Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C287/68D88184248511EF94236572C4F9AE02/32D99666AC4A11EF9274532EC4F9AE02.roa
File: 32D99666AC4A11EF9274532EC4F9AE02.roa (raw, json)
Hash identifier: Nzyd2DsNinKqCciunVDpIPG2iPV0swCv9w/zsUUKg3A=
Subject key identifier: 44:F8:73:E8:1A:B8:D6:18:53:D0:FB:E1:81:7E:92:C6:4E:31:59:41
Certificate issuer: /CN=A918C287/serialNumber=4239117A25582D0067DE4D0CEDA5ABA5CC7E3569
Certificate serial: 95
Authority key identifier: 42:39:11:7A:25:58:2D:00:67:DE:4D:0C:ED:A5:AB:A5:CC:7E:35:69
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QjkReiVYLQBn3k0M7aWrpcx-NWk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918C287/68D88184248511EF94236572C4F9AE02/32D99666AC4A11EF9274532EC4F9AE02.roa
Signing time: Tue 26 Nov 2024 23:00:15 +0000
ROA not before: Tue 26 Nov 2024 23:00:15 +0000
ROA not after: Sat 01 May 2038 00:00:00 +0000
asID: 4608
IP address blocks: 203.176.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149 (0x95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918C287, serialNumber=4239117A25582D0067DE4D0CEDA5ABA5CC7E3569
Validity
Not Before: Nov 26 23:00:15 2024 GMT
Not After : May 1 00:00:00 2038 GMT
Subject: CN=674652ff-6a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:f6:be:12:3a:ea:40:b5:1d:b1:db:2d:22:9f:
65:13:27:8f:d9:08:50:cd:21:4c:20:38:f9:88:e0:
21:d5:f0:28:c0:d1:77:7d:ba:c3:b2:43:48:77:89:
03:1f:27:d4:68:ab:d7:b9:db:3d:4f:0a:b2:3b:c6:
37:dc:8b:4f:73:11:e0:28:49:e8:e4:66:1d:44:cc:
0b:2d:e2:b1:81:2f:78:aa:88:2d:b2:da:b2:d7:cc:
57:f8:a7:ef:a5:f6:4c:df:18:b0:71:16:f9:22:c2:
cc:d1:04:85:96:1b:0d:87:e4:60:d5:ba:5d:b8:02:
f4:e1:34:08:71:d9:30:c0:6d:8e:ae:40:ad:dc:ed:
09:cd:ae:d0:74:15:38:86:99:cf:08:7b:7f:5b:ec:
7c:c5:36:f2:35:33:48:6d:a2:98:bb:22:3e:af:e7:
dc:8a:9f:33:e8:df:4b:0f:4b:3f:d0:2f:45:38:83:
f8:b4:93:35:6e:c8:c4:ae:fb:d5:fd:f0:34:53:0d:
00:ef:89:0a:78:44:24:b3:7d:92:02:c9:4e:9a:b1:
61:e4:87:d7:80:0e:cb:5e:c6:95:81:cf:41:9f:29:
44:df:c4:75:a4:42:48:e7:94:b6:dd:0f:d4:8b:1a:
c2:ed:20:01:2f:80:fc:9a:f2:0d:d9:a3:19:ae:5b:
af:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F8:73:E8:1A:B8:D6:18:53:D0:FB:E1:81:7E:92:C6:4E:31:59:41
X509v3 Authority Key Identifier:
keyid:42:39:11:7A:25:58:2D:00:67:DE:4D:0C:ED:A5:AB:A5:CC:7E:35:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918C287/68D88184248511EF94236572C4F9AE02/QjkReiVYLQBn3k0M7aWrpcx-NWk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QjkReiVYLQBn3k0M7aWrpcx-NWk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C287/68D88184248511EF94236572C4F9AE02/32D99666AC4A11EF9274532EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.176.189.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:c4:b6:cf:e0:8e:50:8e:08:64:fe:c0:96:14:a0:c5:c0:13:
68:6d:cc:a6:0e:b2:d1:b3:02:81:0d:33:d7:7d:6d:4f:c5:af:
fc:e5:eb:0d:28:66:a0:9d:cb:46:80:4e:a0:a1:98:f3:aa:a5:
49:63:c4:fb:6d:ce:e1:b1:10:05:47:6f:f6:16:17:76:35:20:
13:7e:cb:b2:37:58:60:f6:e7:5c:64:f3:05:a2:1a:26:7a:1b:
0d:37:78:7b:49:92:6f:1e:b2:97:62:34:ee:c6:7c:44:a5:d0:
b4:e2:91:e7:8e:27:7c:34:9f:4d:be:ca:49:56:8f:e3:36:e8:
ea:85:2e:96:68:dd:f7:89:26:17:28:e0:b5:fc:9c:3a:96:fe:
c4:15:31:0a:f3:2a:0a:03:15:04:09:cf:f8:01:70:5f:4b:3c:
5e:f1:f2:b2:71:02:a6:7a:77:0c:84:38:84:48:fc:c3:23:62:
64:16:34:22:53:93:78:a9:63:c4:e6:53:9b:df:cd:e1:ae:b0:
70:82:4a:7a:ec:f6:5a:81:bd:37:96:cf:7f:6b:17:02:5f:00:
fb:1e:a8:20:67:37:8d:82:54:a5:85:0c:bc:e0:16:35:ea:e6:
cb:e0:19:51:0d:ae:88:3f:41:96:8c:7e:3e:21:c7:80:99:42:
15:3b:ae:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 10:55:24 2025 by rpki-client