Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9604F4A6899911EBA32C6224C4F9AE02.roa
File: 9604F4A6899911EBA32C6224C4F9AE02.roa (raw, json)
Hash identifier: irNVJAgK3pBegIwIYQHvfU2ICa37uezrCrR7Sshxk/Y=
Subject key identifier: E5:7D:7A:8A:C3:B8:0C:78:9D:8D:49:EE:E7:BC:FC:BC:18:46:5F:DF
Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54
Certificate serial: 36BF
Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9604F4A6899911EBA32C6224C4F9AE02.roa
Signing time: Sat 22 Mar 2025 15:01:07 +0000
ROA not before: Sat 22 Mar 2025 15:01:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 141342
IP address blocks: 59.103.140.0/22 maxlen: 24
119.157.84.0/22 maxlen: 24
119.157.88.0/22 maxlen: 24
182.189.112.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14015 (0x36bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A0832
Validity
Not Before: Mar 22 15:01:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=67ded0b3-47cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cd:8d:8a:1e:05:3d:76:92:00:21:8a:f2:63:
83:80:7e:5b:8f:86:96:e1:fa:09:42:c3:de:82:ca:
53:1e:51:7b:52:db:d3:1f:54:70:2a:c9:e7:6f:85:
35:99:86:6f:f5:4c:50:dc:47:d7:4c:e4:cc:4f:88:
4b:ac:dc:0f:c0:67:73:31:2b:53:f2:8c:ac:6f:32:
dd:fc:d1:5a:fd:8d:1d:02:50:3a:92:16:bc:dc:01:
59:97:63:6f:9a:bc:6c:ca:1a:4a:c4:2b:19:e2:b0:
34:07:5f:f1:2b:35:f2:9c:2d:e2:ef:25:1a:9f:84:
78:e9:1a:ea:2e:62:36:8c:17:4f:55:d4:0b:45:0f:
d9:e6:da:57:10:ed:b4:39:ed:ff:8e:1d:0b:c4:3b:
0e:58:e3:01:54:c8:af:69:1a:97:e2:c1:fa:58:6b:
ac:93:71:9f:f5:33:f6:9f:cb:3b:b6:be:e1:93:51:
14:65:ea:40:c9:d0:be:6a:9f:bf:fc:9b:b7:c6:51:
7a:36:13:25:fa:0e:fa:66:9a:95:b0:a8:49:04:e1:
76:47:fb:c9:7d:da:d8:88:27:57:f8:3f:18:79:18:
7a:00:41:51:ae:20:f2:08:4d:40:42:84:31:0e:d2:
43:91:0c:12:42:8c:a9:79:8c:66:31:fb:09:af:8d:
4b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:7D:7A:8A:C3:B8:0C:78:9D:8D:49:EE:E7:BC:FC:BC:18:46:5F:DF
X509v3 Authority Key Identifier:
keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9604F4A6899911EBA32C6224C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.103.140.0/22
119.157.84.0-119.157.91.255
182.189.112.0/20
Signature Algorithm: sha256WithRSAEncryption
59:f5:ee:29:9d:8a:56:b0:08:29:cf:d8:3f:10:04:01:7c:ec:
69:2f:e5:dd:d1:c5:87:c6:6c:5a:d3:3e:74:e9:bd:53:48:c3:
a8:82:d2:71:a9:3f:7a:0d:c6:38:e0:d3:10:67:67:be:61:0d:
35:a9:e0:cd:48:8a:10:b3:94:51:af:b5:8a:63:00:30:90:50:
1d:29:0a:02:d3:13:90:59:09:89:34:0b:1e:c4:6d:c5:2d:67:
d8:2a:20:ce:04:f1:de:61:ba:df:0b:8d:0d:31:96:7e:03:b1:
1c:27:5c:d3:62:1b:2f:95:11:a0:ab:e7:f4:fb:fe:fd:20:e9:
25:2d:e0:1a:e7:43:30:d7:70:bf:7d:66:04:5a:99:16:1f:fb:
9b:e3:bb:60:1b:c5:37:08:c5:b2:2b:b5:be:59:88:4f:c8:c8:
2e:7e:6e:ca:13:ae:a5:41:dd:ad:de:74:6a:c9:51:d8:19:71:
f7:2e:03:6d:3c:9a:5e:8a:ce:a2:ef:6b:ab:a7:5c:05:63:cf:
fe:e3:66:97:21:09:3a:70:e1:ea:41:6e:82:5e:b2:33:92:00:
57:09:99:ac:a6:25:a9:3b:5f:18:44:26:50:ca:2f:17:e7:a8:
5d:76:c4:30:42:d7:41:51:56:95:2a:cd:e7:e0:15:70:20:52:
a0:83:9c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:56:33 2025 by rpki-client