Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9D67280A844911EAA528AD63C4F9AE02.roa
File: 9D67280A844911EAA528AD63C4F9AE02.roa (raw, json)
Hash identifier: VYBHve/PNmOFeIWgiVN/Red7+4ngw1/OUZ+8fRDI5rI=
Subject key identifier: F9:2D:A6:60:F4:A7:17:74:7C:6B:11:68:54:61:4F:7F:46:15:87:63
Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54
Certificate serial: 36CA
Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9D67280A844911EAA528AD63C4F9AE02.roa
Signing time: Sat 22 Mar 2025 15:01:19 +0000
ROA not before: Sat 22 Mar 2025 15:01:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 55424
IP address blocks: 221.120.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14026 (0x36ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A0832
Validity
Not Before: Mar 22 15:01:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=67ded0bf-ea5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c2:1d:82:a4:7b:82:21:31:97:fd:4e:b0:d9:
b2:04:1b:7a:a7:d3:8a:8f:9c:6d:a2:7b:0c:59:25:
f3:54:1e:50:88:fa:71:d7:d9:b4:c9:bd:08:11:db:
fe:b2:6a:aa:80:7a:00:42:e1:1b:62:e3:05:e6:b5:
1c:19:5d:00:b4:2a:e1:98:a2:76:3e:93:7b:dc:f4:
91:d0:3a:0f:d8:31:5a:b1:b7:fb:e9:4f:3b:26:80:
7a:d4:e4:bf:2f:ff:ae:9e:31:3e:43:92:87:bb:fe:
66:b8:02:d7:e4:24:35:fe:17:c0:98:b3:8b:5a:eb:
c6:34:04:88:a3:97:8d:19:74:a8:bb:83:34:4d:76:
7b:36:11:18:24:03:c3:67:43:e3:f3:f2:37:bc:2d:
77:57:09:be:36:4b:bd:8f:bd:fb:38:8f:38:1a:01:
6f:18:6b:9f:6c:a6:d8:79:dd:32:3e:75:b2:ee:f8:
f7:da:16:7a:4b:ea:97:ec:e2:4f:98:3c:56:74:41:
6a:af:ad:8b:15:83:6d:f7:71:fe:2b:98:3e:bf:4a:
af:aa:3c:d7:09:6c:b5:2f:1e:81:82:65:3d:f9:53:
be:50:80:ec:cc:e4:7b:7e:8b:34:04:bb:c2:a9:ec:
32:d2:69:16:61:a0:32:3b:2e:30:20:8b:ae:e6:b1:
fd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:2D:A6:60:F4:A7:17:74:7C:6B:11:68:54:61:4F:7F:46:15:87:63
X509v3 Authority Key Identifier:
keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9D67280A844911EAA528AD63C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
221.120.234.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:62:ec:93:66:06:bc:61:0e:8e:46:a2:28:14:45:53:82:5d:
10:34:2d:a0:f0:cd:1a:76:4c:6a:70:97:d8:cb:c4:56:43:79:
9a:69:08:12:a7:da:e8:f1:f1:aa:cb:de:d5:89:bf:87:13:06:
78:0a:67:7a:57:c1:c3:86:c2:29:cd:b7:ed:61:ba:b0:79:41:
76:17:38:dd:d6:83:21:48:68:5c:ba:3f:12:e8:4e:ba:d0:8d:
9f:af:e9:2c:21:e8:2b:a5:49:aa:fb:32:cb:84:92:bc:70:a8:
77:e7:51:7f:e2:30:be:fe:72:d5:80:f8:da:bb:cc:43:7a:2a:
97:b2:f7:79:50:e7:e5:71:af:5d:85:57:46:b5:f0:54:94:38:
3a:be:e5:04:35:12:61:35:b6:02:b3:34:8a:b0:0d:70:a2:85:
35:7d:2c:09:9e:65:66:4a:13:90:a6:c7:7f:b3:c8:02:f4:bb:
6c:39:f2:c9:80:a0:35:47:87:5f:fa:eb:f4:47:1f:c2:e0:53:
36:84:ff:27:56:b1:83:07:b6:1b:41:c6:60:76:18:4f:9f:5a:
71:75:f7:46:79:73:20:b8:0a:e9:47:49:6c:12:7f:e1:b5:0f:
97:46:e6:68:da:5c:80:1a:3d:45:07:1c:19:bb:47:55:83:ef:
22:b6:c6:08
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICNsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB
NzYwQUVCNTQwHhcNMjUwMzIyMTUwMTE5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2RlZDBiZi1lYTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvsIdgqR7giExl/1OsNmyBBt6p9OKj5xtonsMWSXzVB5QiPpx19m0yb0IEdv+
smqqgHoAQuEbYuMF5rUcGV0AtCrhmKJ2PpN73PSR0DoP2DFasbf76U87JoB61OS/
L/+unjE+Q5KHu/5muALX5CQ1/hfAmLOLWuvGNASIo5eNGXSou4M0TXZ7NhEYJAPD
Z0Pj8/I3vC13Vwm+Nku9j737OI84GgFvGGufbKbYed0yPnWy7vj32hZ6S+qX7OJP
mDxWdEFqr62LFYNt93H+K5g+v0qvqjzXCWy1Lx6BgmU9+VO+UIDszOR7fos0BLvC
qewy0mkWYaAyOy4wIIuu5rH9+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPktpmD0
pxd0fGsRaFRhT39GFYdjMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE
OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2
MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvOUQ2NzI4MEE4
NDQ5MTFFQUE1MjhBRDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADdeOowDQYJKoZIhvcNAQELBQADggEBALpi7JNmBrxhDo5G
oigURVOCXRA0LaDwzRp2TGpwl9jLxFZDeZppCBKn2ujx8arL3tWJv4cTBngKZ3pX
wcOGwinNt+1hurB5QXYXON3WgyFIaFy6PxLoTrrQjZ+v6Swh6CulSar7MsuEkrxw
qHfnUX/iML7+ctWA+Nq7zEN6Kpey93lQ5+Vxr12FV0a18FSUODq+5QQ1EmE1tgKz
NIqwDXCihTV9LAmeZWZKE5Cmx3+zyAL0u2w58smAoDVHh1/66/RHH8LgUzaE/ydW
sYMHthtBxmB2GE+fWnF190Z5cyC4CulHSWwSf+G1D5dG5mjaXIAaPUUHHBm7R1WD
7yK2xgg=
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:39:44 2025 by rpki-client