Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BA7491AAE0FE11EF9196F463C4F9AE02.roa
File: BA7491AAE0FE11EF9196F463C4F9AE02.roa (raw, json)
Hash identifier: Ir4i9nJYMLN6SF2hTwXjlm9gkjvDcx0KEIJUDLVPVCI=
Subject key identifier: 26:69:EC:01:F4:50:23:A4:0E:FD:7E:3D:6F:A2:95:06:54:FC:82:85
Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138
Certificate serial: 0270
Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BA7491AAE0FE11EF9196F463C4F9AE02.roa
Signing time: Sun 02 Feb 2025 00:43:33 +0000
ROA not before: Sun 02 Feb 2025 00:43:33 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 20473
IP address blocks: 202.155.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 624 (0x270)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9192C18
Validity
Not Before: Feb 2 00:43:33 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=679ebfb4-2a8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:50:db:94:87:f4:03:0b:f5:a0:d4:ae:0f:20:
22:f6:80:49:ce:ec:4a:d0:52:5a:ba:49:90:f7:2d:
ac:49:ec:35:e1:b6:82:00:a2:ae:3e:cb:d1:ce:31:
c4:ed:50:e5:1f:84:33:06:2b:73:cd:9b:c7:18:5f:
2b:88:a9:a1:cc:38:2f:4e:71:16:f0:30:67:8d:a1:
54:b2:af:9f:1a:7a:38:22:90:be:d3:3c:1a:6e:a3:
70:f3:78:c3:ad:d7:40:51:af:99:0a:fa:1f:a0:55:
4f:0c:1a:a0:fa:6a:e5:6f:a3:25:f9:a9:61:e7:6b:
93:82:7d:52:8e:97:52:d3:d6:0c:00:c1:64:24:4f:
3d:51:b0:2b:be:90:ea:11:59:01:a1:97:db:1a:66:
42:8b:93:46:f4:0f:09:c1:9b:8f:12:6e:dc:b0:28:
01:77:b9:fa:cb:e6:54:12:e4:1a:3b:d1:26:60:83:
b8:19:26:50:09:30:d9:e9:82:7d:2f:65:fd:7e:a3:
a3:e1:78:d6:46:c6:3e:33:89:9f:4d:4b:e1:8b:7e:
d5:55:2e:9b:71:c2:04:9c:29:7f:b9:37:83:36:17:
60:7a:47:ef:5e:8b:9a:1d:64:cd:67:63:ae:0f:91:
95:45:63:d5:f3:68:3a:ca:18:c6:58:fe:b4:a2:af:
b2:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:69:EC:01:F4:50:23:A4:0E:FD:7E:3D:6F:A2:95:06:54:FC:82:85
X509v3 Authority Key Identifier:
keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BA7491AAE0FE11EF9196F463C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.155.133.0/24
Signature Algorithm: sha256WithRSAEncryption
00:24:1e:30:51:cc:5d:8e:74:22:30:36:d3:28:17:ab:9b:06:
90:cf:09:26:d0:96:44:77:10:b5:88:78:c5:99:ad:af:d9:a4:
61:fa:b5:10:1d:e8:33:4a:2e:ed:e7:3c:29:01:ad:5d:09:6c:
ff:fd:8b:5c:a0:58:25:ba:4c:eb:71:d3:39:73:82:e8:68:56:
2b:0f:78:9c:49:de:7d:ec:fe:02:a1:9a:2c:bc:9b:81:18:a9:
ec:f2:1b:f8:ab:40:6e:dc:99:7f:99:f5:95:26:62:57:1d:1a:
9a:01:a0:73:49:2c:c1:8c:a0:3d:4c:c7:32:17:e2:f8:c5:22:
64:15:71:82:e8:d1:f1:c1:fb:b9:ef:5e:63:8d:b6:bf:20:e1:
c7:da:23:b9:34:ba:a4:c3:d0:e9:0a:93:15:20:dc:15:d5:10:
8d:d5:e8:5e:a4:68:f0:2e:ce:b3:2c:69:85:91:e6:7f:e0:b1:
b6:90:73:04:1f:7c:9e:86:7f:0c:02:6a:2e:2b:6b:87:c1:e2:
ac:71:45:18:73:04:c4:ae:78:a1:81:e8:ce:84:70:47:6f:a7:
8b:36:f3:b1:51:05:49:2d:25:37:93:75:c1:29:7c:0e:b7:85:
63:99:08:2f:a9:51:49:a2:f7:fb:c2:a6:16:26:56:d8:a7:e6:
90:c7:06:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 23:06:08 2025 by rpki-client