Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/51753C88351911EDA9A3C95CC4F9AE02.roa
File: 51753C88351911EDA9A3C95CC4F9AE02.roa (raw, json)
Hash identifier: qfcq1+55P84rADMWjtsNcrBN13+gs5Q/A3gl7HVdqyg=
Subject key identifier: F5:BB:A8:A9:B6:E4:B8:15:FF:43:62:41:EB:D2:35:A9:FE:41:75:C1
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4655
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/51753C88351911EDA9A3C95CC4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:35:57 +0000
ROA not before: Thu 05 Sep 2024 03:35:57 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 45541
IP address blocks: 203.201.56.0/24 maxlen: 24
203.201.57.0/24 maxlen: 24
203.201.58.0/24 maxlen: 24
203.201.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18005 (0x4655)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:35:57 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d9271d-3c86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:24:f0:29:66:a4:e6:1a:b3:0b:8d:f5:4c:c4:
85:2b:c7:64:14:96:c9:bb:35:46:6a:6a:0f:7d:d5:
b8:98:82:93:f9:40:42:59:27:36:58:f7:34:c4:00:
b9:f5:90:42:d8:6a:dd:9d:b5:f9:7e:92:7d:41:8c:
4b:91:7f:b7:c2:61:25:21:d4:c3:5f:98:3f:6a:9c:
9c:9d:3d:35:39:c6:83:8b:ff:3d:6a:84:35:16:0c:
ed:74:34:e1:5d:50:91:25:8f:4d:91:55:c0:be:cb:
80:fb:36:21:e0:72:f1:b8:6d:1b:6f:c6:dd:96:f4:
d4:df:24:52:f9:d1:9a:45:86:8c:1c:82:e7:37:16:
5c:eb:15:3d:f1:dd:9d:ef:5f:31:b7:a5:2d:97:5d:
4a:c6:d1:2a:ff:c0:ca:4d:f6:d2:9f:2f:9d:22:ea:
f2:9d:73:3a:fb:d9:76:84:eb:f0:1f:9d:f0:d3:53:
b0:c9:35:46:9c:cb:b5:9b:a3:43:b2:8c:24:3f:d1:
59:b8:71:3c:1c:b1:db:45:1c:75:ef:07:5d:fe:19:
00:d5:2a:7f:59:8a:04:3c:10:e8:c3:46:fb:64:13:
2f:d1:d8:53:a2:73:6d:e2:99:f5:c3:86:36:7b:ba:
e2:f5:ca:93:34:12:78:3d:e2:f1:8a:7c:da:21:4d:
07:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:BB:A8:A9:B6:E4:B8:15:FF:43:62:41:EB:D2:35:A9:FE:41:75:C1
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/51753C88351911EDA9A3C95CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.201.56.0/22
Signature Algorithm: sha256WithRSAEncryption
60:5a:53:4b:f9:51:7c:5a:dd:ae:7c:2a:66:44:af:83:6e:be:
54:45:6f:cb:c9:5c:bd:a3:30:cd:00:31:39:bd:07:52:b6:ac:
b7:b6:58:c4:05:d5:7d:89:7c:c6:b0:ca:41:40:cf:6e:6e:9c:
13:6b:07:02:35:70:4a:61:67:8b:7f:1f:34:eb:2b:7d:45:e2:
e3:a6:2e:a4:a7:b3:be:73:0e:d7:88:c9:a2:c9:a8:f3:44:84:
71:ae:35:ee:6c:fd:b8:87:ab:50:35:de:cd:11:a4:18:21:35:
5c:b7:85:94:4a:50:d7:30:7b:f0:69:d5:31:a8:03:9f:d9:d9:
7f:0e:6a:ca:b5:be:95:82:f5:84:e7:35:0f:32:69:25:fc:b3:
6c:fe:2c:0a:32:f8:ae:47:04:28:5a:74:53:9e:31:36:91:b6:
70:79:72:0d:f7:40:72:27:50:0d:4d:0c:bc:6d:36:42:f4:ef:
8f:5c:ff:d5:88:25:bb:d2:24:5a:bc:80:e2:cf:47:fd:60:15:
12:40:61:aa:cd:71:18:4a:44:08:ca:a6:91:98:5e:aa:bd:73:
71:a1:1c:12:df:9e:3b:4d:71:e5:de:36:14:aa:c8:4a:84:fe:
18:65:81:34:6f:68:8c:38:6e:07:e0:98:1d:d9:49:9a:3e:32:
dd:12:2b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:38:11 2025 by rpki-client