Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/374334EE902C11EA898EFD7FC4F9AE02.roa
File: 374334EE902C11EA898EFD7FC4F9AE02.roa (raw, json)
Hash identifier: RZl2cb5dn6ASnfAVKfz/IPxBU98j/kEEE2Beq2zR6Oc=
Subject key identifier: A7:E9:DC:DA:35:2C:02:7D:57:DF:19:1B:56:9F:F0:4A:81:A4:09:6E
Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E
Certificate serial: 363B
Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/374334EE902C11EA898EFD7FC4F9AE02.roa
Signing time: Mon 02 Dec 2024 14:30:31 +0000
ROA not before: Mon 02 Dec 2024 14:30:31 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 138427
IP address blocks: 122.154.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13883 (0x363b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9125475
Validity
Not Before: Dec 2 14:30:31 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=674dc486-4fbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:96:49:b6:d9:dc:b2:57:38:ea:6c:8d:8e:5a:
e1:4e:18:cd:95:58:1e:1c:7c:b3:e3:8d:ad:dd:58:
14:43:78:a6:9c:2d:2c:3d:13:14:73:3e:49:ce:6f:
86:0b:81:3e:ee:fd:6a:df:d6:1e:c7:67:9a:3b:8a:
ff:bb:e3:be:58:1a:0f:de:36:01:a3:cf:1e:75:1b:
2b:61:2f:72:80:34:08:b3:ac:85:cf:cf:27:d7:ee:
13:0e:cd:a7:a9:e4:a8:84:bb:43:e3:18:1d:03:95:
fd:a8:d5:e9:7a:25:44:6b:fb:d2:fd:4c:03:78:24:
7c:39:7b:61:35:ba:1c:78:da:8a:d5:39:9a:f5:04:
ca:fd:4c:cc:cc:ca:46:1b:15:bc:1c:4f:45:c0:c4:
eb:5c:44:22:9e:d3:27:ff:4e:40:a8:d3:09:6b:77:
d3:9f:bd:04:ac:1a:89:89:42:90:f1:a6:6a:61:60:
dc:4c:b1:eb:0a:d7:53:6e:20:2e:e4:48:5b:4a:11:
d9:bb:60:6f:14:a5:1d:01:70:90:2c:3f:fb:5b:33:
f7:e9:17:55:d9:e3:2e:9e:f3:ba:42:87:1d:32:c4:
64:bd:52:26:75:ea:3a:09:2d:a8:58:04:c0:bb:8c:
93:05:d7:cb:89:31:11:ed:a6:0f:64:3c:f9:07:32:
09:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:E9:DC:DA:35:2C:02:7D:57:DF:19:1B:56:9F:F0:4A:81:A4:09:6E
X509v3 Authority Key Identifier:
keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/374334EE902C11EA898EFD7FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
122.154.13.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:d1:35:43:56:57:f7:01:4c:3b:4f:3f:47:c2:96:97:c2:dc:
66:d2:35:5b:2c:51:92:17:cf:a5:ee:01:03:6d:1b:c3:61:15:
4a:ad:2d:47:b8:02:10:c1:58:9e:37:26:85:ab:f3:c4:4b:44:
fe:1d:fe:ba:a2:4a:c5:56:21:f9:cd:27:3f:dd:0a:56:16:e6:
c9:77:24:e7:c4:25:16:f7:a8:2b:ab:82:29:d7:cd:d0:17:d4:
86:31:5f:99:ac:f3:e4:e9:dc:18:1e:8c:6e:8b:6b:9e:36:22:
3e:54:5b:2f:7e:0c:42:72:00:d5:e2:7e:17:4b:3c:a0:65:d6:
1d:0a:17:5b:4b:8b:f2:ea:ce:33:4b:ea:29:55:24:65:6e:0b:
b9:ac:22:d1:26:3c:1a:20:32:c1:99:9c:44:0a:c6:cf:38:7d:
7a:07:fc:ab:61:9e:2c:71:28:37:ff:ab:c0:80:af:47:5c:11:
4d:ef:24:4a:4b:d0:e8:ab:b2:ab:b0:a4:df:88:01:8a:80:14:
b3:c4:28:7b:ee:36:9e:22:e9:6a:61:4a:02:2b:f7:93:43:d3:
1e:d3:19:e2:c6:ff:a9:86:35:fb:36:bf:8e:95:45:27:20:8f:
bc:07:58:0c:2f:80:a1:61:7e:50:ec:36:7b:03:34:11:12:1d:
58:ae:78:d1
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICNjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz
M0E4ODc1MEUwHhcNMjQxMjAyMTQzMDMxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzRkYzQ4Ni00ZmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAppZJttncslc46myNjlrhThjNlVgeHHyz442t3VgUQ3imnC0sPRMUcz5Jzm+G
C4E+7v1q39Yex2eaO4r/u+O+WBoP3jYBo88edRsrYS9ygDQIs6yFz88n1+4TDs2n
qeSohLtD4xgdA5X9qNXpeiVEa/vS/UwDeCR8OXthNboceNqK1Tma9QTK/UzMzMpG
GxW8HE9FwMTrXEQintMn/05AqNMJa3fTn70ErBqJiUKQ8aZqYWDcTLHrCtdTbiAu
5EhbShHZu2BvFKUdAXCQLD/7WzP36RdV2eMunvO6QocdMsRkvVImdeo6CS2oWATA
u4yTBdfLiTER7aYPZDz5BzIJ6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKfp3No1
LAJ9V98ZG1af8EqBpAluMB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE
NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk
UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvMzc0MzM0RUU5
MDJDMTFFQTg5OEVGRDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAB6mg0wDQYJKoZIhvcNAQELBQADggEBAGrRNUNWV/cBTDtP
P0fClpfC3GbSNVssUZIXz6XuAQNtG8NhFUqtLUe4AhDBWJ43JoWr88RLRP4d/rqi
SsVWIfnNJz/dClYW5sl3JOfEJRb3qCurginXzdAX1IYxX5ms8+Tp3BgejG6La542
Ij5UWy9+DEJyANXifhdLPKBl1h0KF1tLi/LqzjNL6ilVJGVuC7msItEmPBogMsGZ
nEQKxs84fXoH/KthnixxKDf/q8CAr0dcEU3vJEpL0OirsquwpN+IAYqAFLPEKHvu
Np4i6WphSgIr95ND0x7TGeLG/6mGNfs2v46VRScgj7wHWAwvgKFhflDsNnsDNBES
HViueNE=
-----END CERTIFICATE-----
Generated at Mon Apr 7 16:36:40 2025 by rpki-client