Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/4F10ED76D3B311EFA7B56234C4F9AE02.roa
File: 4F10ED76D3B311EFA7B56234C4F9AE02.roa (raw, json)
Hash identifier: lSHPz/Z+uxa8tArC1Mc4CZ0YnIqrOvRe7SHXj7pf8js=
Subject key identifier: A3:E6:51:BA:9A:10:61:F7:16:1F:CE:5B:F1:80:A0:DA:22:6B:3D:80
Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138
Certificate serial: 0251
Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/4F10ED76D3B311EFA7B56234C4F9AE02.roa
Signing time: Thu 16 Jan 2025 02:40:55 +0000
ROA not before: Thu 16 Jan 2025 02:40:55 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 133159
IP address blocks: 202.155.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 593 (0x251)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9192C18
Validity
Not Before: Jan 16 02:40:55 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=678871b7-4d2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:98:87:ef:93:d0:89:db:6c:d9:8b:c4:01:3b:
b9:fd:35:79:70:90:a7:17:9c:59:f0:a4:ce:ca:7a:
d1:66:4b:aa:a5:4e:b9:2d:a2:6f:fb:ef:e2:ed:3d:
60:d2:b2:ff:3f:ea:c8:97:89:1c:0b:80:01:ec:7b:
d2:60:4a:4e:b2:87:e6:ac:30:aa:a2:0c:29:40:89:
85:50:16:7a:83:ff:bd:18:71:e7:e2:d1:9a:2d:79:
81:87:e2:4d:ae:d7:8f:14:55:e6:98:49:86:3a:a6:
2e:38:cc:ee:d3:29:f8:4d:e2:a0:e7:d3:8a:21:eb:
8a:9f:ba:9f:d8:de:16:ab:89:52:2e:77:b8:a2:84:
68:a8:c7:2c:38:2d:2c:2d:fe:60:3e:26:bf:d8:45:
06:2b:cb:b7:8f:74:6a:95:91:17:2e:fd:4e:8b:f9:
94:88:26:de:54:1e:8c:f4:ff:63:90:74:2d:84:2b:
89:b6:ee:25:9b:5d:e6:53:e9:08:29:95:ca:73:d9:
e6:3b:9e:94:7d:66:b5:7b:59:42:60:04:5a:bc:9c:
1a:7c:a1:00:1d:da:5d:0c:ec:b1:2e:61:69:ac:71:
ae:47:82:09:22:a7:02:a2:27:40:21:7f:a5:6b:2e:
7e:ae:2a:9d:1a:48:43:0a:3b:54:08:51:d0:d9:b6:
7f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:E6:51:BA:9A:10:61:F7:16:1F:CE:5B:F1:80:A0:DA:22:6B:3D:80
X509v3 Authority Key Identifier:
keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/4F10ED76D3B311EFA7B56234C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.155.133.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:38:4f:07:3a:c6:2c:c2:a8:f9:34:58:38:ae:df:67:06:2a:
df:1e:29:a9:a3:dd:63:0a:87:fe:39:67:f4:a3:8f:2e:2c:31:
9f:61:e8:5a:a2:b8:8d:86:31:23:53:c6:ff:1d:86:47:d9:0c:
08:85:d8:da:2a:18:fc:4e:1d:78:23:c1:cb:36:a0:e7:44:c0:
c5:ea:e9:64:3f:aa:3c:0e:af:84:23:55:81:94:3b:e7:00:cf:
5b:c2:a0:fe:e2:3c:fd:c8:6c:52:ec:61:b2:20:dd:a6:a1:cb:
b6:1d:52:00:a4:91:a2:b8:11:66:b5:4d:13:c5:04:8d:e3:67:
04:7b:7e:3a:64:3f:a3:b8:9f:d8:cf:46:74:47:e1:d1:19:c5:
93:a9:34:11:43:68:03:a9:08:48:32:af:2e:01:c8:4f:bf:08:
4c:0b:e7:66:17:df:54:43:15:c3:8a:e0:29:c2:90:fb:41:f1:
fb:13:7c:28:d6:eb:b2:21:e2:a7:1f:b3:b6:c5:ff:5e:07:3e:
06:36:57:e1:c7:40:c9:c2:26:cd:d5:2c:5a:98:ad:1f:98:c2:
91:3d:60:81:ad:63:c8:a7:04:2f:8c:4f:49:b8:65:18:e9:df:
f1:99:cd:e3:1c:8f:8d:24:f1:3b:31:03:88:38:18:bb:05:b5:
94:94:ce:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:28:23 2025 by rpki-client