Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC7/A0390FC290E011EBA7FCA01EC4F9AE02/6ABAB046912911EBBB0F2409C4F9AE02.roa
File: 6ABAB046912911EBBB0F2409C4F9AE02.roa (raw, json)
Hash identifier: PefGd4up5kswrUu/hzlBcA3h8b7v7l8cGlJJog/Kdaw=
Subject key identifier: 40:20:CF:47:B1:0D:B1:74:72:FD:72:76:26:EA:C7:DD:20:A9:65:12
Certificate issuer: /CN=A91E9BC7/serialNumber=18896EFB3385F432ED82371E9340FFCE6A662233
Certificate serial: 049A
Authority key identifier: 18:89:6E:FB:33:85:F4:32:ED:82:37:1E:93:40:FF:CE:6A:66:22:33
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GIlu-zOF9DLtgjcek0D_zmpmIjM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC7/A0390FC290E011EBA7FCA01EC4F9AE02/6ABAB046912911EBBB0F2409C4F9AE02.roa
Signing time: Fri 03 Mar 2023 01:51:37 +0000
ROA not before: Fri 03 Mar 2023 01:51:37 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 56062
IP address blocks: 202.14.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1178 (0x49a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E9BC7
Validity
Not Before: Mar 3 01:51:37 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=640152a9-c44a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f0:a1:52:b2:ce:1e:68:f3:90:1b:fc:93:d2:
fc:0d:3e:a6:c0:c9:d6:16:d0:3b:f2:38:79:09:b9:
71:24:98:9e:db:c4:aa:77:95:57:1f:0d:f2:9e:08:
dc:0b:0f:ec:e9:13:a5:80:c5:89:f9:99:6c:ea:7e:
57:ab:0b:f5:37:fb:6f:86:b4:f3:90:d6:6f:a7:29:
0e:09:4d:7b:12:1f:23:ba:5f:06:ab:94:07:6b:f1:
e8:14:46:6b:da:ca:32:d3:5a:8d:ee:af:50:d0:71:
0b:7a:03:82:27:c2:61:9d:a1:40:36:e3:cc:98:e2:
ad:c9:1a:97:6c:b7:00:b4:20:e3:eb:0b:fd:5d:2e:
66:39:da:92:80:e5:1d:a7:70:e7:60:bb:ad:72:51:
ee:14:75:6e:c2:31:ff:55:6c:34:50:a1:33:97:ff:
4d:9b:2e:0f:a6:79:f1:17:c6:ef:42:7b:54:5f:73:
08:be:8a:43:b6:d5:b5:8a:01:70:e4:75:47:43:a5:
b2:4d:1c:68:5c:73:35:75:4f:80:5a:20:d6:14:82:
15:3f:3e:38:63:a9:42:5d:bc:e1:84:4e:8b:eb:24:
ca:06:2a:53:bf:b9:59:4f:cd:c9:a9:39:73:39:c7:
93:3e:66:13:d7:7f:7b:4d:e5:e2:d7:6a:92:e5:8e:
5e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:20:CF:47:B1:0D:B1:74:72:FD:72:76:26:EA:C7:DD:20:A9:65:12
X509v3 Authority Key Identifier:
keyid:18:89:6E:FB:33:85:F4:32:ED:82:37:1E:93:40:FF:CE:6A:66:22:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E9BC7/A0390FC290E011EBA7FCA01EC4F9AE02/GIlu-zOF9DLtgjcek0D_zmpmIjM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GIlu-zOF9DLtgjcek0D_zmpmIjM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC7/A0390FC290E011EBA7FCA01EC4F9AE02/6ABAB046912911EBBB0F2409C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.14.150.0/24
Signature Algorithm: sha256WithRSAEncryption
00:e8:e7:79:c4:86:3f:2c:4e:8f:fb:8e:ba:2e:89:bb:0c:28:
62:f9:86:ce:db:ff:0c:9b:d8:f5:3e:5e:eb:a7:50:1c:3e:72:
8e:f1:3a:a7:72:a4:15:47:90:ea:ca:fd:65:ac:70:dc:6a:99:
6a:06:5b:c6:d9:88:31:19:c7:92:05:c6:fb:70:14:23:ff:86:
fb:c4:9a:1a:01:1c:8b:f5:1b:04:8e:ea:69:18:91:10:62:4d:
e0:5e:6f:8f:a6:97:38:70:cc:a2:85:14:ed:c1:d4:df:a5:ac:
6b:cb:9c:1c:0a:fc:f9:ea:d4:47:ee:34:da:d7:55:69:a2:63:
09:04:c7:6d:80:f9:fa:fc:31:d6:a7:ec:fe:b0:9c:c4:b8:9a:
00:f2:73:1b:8c:b2:63:c6:15:f0:11:53:b9:16:07:84:af:b1:
3e:93:c7:57:f7:3e:9b:98:32:a5:67:7f:d6:d8:9c:aa:10:e4:
b6:d7:88:f3:8c:6d:b0:39:70:92:1c:80:5f:5d:00:fb:48:f4:
04:ad:64:f6:13:0f:f0:0b:76:a2:ae:1a:e2:bd:56:fc:e9:7b:
24:65:40:c6:87:24:8e:1e:e0:ed:ba:b3:23:8a:2e:49:90:b5:
6f:8b:15:72:de:96:6b:31:2f:f9:c9:cb:29:11:dc:93:15:99:
c9:28:35:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:40:21 2025 by rpki-client