Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/1519FB12F8B611EF91DD795BC4F9AE02.roa
File: 1519FB12F8B611EF91DD795BC4F9AE02.roa (raw, json)
Hash identifier: v2vRc6B+gwZg5NOfzaQPP6ML2YBJcqr080DwDx1pUOg=
Subject key identifier: DD:0A:10:A0:41:00:F0:F6:BC:FC:BB:66:4F:EE:15:3E:14:F6:F6:59
Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570
Certificate serial: 0327
Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/1519FB12F8B611EF91DD795BC4F9AE02.roa
Signing time: Tue 04 Mar 2025 05:03:59 +0000
ROA not before: Tue 04 Mar 2025 05:03:59 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 153645
IP address blocks: 116.193.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 807 (0x327)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912442A
Validity
Not Before: Mar 4 05:03:59 2025 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=67c689bf-bbff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9b:3d:95:e4:17:86:8b:54:e3:63:89:26:79:
be:40:ce:e9:6f:3f:86:7d:1b:d0:c5:48:2b:1e:03:
70:c6:d8:9f:38:8b:04:78:dd:67:7b:33:be:ae:20:
d6:3f:29:59:00:47:da:7e:7d:27:e4:b2:47:dd:e0:
d7:ac:4c:b6:be:5e:33:ab:5f:6d:32:98:2e:b7:94:
84:77:ba:07:c5:cb:9e:2d:ee:86:c0:b5:a4:58:85:
fd:7b:14:3e:c9:7b:5d:d1:06:f5:e5:e3:90:8b:de:
15:49:f8:1e:ad:1b:cc:28:54:24:9c:45:49:26:93:
b3:43:ce:20:f7:9d:66:16:68:8f:94:f3:1e:76:b2:
98:70:1c:53:c2:a0:af:ff:d8:11:38:d6:24:5f:4d:
57:27:1e:b3:0b:a6:27:15:9b:73:4b:de:bc:43:a2:
49:bd:9d:d5:e5:69:f3:4d:02:0b:7d:b4:89:52:60:
88:20:03:ca:7d:95:36:be:05:8d:df:3d:62:5b:f6:
31:9d:7d:0c:98:7b:89:6b:af:54:2c:13:a3:1a:32:
24:37:8f:70:37:2e:e5:e3:e7:c0:00:1a:9f:4e:18:
e8:cc:d6:9e:05:2d:a5:2f:96:ab:5e:95:a2:84:19:
55:0f:4a:ae:65:ad:15:15:34:c8:d4:fe:a7:92:1d:
59:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:0A:10:A0:41:00:F0:F6:BC:FC:BB:66:4F:EE:15:3E:14:F6:F6:59
X509v3 Authority Key Identifier:
keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/1519FB12F8B611EF91DD795BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.193.149.0/24
Signature Algorithm: sha256WithRSAEncryption
38:c6:e1:ff:20:6f:84:a9:ca:36:16:69:53:81:ee:0b:c5:5e:
87:8c:0d:fa:df:95:c3:d3:a4:96:9c:a7:e3:8a:2e:0a:7e:83:
f7:c2:f6:a1:0f:a1:99:20:68:42:cc:a4:8b:da:94:ee:11:e4:
d0:3f:63:36:ef:bc:ac:90:e0:72:39:a9:e5:70:6e:36:04:8f:
a3:0a:07:1d:73:3f:7d:f5:91:3f:26:07:87:3c:c2:86:19:c1:
39:0f:90:53:2b:3f:39:58:b6:68:be:c3:cc:d6:d3:f2:48:17:
4a:67:cf:8d:75:4f:02:ed:1b:9e:26:a9:04:70:77:53:1d:0d:
8c:af:13:31:87:dc:dc:ca:b1:5f:f0:91:a8:1f:b9:ff:16:74:
d8:68:9f:8b:b3:3d:02:ea:90:c0:56:d3:39:fb:ae:f8:be:74:
b0:4f:87:1e:44:aa:ef:ac:9f:8a:34:58:dc:5b:7c:0d:09:6a:
68:bb:c4:f7:4e:d2:dc:13:58:56:e0:a9:d9:3c:86:b3:44:e2:
96:36:cd:d1:c5:b0:95:6f:8a:e6:97:34:b3:1c:ea:20:62:3b:
53:36:aa:d2:5a:78:50:05:7c:8b:f2:ce:45:73:cb:5b:cb:af:
2a:45:cd:26:fb:5d:3d:85:ba:aa:f0:e6:c5:1c:02:2b:e9:85:
55:92:2c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:50:09 2025 by rpki-client