Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F17E330263E011ECB11B2C79C4F9AE02.roa
File: F17E330263E011ECB11B2C79C4F9AE02.roa (raw, json)
Hash identifier: +GuRpDl2gUXzoE+KHRw53WT4yT7u9G/fnxbmNOR303E=
Subject key identifier: 48:9C:53:8E:7B:55:61:EA:E8:54:E4:FE:A9:86:AA:8D:30:91:C5:53
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4640
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F17E330263E011ECB11B2C79C4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:35:40 +0000
ROA not before: Thu 05 Sep 2024 03:35:40 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 24089
IP address blocks: 203.119.44.0/22 maxlen: 24
2001:dc8:8000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17984 (0x4640)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:35:40 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d9270c-60cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3d:23:99:a5:a4:4c:d3:05:9a:be:d9:99:14:
2f:78:e5:03:fd:62:90:35:d3:87:f5:ba:5c:01:c0:
4d:35:ce:9f:18:6e:b3:b2:cc:c9:5f:83:1b:f8:8e:
cb:f7:97:12:80:1f:6f:89:64:c8:c9:54:72:55:cb:
f3:ac:f2:4d:bf:46:e4:26:96:0a:82:52:40:5a:c2:
b8:3f:21:c7:ee:53:a8:8b:23:6e:6e:ff:78:1b:b1:
22:2b:41:fb:eb:76:40:ee:70:72:a7:9b:1b:c3:5d:
2c:56:05:c2:1a:fb:b5:c5:94:76:64:ab:53:f0:79:
3c:01:f3:ec:84:59:17:6c:7c:68:d5:5c:3b:61:7f:
40:a0:59:aa:c6:f3:4d:24:90:1c:9b:9f:e4:3c:fc:
b7:b7:f4:cc:ed:1f:4c:26:75:03:c2:a0:db:7f:c8:
ce:bd:10:8e:3d:4c:e7:82:b7:d0:51:9e:80:68:15:
4f:8c:04:df:12:55:24:f1:5f:55:7e:cb:b7:69:0e:
7c:46:6b:f6:71:51:1b:ec:63:54:f3:99:fb:50:87:
a5:3f:2f:d3:27:a0:b6:42:5d:f6:04:10:bd:1d:49:
92:bd:98:63:56:1c:d0:1a:39:d8:42:17:7f:b8:7c:
87:bc:a1:dd:af:d3:46:69:51:ac:f0:a9:61:21:5c:
5c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:9C:53:8E:7B:55:61:EA:E8:54:E4:FE:A9:86:AA:8D:30:91:C5:53
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F17E330263E011ECB11B2C79C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.119.44.0/22
IPv6:
2001:dc8:8000::/48
Signature Algorithm: sha256WithRSAEncryption
94:3e:3e:53:f7:f1:0c:9b:69:14:f5:8b:c6:35:8b:74:4d:f0:
c8:0b:c2:bd:25:2c:13:fa:9f:01:0b:67:90:29:44:06:df:18:
48:c6:b8:a4:4d:69:b6:00:9d:41:35:81:ed:9c:58:67:c9:bf:
02:12:1c:81:b7:43:01:58:2e:11:cf:38:aa:f3:97:ab:e1:1c:
fe:ca:ae:37:bb:0d:43:f5:be:44:10:7d:91:f0:f3:dd:d6:ab:
19:8b:d6:5d:e2:0a:75:ac:f3:92:30:d6:01:46:f6:f7:a3:9e:
9c:9c:a9:1a:56:84:22:bf:38:b7:66:03:74:86:75:b6:d5:99:
92:82:6e:bb:ee:fb:c7:f7:f7:50:74:8b:51:5b:69:d2:d2:dc:
d9:cd:c0:25:e4:5a:d1:c7:31:9d:fc:3f:2d:de:41:96:84:57:
f4:4a:af:11:b7:3e:3f:c9:ac:84:ec:cb:b7:65:82:1d:d3:89:
73:ea:8f:71:c1:0e:60:16:77:a8:8b:ae:56:54:c7:d2:ad:99:
53:a4:7c:88:4a:23:b7:a3:82:d4:ce:e9:14:88:72:0c:61:ba:
e1:ad:8c:41:14:8e:4d:35:18:2b:57:db:34:9b:d8:e1:8a:44:
53:53:03:e3:e8:cf:ce:89:6f:25:d1:38:86:bb:a7:c8:e6:42:
57:6a:15:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:48:40 2025 by rpki-client