Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/098D6EACAD3E11ED8B645C39C4F9AE02.roa
File: 098D6EACAD3E11ED8B645C39C4F9AE02.roa (raw, json)
Hash identifier: x5jTQA8XBSMQ8Q+xjjenfP78ItEEc+vCjF2dnXQMxgg=
Subject key identifier: 48:72:A3:27:66:EA:87:1E:00:FD:4E:44:D9:8C:A4:B1:F0:FD:58:85
Certificate issuer: /CN=A918F00E/serialNumber=18E1F732EFA53C3973A1ACD22C1368A5E1F2CA52
Certificate serial: 017D
Authority key identifier: 18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/098D6EACAD3E11ED8B645C39C4F9AE02.roa
Signing time: Wed 05 Feb 2025 02:28:20 +0000
ROA not before: Wed 05 Feb 2025 02:28:20 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 55803
IP address blocks: 203.20.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 381 (0x17d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918F00E
Validity
Not Before: Feb 5 02:28:20 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67a2ccc4-138b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f8:e6:51:3b:3a:4f:87:8e:c4:3f:a5:55:8a:
22:0f:fc:9d:d0:fb:4f:7e:39:b8:0a:f9:f5:59:f7:
8c:a4:66:13:41:17:89:64:fe:35:f2:00:8b:08:ee:
4d:d7:1a:ae:9a:73:46:6d:89:53:f8:3c:ad:b6:8c:
d9:21:b6:f7:b1:ca:3a:fa:39:7f:0f:fc:05:97:8b:
3d:ad:62:4a:2f:b0:0e:ae:e8:5b:8d:b9:d6:68:e1:
a2:54:f0:67:70:34:4f:a6:b5:b6:66:f2:74:0c:c2:
8e:fd:a5:b7:be:5a:a9:0c:c4:cd:87:af:24:34:e5:
8a:23:eb:a3:07:ba:ec:b5:38:f6:7c:b7:61:bf:63:
04:f1:34:4e:d3:51:35:91:ea:46:50:02:d8:f6:88:
a6:20:e5:9b:6d:18:3b:53:83:2e:5e:b7:00:c1:f9:
24:a8:0a:bc:26:79:22:21:8d:fd:19:ad:85:8e:69:
54:9f:f4:a6:6a:9b:33:1d:f4:0b:18:22:e7:23:5f:
6b:e9:5f:b1:76:5d:2c:4b:9d:23:8a:2e:fb:2b:df:
aa:96:08:f5:fa:e9:2c:13:e2:c3:46:e1:55:35:68:
f5:6d:93:83:79:5c:5d:f7:f9:f7:05:17:9e:03:11:
29:5c:8b:c8:4e:39:02:b6:16:c9:cb:8b:93:94:47:
4b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:72:A3:27:66:EA:87:1E:00:FD:4E:44:D9:8C:A4:B1:F0:FD:58:85
X509v3 Authority Key Identifier:
keyid:18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/098D6EACAD3E11ED8B645C39C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.20.69.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:d6:16:66:29:37:83:63:00:95:21:27:4c:61:53:02:ad:0f:
65:d6:43:78:27:c8:9b:31:d2:1d:e5:0b:bf:44:27:c4:e4:9d:
0d:c9:2b:14:33:ae:90:3e:a1:5b:6e:b2:1d:6a:10:ac:c4:ca:
aa:33:f9:63:38:52:14:59:98:1c:74:2b:c0:3c:8e:d1:ac:37:
b9:0f:51:b7:d8:86:be:02:dc:ff:2b:ad:32:b5:29:46:22:3e:
6b:3d:dd:ae:56:fa:80:66:25:f8:32:ab:d2:61:9c:f5:69:e0:
f9:ff:d0:19:d1:ee:a4:87:f0:06:9b:a2:56:4d:5d:f8:69:af:
c9:a2:8a:f6:06:27:3d:06:f2:bd:23:61:ee:09:a9:e3:31:9a:
c2:ec:d8:56:a1:16:30:de:c4:5d:ca:e6:a1:fb:41:aa:51:19:
e8:87:b2:eb:a6:7f:56:be:fb:40:f9:00:60:69:bd:bd:13:3f:
8f:1b:4d:17:36:d9:c5:3e:7d:1a:73:b9:09:8b:bc:60:62:bb:
48:0f:e8:7a:86:e9:8f:01:a5:1b:f0:dc:46:7e:c3:54:dd:99:
57:1f:b7:9c:dc:45:db:75:5a:9d:09:85:a4:a2:c7:e5:01:08:
a3:26:be:d2:de:2c:67:86:e0:35:f6:40:3b:a7:29:7a:6c:53:
a5:1c:9e:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:08:07 2025 by rpki-client