:
d5:74:04:54:51:17:12:be:b8:0e:21:1c:98:12:70:
37:1d:e7:55:09:b1:f5:ea:86:3f:73:51:21:ce:2d:
18:04:4f:75:f1:8d:fe:45:5b:73:cf:6e:de:d8:60:
ab:ef:59:59:0d:40:09:68:1b:0d:bb:a5:07:84:39:
79:3f:a4:02:c8:16:d7:3c:f1:00:01:68:cf:33:8f:
b3:cf:d8:e8:43:ed:2f:21:e0:3c:a6:f5:a4:18:6c:
b5:a4:3f:0b:45:4e:e9:09:86:1f:77:65:17:38:54:
8c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E5:03:19:54:7F:50:63:B8:9E:3E:DD:D4:2B:7C:C2:20:79:C4:0F
X509v3 Authority Key Identifier:
keyid:D5:95:54:2E:52:0F:48:AF:75:E7:79:03:EA:66:A3:9C:64:C1:D0:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9175866/F19D2202AFD911EE84C6F27BC4F9AE02/1ZVULlIPSK9153kD6majnGTB0KM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ZVULlIPSK9153kD6majnGTB0KM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175866/F19D2202AFD911EE84C6F27BC4F9AE02/A4F5FB1ED0BC11EE8238E71AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.50.63.0/24
Signature Algorithm: sha256WithRSAEncryption
59:ef:c4:20:69:8f:66:fc:c4:a8:f2:dd:fe:1f:d5:2c:d0:57:
27:4c:82:a8:5b:fb:6f:28:d8:81:79:e5:27:4b:ae:f5:37:26:
be:e4:01:b7:2a:6b:47:b6:22:7e:99:de:f7:e1:c0:ce:51:45:
0c:df:d0:18:e0:80:78:47:d7:8e:9a:9e:70:76:2c:b1:83:c3:
38:d2:3a:62:af:7e:28:cd:bc:7a:fc:84:7f:f5:b7:db:bb:11:
26:1c:95:07:95:3b:11:04:29:00:82:e5:76:bb:35:8d:b7:17:
ba:90:36:e8:d8:55:91:53:60:f8:c5:db:c7:1e:11:80:03:cd:
55:30:7d:8e:2b:10:a0:41:ca:44:90:39:cf:76:1f:46:28:5a:
61:7c:ab:a6:87:6a:06:ff:2a:fa:38:05:d9:0d:76:93:3f:90:
fd:da:51:00:91:05:bf:56:0a:a5:b7:36:63:55:a8:ec:5c:ee:
ab:0a:50:b1:cb:ba:b4:5f:4f:4a:34:ac:5b:ef:c6:77:4f:0d:
d4:81:82:af:2d:0d:f4:23:61:96:74:dd:79:a9:c5:08:56:58:
ed:eb:1e:b1:a6:c6:38:cf:c6:68:65:69:13:3b:2d:97:c3:57:
91:d0:ef:de:da:15:4e:08:94:11:0b:c8:5c:ad:16:56:98:75:
f7:ce:c4:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:03:23 2025 by rpki-client