Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/E9610376903B11EBB91C8B5DC4F9AE02.roa
File: E9610376903B11EBB91C8B5DC4F9AE02.roa (raw, json)
Hash identifier: 8EJ9t0dHzPuImjiYAPoyaHv+e1oWlijq5dSgwTFlJ+I=
Subject key identifier: 69:2F:E6:C3:72:5D:78:97:AE:89:7E:DD:23:06:88:AE:0D:1C:7D:BF
Certificate issuer: /CN=A919DCE3/serialNumber=062240CDE756D95B5777E267AA7B0654F834F493
Certificate serial: 061E
Authority key identifier: 06:22:40:CD:E7:56:D9:5B:57:77:E2:67:AA:7B:06:54:F8:34:F4:93
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BiJAzedW2VtXd-JnqnsGVPg09JM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/E9610376903B11EBB91C8B5DC4F9AE02.roa
Signing time: Tue 18 Mar 2025 22:43:51 +0000
ROA not before: Tue 18 Mar 2025 22:43:51 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 9723
IP address blocks: 203.22.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1566 (0x61e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919DCE3
Validity
Not Before: Mar 18 22:43:51 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67d9f727-ae66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f8:70:c3:43:18:40:2d:33:59:5c:d7:79:cd:
fc:e0:32:77:d4:9c:9d:e9:c3:9c:f6:0e:c0:a4:10:
98:33:ce:46:39:03:9b:e6:5a:8e:13:07:bb:7a:92:
f3:75:c1:c6:bc:23:44:c5:85:02:86:67:6f:9a:6a:
bc:06:92:33:b7:e2:a1:f6:4d:39:a5:c3:db:82:ae:
55:33:6c:12:fe:02:03:e5:36:e6:f4:5b:ee:c0:dd:
d1:cc:cc:33:5e:22:94:14:c4:34:4b:d9:a5:9a:af:
b6:4d:be:77:53:fa:0a:a8:44:6d:b1:3d:30:15:03:
ff:d5:8c:b7:a4:f6:55:59:8c:0c:18:9a:90:fa:41:
b5:97:b7:f6:b0:5e:e3:d1:bf:b4:a7:08:55:2b:e3:
b3:f9:74:1b:0f:52:f3:85:96:fe:0c:2e:a9:f1:39:
a6:f1:93:0c:d3:bf:a3:14:45:94:a6:d5:a2:d2:83:
34:dc:3b:3d:1b:01:5c:16:89:fb:83:d6:10:26:89:
4e:df:92:b7:b6:cb:57:98:4b:cf:0e:61:0f:67:b0:
9b:b5:bc:20:2c:4d:f6:2b:8d:72:7b:c8:28:db:c4:
6d:72:c3:b0:c5:7c:22:8a:32:6b:5a:24:00:9d:18:
de:01:8c:07:c0:b9:6f:99:b2:a3:4b:06:e4:5b:c0:
4b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:2F:E6:C3:72:5D:78:97:AE:89:7E:DD:23:06:88:AE:0D:1C:7D:BF
X509v3 Authority Key Identifier:
keyid:06:22:40:CD:E7:56:D9:5B:57:77:E2:67:AA:7B:06:54:F8:34:F4:93
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BiJAzedW2VtXd-JnqnsGVPg09JM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/E9610376903B11EBB91C8B5DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.22.20.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:47:b1:ce:f9:2c:39:ab:66:ac:3e:e4:87:0a:0d:54:70:2b:
d7:8b:80:02:7f:83:4a:05:5d:90:3e:f7:71:e7:0b:ee:45:e8:
a8:c4:24:cc:58:ee:13:a3:97:a1:d4:40:6e:e8:d6:a4:f0:0a:
dd:ba:77:82:1f:4d:0b:39:8e:e7:fe:9f:2a:a2:02:dc:f8:15:
2d:a9:7d:49:1f:0c:15:5a:d9:ce:40:a6:f1:d6:34:13:75:9f:
1f:bf:85:2c:1a:81:98:ed:6c:70:bb:69:4e:a1:6d:ae:80:24:
56:bb:7b:05:75:33:b8:75:82:d1:44:40:9a:8c:42:6b:29:40:
8c:c9:56:a8:ac:9f:9c:ef:dc:4b:2a:5b:1d:9c:6b:71:6e:66:
82:4b:2f:a5:e0:af:7b:01:2a:f0:dc:7f:44:51:d9:3c:95:f5:
59:c7:b1:64:d7:98:63:fc:cb:ec:34:dd:b3:db:f7:de:da:af:
03:ea:29:33:f8:57:1b:51:c4:cc:bc:6c:b4:b8:30:c2:a8:2d:
bd:bd:1c:77:64:11:56:e4:c0:86:5f:3d:64:0f:98:10:ea:54:
ad:d2:1e:5a:98:db:50:87:ac:09:43:8c:cc:d8:18:87:3a:b8:
06:d6:78:0f:24:e8:3e:3b:d2:d8:ff:4c:dc:57:60:99:1d:6d:
cf:2d:fc:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 19:53:29 2025 by rpki-client