Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/B6E083D46E2F11EEB9C12A34C4F9AE02.roa
File: B6E083D46E2F11EEB9C12A34C4F9AE02.roa (raw, json)
Hash identifier: VWNAPC6UIfMVQch4vSc+1QxFpjuFdCFpkSLGoYnJWLQ=
Subject key identifier: 34:78:8C:3C:4E:E1:12:95:3E:43:2C:76:EA:DD:E8:EC:F3:E4:56:F6
Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial: 0389
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/B6E083D46E2F11EEB9C12A34C4F9AE02.roa
Signing time: Sat 15 Jun 2024 05:11:14 +0000
ROA not before: Sat 15 Jun 2024 05:11:14 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 9009
IP address blocks: 203.34.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 905 (0x389)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918FC75
Validity
Not Before: Jun 15 05:11:14 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=666d2272-0d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:69:1e:41:60:5b:8d:b3:20:f7:39:b6:d2:b2:
58:e7:74:66:91:db:76:c9:da:09:d0:8a:4a:79:3a:
c0:62:31:0e:1e:17:d0:c2:5d:9c:03:76:f8:7f:06:
6f:60:e7:3f:d2:ec:f1:5d:05:7b:31:64:81:0c:47:
8b:0b:ae:a7:6f:5c:d2:4e:5d:40:07:d3:11:00:b3:
4d:69:d8:76:f8:00:dc:94:83:46:28:76:88:f7:ba:
f9:a1:b1:fd:e1:80:7f:08:3c:0c:14:7f:a0:42:95:
e4:66:a4:9b:91:a1:d0:a0:3a:e4:c8:a1:a1:03:78:
31:bf:6b:7c:6b:d2:86:c5:c9:85:66:83:78:bd:e3:
1b:ca:9b:2a:80:c6:6b:11:6f:9b:5a:86:eb:2a:8f:
93:b8:33:ce:94:c8:8e:ac:f4:f8:84:bc:aa:e0:43:
d4:fd:78:19:91:75:76:76:37:53:85:b5:6b:b3:7b:
b9:a5:5d:bf:a0:04:40:6d:80:ff:b4:d6:3c:f7:fe:
86:d8:21:ec:af:54:47:9f:df:a3:60:73:3f:09:d8:
c9:45:bc:c9:99:41:b8:89:0c:c9:6d:ec:43:64:38:
05:11:f9:c7:39:ec:24:89:5b:4a:21:73:af:84:77:
6b:0d:32:a3:e0:f7:cf:1c:a7:38:be:21:3e:05:91:
54:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:78:8C:3C:4E:E1:12:95:3E:43:2C:76:EA:DD:E8:EC:F3:E4:56:F6
X509v3 Authority Key Identifier:
keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/B6E083D46E2F11EEB9C12A34C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.34.26.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:3a:1f:58:42:b3:c1:71:e2:dc:1f:94:69:12:02:52:e3:f1:
ed:b6:ba:01:14:3e:ae:49:5f:e7:b1:b7:c9:70:7b:35:89:21:
53:e7:ad:f3:3c:e2:a0:51:92:f7:8f:43:ce:79:a3:ce:a1:b4:
e2:51:f6:5a:76:2a:10:44:54:ac:7a:f3:6a:7a:9d:c6:a2:99:
38:ea:b4:7b:1b:91:76:b5:17:44:e5:79:ff:96:af:92:df:a6:
73:10:3d:f8:51:4b:ac:49:24:db:bc:b3:30:fc:cb:cd:44:5f:
51:02:23:86:56:73:39:2d:a5:74:f0:db:9c:83:b3:9e:2d:df:
5b:3a:b8:ee:c1:75:e6:67:a8:08:7a:d8:d2:c6:f1:f9:a8:a7:
ca:ff:32:0a:5f:72:99:d0:4e:01:ad:6f:f8:97:89:a1:e8:1f:
d4:2a:c7:f1:29:19:55:cd:f8:10:55:b3:0a:98:e7:c9:fa:86:
b6:bb:f1:81:35:d5:50:0d:c3:e7:a2:f6:1a:0c:5c:a0:92:31:
f6:24:f3:24:7e:2e:26:2f:bb:01:52:8b:0a:40:b1:71:e2:dc:
5f:41:3a:1c:74:60:55:e6:ed:fe:e4:a9:a8:e4:04:19:2f:e6:
b3:cc:25:dc:db:21:b3:5a:1f:d8:97:7d:71:22:83:79:eb:c4:
59:d0:00:c8
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF
RDk4NDY0OUQwHhcNMjQwNjE1MDUxMTE0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjZkMjI3Mi0wZDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwmkeQWBbjbMg9zm20rJY53Rmkdt2ydoJ0IpKeTrAYjEOHhfQwl2cA3b4fwZv
YOc/0uzxXQV7MWSBDEeLC66nb1zSTl1AB9MRALNNadh2+ADclINGKHaI97r5obH9
4YB/CDwMFH+gQpXkZqSbkaHQoDrkyKGhA3gxv2t8a9KGxcmFZoN4veMbypsqgMZr
EW+bWobrKo+TuDPOlMiOrPT4hLyq4EPU/XgZkXV2djdThbVrs3u5pV2/oARAbYD/
tNY89/6G2CHsr1RHn9+jYHM/CdjJRbzJmUG4iQzJbexDZDgFEfnHOewkiVtKIXOv
hHdrDTKj4PfPHKc4viE+BZFUnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDR4jDxO
4RKVPkMsdurd6Ozz5Fb2MB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE
NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa
SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvQjZFMDgzRDQ2
RTJGMTFFRUI5QzEyQTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADLIhowDQYJKoZIhvcNAQELBQADggEBAE06H1hCs8Fx4twf
lGkSAlLj8e22ugEUPq5JX+ext8lwezWJIVPnrfM84qBRkvePQ855o86htOJR9lp2
KhBEVKx682p6ncaimTjqtHsbkXa1F0Tlef+Wr5LfpnMQPfhRS6xJJNu8szD8y81E
X1ECI4ZWczktpXTw25yDs54t31s6uO7BdeZnqAh62NLG8fmop8r/MgpfcpnQTgGt
b/iXiaHoH9Qqx/EpGVXN+BBVswqY58n6hra78YE11VANw+ei9hoMXKCSMfYk8yR+
LiYvuwFSiwpAsXHi3F9BOhx0YFXm7f7kqajkBBkv5rPMJdzbIbNaH9iXfXEig3nr
xFnQAMg=
-----END CERTIFICATE-----
Generated at Sun Apr 6 15:13:12 2025 by rpki-client