Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/200F7106691311EF82B0FC62C4F9AE02.roa
File: 200F7106691311EF82B0FC62C4F9AE02.roa (raw, json)
Hash identifier: d/aMw06UKvCrIDovTtwhw18Yfx0jjxX2eyRA38OLxcQ=
Subject key identifier: 08:46:E8:3E:6E:5B:1C:65:17:77:F1:CF:35:79:58:D2:45:FB:E0:DA
Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570
Certificate serial: 02DC
Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/200F7106691311EF82B0FC62C4F9AE02.roa
Signing time: Wed 27 Nov 2024 01:34:52 +0000
ROA not before: Wed 27 Nov 2024 01:34:52 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 135676
IP address blocks: 223.27.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 732 (0x2dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912442A
Validity
Not Before: Nov 27 01:34:52 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=6746773b-e5ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6e:95:6a:8c:74:5f:72:b5:29:ac:0d:16:78:
58:bf:0b:74:86:e1:c7:bb:56:60:9d:76:af:2b:eb:
3e:a9:9a:70:34:7c:dd:a0:75:07:20:15:07:87:40:
71:2c:11:6c:7c:df:99:b1:76:ca:20:28:db:f0:c2:
f1:f7:7b:04:f2:e9:30:60:f0:99:93:4f:c8:ad:c2:
35:99:78:27:70:26:50:74:5a:c8:ee:11:a2:c5:6d:
9d:08:79:81:fa:66:3a:42:bb:ac:ea:a9:f2:1e:2a:
ca:d3:1f:58:8a:22:c8:9f:39:f6:21:56:c5:da:67:
c0:7f:50:70:a9:7d:6e:b2:81:53:4f:ad:ce:39:17:
0b:da:05:a4:44:49:ff:78:90:c2:38:7d:d9:25:f7:
ca:b7:7a:ac:6e:c9:51:d5:68:33:1f:ea:72:62:48:
fa:4e:30:4e:26:3f:ef:84:f1:62:a9:d0:bf:30:9c:
36:f0:de:66:e9:8b:6e:7e:d9:21:79:be:1f:7d:dc:
2a:c1:a9:fc:1f:e5:0b:f6:fd:8c:77:7c:8b:4d:d8:
db:25:83:62:9c:92:a7:14:af:37:62:23:55:43:4f:
ac:4f:ff:82:86:02:84:e3:36:db:30:18:c8:64:02:
f2:de:1c:ce:09:55:f1:12:4e:cb:7c:69:ca:cf:67:
fd:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:46:E8:3E:6E:5B:1C:65:17:77:F1:CF:35:79:58:D2:45:FB:E0:DA
X509v3 Authority Key Identifier:
keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/200F7106691311EF82B0FC62C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.197.0/24
Signature Algorithm: sha256WithRSAEncryption
20:d5:77:a0:ed:c2:69:0f:71:18:8e:9f:e6:49:ed:33:d2:ce:
b4:87:71:5e:5a:f9:14:cf:ab:75:63:d1:b9:16:7d:62:9c:23:
48:5a:c2:70:e5:2c:55:0a:a8:b9:39:8d:e9:bc:07:62:eb:0f:
d5:05:e4:02:d0:c2:32:b1:8f:4b:41:d1:fd:0b:23:62:38:3e:
fd:8b:ef:cb:23:2a:55:18:f5:10:b8:63:ad:2d:3f:2e:0b:74:
fe:a5:7b:9f:34:b2:6f:30:35:7a:95:a6:f5:dc:27:3f:ca:3e:
9a:e6:b4:9a:d7:a6:e0:4b:39:91:10:e6:30:fe:66:9c:cb:c3:
46:4c:3f:15:e6:fc:0c:7d:bd:c8:cc:58:8b:84:eb:ec:c4:c6:
d5:ea:8a:49:ec:30:49:8a:87:5d:79:7c:02:c1:80:65:08:fb:
90:15:f4:1a:a5:31:5f:e9:7a:ca:eb:af:93:6d:1b:76:98:1f:
97:a7:20:f0:5b:ca:30:01:c5:d5:6f:62:0b:f9:38:17:36:fd:
cb:82:85:64:7f:32:fe:aa:41:f5:86:57:1a:bb:52:44:5f:94:
aa:38:4c:3a:37:02:da:5a:44:26:ab:82:94:cd:54:fe:ca:f8:
ee:4f:ea:3a:39:8e:3f:bc:ed:24:b2:01:f2:dd:07:af:a2:c1:
59:88:84:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:17:55 2025 by rpki-client