Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9634408BC3F11EFA4F9AC81C4F9AE02.roa
File: A9634408BC3F11EFA4F9AC81C4F9AE02.roa (raw, json)
Hash identifier: zPzRnNw646tJbJGjeH8xTLByyyYevejsWzoJsgCQXRQ=
Subject key identifier: FC:D6:8C:5C:81:E3:E7:40:69:8D:46:DC:C0:91:63:88:48:9A:03:51
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 9F4F
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9634408BC3F11EFA4F9AC81C4F9AE02.roa
Signing time: Tue 17 Dec 2024 06:27:55 +0000
ROA not before: Tue 17 Dec 2024 06:27:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 133727
IP address blocks: 36.255.64.0/22 maxlen: 24
103.41.196.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40783 (0x9f4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Dec 17 06:27:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=676119ea-31f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:0a:29:65:1d:6a:de:cf:60:37:9a:6d:50:db:
5f:86:9f:d4:b8:dd:29:66:20:ff:ad:47:9c:b8:dc:
e2:b4:40:ba:08:c1:14:2a:2e:f0:1b:2f:48:5d:10:
6a:14:25:81:85:b2:f9:43:7e:1a:09:42:b5:76:d8:
23:9f:b6:66:49:d9:a4:ab:e5:56:f4:97:4a:9e:36:
59:37:97:e3:44:a1:e3:f3:00:13:a8:0c:40:b5:7c:
34:6a:02:9d:ae:54:6e:69:88:b6:f2:7e:c4:6e:94:
a0:ea:ac:1c:86:fc:0d:64:e1:f7:d7:95:91:d3:8a:
30:9e:80:8a:8c:70:b5:15:30:ee:ba:6f:92:50:f4:
26:75:4b:7b:47:86:aa:34:b3:f4:9b:32:f2:c5:d7:
d2:3f:12:30:4e:56:c6:31:6a:3a:95:a4:0a:87:d1:
3b:44:8e:d3:7c:2a:61:04:75:d0:f4:f7:b5:96:07:
07:ee:81:18:96:40:55:cd:30:fd:15:77:85:2b:57:
de:c9:e6:28:ff:b7:5f:f1:aa:aa:91:ea:aa:1d:ff:
d0:71:3b:a9:d8:33:05:c7:4f:84:57:6f:6d:9b:8a:
de:6e:a2:b5:34:9f:b0:03:38:8a:62:3d:bb:44:be:
c7:61:16:a5:40:37:bb:50:82:3d:c0:b3:63:98:48:
9f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:D6:8C:5C:81:E3:E7:40:69:8D:46:DC:C0:91:63:88:48:9A:03:51
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9634408BC3F11EFA4F9AC81C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.255.64.0/22
103.41.196.0/22
Signature Algorithm: sha256WithRSAEncryption
76:51:68:cb:42:09:29:f3:4b:37:5f:07:80:60:7d:41:0f:17:
ab:99:86:70:93:ca:a2:7a:17:2c:a5:02:45:f9:5d:ef:ff:c9:
3b:2e:9e:2d:ae:3b:d6:25:fa:c1:e0:12:8c:fa:b8:39:ca:62:
84:dd:b4:c2:ea:0c:81:3f:65:28:7e:99:c6:53:ab:4c:de:22:
97:bc:54:df:b3:08:df:ba:31:da:9f:d8:b1:2c:bb:50:a0:65:
d0:39:d2:4f:07:9c:08:fa:e3:b9:2e:84:ba:12:dc:e6:98:d3:
61:02:a2:0d:07:8b:66:67:e5:a3:aa:6f:dd:b3:bc:a8:b1:92:
a1:93:c4:59:fd:78:9f:1c:ef:35:11:ae:f7:5a:af:7c:3c:45:
0b:d2:17:a8:de:c0:72:35:3a:36:54:de:97:e4:5b:ab:44:d2:
4c:ee:74:9f:6d:ba:5c:c1:27:13:1c:5b:94:43:ef:22:5c:25:
bd:46:c3:92:90:5b:63:45:80:7f:b3:e0:0d:75:05:6f:85:d0:
bf:38:d6:7a:3f:96:2c:5c:34:d5:d4:23:52:d6:c2:5a:8a:31:
86:4a:30:d6:58:44:d4:6c:c0:75:d6:b1:2e:3a:a9:4a:d4:c7:
68:4d:e6:07:07:c9:d8:f0:41:2d:21:13:d6:c7:ee:65:59:5a:
6b:04:44:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 14:48:13 2025 by rpki-client