Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/B94E87EAD44911ED88A2367FC4F9AE02.roa
File: B94E87EAD44911ED88A2367FC4F9AE02.roa (raw, json)
Hash identifier: 95TYzLOqwMphVUCVsji8mDMvFKrsCaokY8ysHX5ZUv0=
Subject key identifier: 76:1A:3D:7D:6E:6B:6C:43:FC:E9:E5:21:1B:EF:53:38:9A:00:81:BE
Certificate issuer: /CN=A9179CA8/serialNumber=D6961ADA8CD577CC33D71A9A2DC81B0C1925AC98
Certificate serial: 010D
Authority key identifier: D6:96:1A:DA:8C:D5:77:CC:33:D7:1A:9A:2D:C8:1B:0C:19:25:AC:98
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/B94E87EAD44911ED88A2367FC4F9AE02.roa
Signing time: Tue 03 Sep 2024 05:18:19 +0000
ROA not before: Tue 03 Sep 2024 05:18:19 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 131225
IP address blocks: 202.1.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 269 (0x10d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9179CA8
Validity
Not Before: Sep 3 05:18:19 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66d69c1a-51e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ba:64:ee:a8:c2:be:f5:be:1b:c2:88:c3:db:
ad:41:26:ab:be:c0:ce:59:47:62:3d:cd:e1:f7:5b:
76:bc:16:ef:17:f3:e2:5b:55:64:d0:e4:5a:da:57:
7b:09:be:33:a5:0b:13:2b:f9:b6:f4:e2:a8:9a:99:
90:2c:f8:1f:7b:8a:77:c2:a0:dd:78:73:bc:78:47:
21:90:3d:0a:09:66:18:4a:dd:fa:26:2a:ab:9c:b8:
9c:fb:36:dd:f5:09:06:c5:e8:e5:90:a2:08:d3:7c:
02:7f:58:01:1e:96:c4:27:ab:68:2e:59:99:1c:c1:
53:d9:24:89:c9:0b:c6:8b:ca:a2:1f:49:bb:8e:f9:
e4:87:86:d7:b2:3c:84:88:7a:ba:99:b4:15:07:1f:
78:cb:8e:7a:d0:8b:b4:66:58:12:f4:b9:fb:31:8a:
fd:2a:fe:bc:91:70:ab:26:aa:47:51:d8:06:d8:88:
d3:34:ec:db:3e:91:6d:6e:f0:be:44:b1:07:79:e2:
54:ae:99:1e:24:9b:fe:34:43:90:c3:9e:a4:b2:9f:
57:28:eb:d6:92:36:e3:5d:1b:5a:ba:b2:41:21:65:
c2:81:9a:e7:de:32:9a:b6:62:2c:a5:23:45:12:9c:
17:bf:8b:a5:00:b6:72:44:14:4f:e5:72:37:ec:ab:
13:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:1A:3D:7D:6E:6B:6C:43:FC:E9:E5:21:1B:EF:53:38:9A:00:81:BE
X509v3 Authority Key Identifier:
keyid:D6:96:1A:DA:8C:D5:77:CC:33:D7:1A:9A:2D:C8:1B:0C:19:25:AC:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/B94E87EAD44911ED88A2367FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.1.233.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:2e:0e:8d:ae:47:96:aa:ce:16:f5:e9:08:a1:79:b3:c3:45:
3f:10:14:68:c9:e8:f2:93:46:b7:58:56:54:8e:93:15:77:36:
c0:79:a0:43:16:13:1f:2c:f0:32:54:42:57:63:33:98:bb:da:
74:47:94:bd:f4:00:34:ec:7a:27:3a:ab:c1:e8:e2:41:34:a3:
82:1b:4b:e2:2d:36:c5:bc:c7:9a:c6:f9:2b:de:07:44:ed:eb:
d6:db:50:7e:0b:5c:1e:36:ae:25:42:09:c0:b3:7d:6d:32:65:
e0:c9:50:6b:e9:0b:c0:ab:2f:0e:a2:43:67:0d:89:bb:97:9f:
04:bc:9b:a6:de:83:89:96:ad:72:84:17:50:26:35:65:91:31:
6c:71:3d:cb:aa:9b:7b:8a:64:82:44:ff:b9:c5:ab:fc:b0:6e:
40:9a:9e:31:31:34:fa:85:b9:ad:25:01:e0:db:a3:24:28:cc:
f9:98:0f:2c:44:f0:12:74:13:c5:ce:d7:f7:1e:2e:86:2e:a8:
7c:29:88:a6:36:23:8c:0e:35:96:40:0a:ff:3e:70:ff:4f:01:
64:1e:13:d1:0f:50:66:df:29:8c:78:0c:97:49:ed:b0:ef:80:
c8:41:68:11:9e:a8:73:00:fa:dc:da:88:ca:aa:11:55:93:68:
ca:c0:77:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:49:27 2025 by rpki-client