Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/805A2E74660311EF90397033C4F9AE02.roa
File: 805A2E74660311EF90397033C4F9AE02.roa (raw, json)
Hash identifier: kr3XK/LA3ME6CWbcxw7hFQfhU6QavtLWXc2+mP6aHgc=
Subject key identifier: 10:CF:C8:9F:3A:6A:93:A4:22:89:AF:17:D9:7F:F6:14:80:B0:24:59
Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248
Certificate serial: 0154
Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/805A2E74660311EF90397033C4F9AE02.roa
Signing time: Fri 07 Mar 2025 03:20:11 +0000
ROA not before: Fri 07 Mar 2025 03:20:11 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 17473
IP address blocks: 203.24.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 340 (0x154)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E8D22
Validity
Not Before: Mar 7 03:20:11 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67ca65ea-19da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:93:e2:52:52:46:e3:8b:68:1a:a0:ef:06:ca:
c2:01:59:24:80:b8:e7:66:27:d5:d0:3f:f1:1c:b7:
11:6e:21:46:f5:4b:13:d9:d0:f7:7b:b2:a3:03:a3:
75:21:9f:0f:ac:5d:87:1c:ef:d3:c5:ec:55:71:cf:
1e:85:c6:0a:75:28:d2:aa:7d:73:b4:ea:22:09:af:
6d:eb:03:09:98:13:dc:de:7c:61:ea:64:7f:2d:8e:
77:ed:3f:15:16:f0:26:17:13:34:21:71:33:2f:87:
93:9f:0d:12:67:fc:c3:c0:f5:27:df:f5:cd:34:a1:
a7:8d:b0:41:62:c2:73:8e:cd:1c:b5:8d:eb:7f:bc:
1d:bb:ab:2d:73:bc:16:20:e6:c3:91:f0:a0:51:10:
5a:a0:54:43:e1:9c:d6:bb:40:02:c9:4e:06:45:73:
4d:81:ad:57:70:51:22:32:d1:11:52:b9:be:43:d7:
fb:64:d7:71:ac:0f:ec:fd:57:2b:93:76:a4:49:53:
f1:61:b1:26:4e:6f:8c:63:61:7d:65:da:d4:e3:15:
35:2d:ed:92:97:1a:7e:b8:46:9a:91:63:b6:c4:ec:
00:f3:08:33:19:8b:6e:06:fe:ec:b1:89:d7:21:f5:
ff:9a:5c:f5:d2:05:c1:6f:dc:e5:f8:7b:99:0d:06:
6c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:CF:C8:9F:3A:6A:93:A4:22:89:AF:17:D9:7F:F6:14:80:B0:24:59
X509v3 Authority Key Identifier:
keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/805A2E74660311EF90397033C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.24.26.0/24
Signature Algorithm: sha256WithRSAEncryption
56:27:bc:a7:94:92:1b:54:02:47:45:82:b0:3a:bb:1c:4a:ef:
71:30:6a:2e:65:0c:a8:91:02:ee:67:c3:05:7a:36:3c:06:33:
de:a8:3d:82:f2:30:0b:57:e5:45:e0:2a:9b:df:b2:0b:e8:ef:
45:98:40:19:e7:a0:97:bc:19:8f:78:de:11:87:59:ad:11:7f:
a0:8c:5d:44:c8:46:62:5e:fe:0a:b5:12:11:b2:e3:92:2c:da:
07:72:c8:7f:63:f3:b8:07:09:64:23:ed:3d:c6:a2:3d:f9:01:
6c:69:cc:8e:81:76:88:18:52:9e:2e:da:77:da:70:35:2b:9c:
d2:56:2b:e7:d4:8c:a8:0f:4c:b8:25:5d:33:db:8d:14:03:eb:
67:0f:da:f6:c7:a0:2d:66:e8:a6:a2:ad:87:74:41:1e:bd:61:
0d:46:0a:c8:9c:60:b2:27:51:5b:08:94:a3:c7:2e:c8:f8:08:
11:62:89:d3:92:02:24:a5:60:5b:d4:fb:57:29:ba:92:e6:28:
be:bb:43:31:47:75:21:4b:6d:dc:d9:c7:ed:e4:d8:73:40:e9:
c2:23:25:c6:e3:fd:74:21:fb:4c:a4:11:3f:ab:43:60:fb:de:
de:d4:43:19:63:25:29:41:35:00:58:61:07:02:ed:4f:64:91:
42:14:8b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:07:05 2025 by rpki-client