Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/E969742CB33B11EEB4D87842C4F9AE02.roa
File: E969742CB33B11EEB4D87842C4F9AE02.roa (raw, json)
Hash identifier: /bP5RMzdbkL7/5EZqhq7cO3FfNuTY5k1xdEgv+lDTck=
Subject key identifier: 69:44:93:21:00:9D:6C:32:19:EF:67:41:B8:18:91:FF:4F:6B:E7:3A
Certificate issuer: /CN=A91CD4E0/serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD
Certificate serial: 05BB
Authority key identifier: D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/E969742CB33B11EEB4D87842C4F9AE02.roa
Signing time: Sat 10 Aug 2024 15:00:54 +0000
ROA not before: Sat 10 Aug 2024 15:00:54 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 24436
IP address blocks: 203.23.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1467 (0x5bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD4E0
Validity
Not Before: Aug 10 15:00:54 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66b780a6-e443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:a0:ea:b3:4b:7c:1b:09:e4:08:08:11:6d:38:
dd:18:76:9b:22:1f:04:15:db:d6:49:75:27:5e:67:
e0:ce:da:06:b8:6f:cb:3c:89:7d:03:f1:3e:e2:d6:
1b:40:00:cf:1a:87:3d:51:de:9f:f4:15:95:9a:57:
42:ba:24:f0:dd:40:3b:34:43:73:de:1b:be:10:70:
fb:78:cc:25:54:2e:e3:85:a1:6c:7c:99:c4:6f:83:
a2:be:6d:b6:ad:a4:95:34:33:34:3e:c7:3e:ca:84:
0e:83:79:77:f4:35:79:50:f3:3b:57:ad:bf:73:19:
27:b6:59:58:c7:40:4e:fe:45:53:84:ff:06:c7:40:
86:b9:30:e0:d9:ab:7f:93:09:f4:88:70:98:cb:49:
17:31:cd:be:29:96:87:7b:f5:e6:d5:d0:0b:4b:29:
b5:7e:6f:f4:d9:81:6c:66:54:5d:63:b0:42:4c:b4:
f4:58:c6:87:45:1d:e1:d9:34:2d:10:6f:ba:58:9b:
03:7d:44:12:92:1e:9b:67:fd:80:88:c1:15:ca:b8:
8e:da:88:30:61:8c:28:2c:d8:6d:fb:3a:da:9b:3b:
47:13:1c:b8:49:00:e0:c7:d6:a7:1c:3f:f2:28:7d:
c5:a3:be:80:3b:6b:33:6b:e4:0f:08:a6:9f:6c:6f:
cf:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:44:93:21:00:9D:6C:32:19:EF:67:41:B8:18:91:FF:4F:6B:E7:3A
X509v3 Authority Key Identifier:
keyid:D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/E969742CB33B11EEB4D87842C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.23.253.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:19:8d:26:90:fa:39:5e:32:a6:8f:3a:4b:b0:5f:e1:92:31:
a8:ae:d6:41:81:b5:0f:8b:6d:2f:7e:0e:ac:8c:e1:51:13:2b:
8d:38:e2:fd:fc:cf:3b:87:2c:41:97:f2:bc:12:e2:b3:fc:63:
2c:17:a2:2a:3d:d6:52:b7:04:c2:a9:2f:be:1b:24:75:ba:8a:
22:d9:d0:aa:09:c1:7d:87:5a:81:5f:1b:57:ce:ee:d4:60:61:
60:8b:23:2e:91:2f:ab:68:03:0d:56:b6:dd:db:3c:16:2f:0e:
72:66:b2:02:b3:51:c1:58:62:0f:4e:82:cf:a5:36:8d:51:22:
5b:7b:b5:9b:c2:e7:af:19:fd:b0:c3:51:2c:2a:86:dc:2c:b4:
64:95:d6:fd:17:1e:0f:f5:44:fa:87:e6:a5:72:59:ff:03:3f:
da:f7:58:d1:fd:96:9b:24:0e:3a:d6:67:83:97:b7:66:78:6d:
56:37:2c:18:8f:41:17:00:fa:86:6f:4b:b7:b1:32:69:ed:23:
94:f7:87:38:c7:65:76:16:ba:9b:15:40:98:88:f4:be:98:8c:
0a:97:c7:51:c2:80:ad:85:70:2d:17:3e:dd:3c:77:a7:db:b9:
77:d4:8f:31:7e:3a:5d:11:ad:c0:5a:56:bb:d3:2c:c6:4b:a1:
0a:1a:e8:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 07:45:12 2025 by rpki-client