Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/EAEC9066690E11EF9396CC48C4F9AE02.roa
File: EAEC9066690E11EF9396CC48C4F9AE02.roa (raw, json)
Hash identifier: itBUJ/NWTISnHVYwiSk058o8wCPmgPPTXD1wCEm1HPU=
Subject key identifier: E5:05:4C:90:0A:3C:AC:E0:04:5C:C3:8D:50:65:59:FF:FA:C7:E4:71
Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570
Certificate serial: 02E3
Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/EAEC9066690E11EF9396CC48C4F9AE02.roa
Signing time: Wed 27 Nov 2024 01:34:58 +0000
ROA not before: Wed 27 Nov 2024 01:34:58 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 140662
IP address blocks: 119.63.70.0/24 maxlen: 24
119.63.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 739 (0x2e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912442A
Validity
Not Before: Nov 27 01:34:58 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=67467742-866f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d6:0f:c1:ab:c2:d2:12:63:f8:51:34:41:33:
27:79:b5:ec:fe:df:d8:0c:6d:fa:bd:63:29:d6:08:
c2:f0:7a:e2:1f:72:5c:ec:67:d6:00:8d:f6:be:09:
e6:34:36:43:d3:d1:5e:c8:1f:2b:68:72:ff:dd:da:
4e:6e:15:7a:f2:0a:42:24:25:3c:4d:c3:eb:4f:a3:
71:f8:a4:a3:b8:25:4d:8a:e8:c3:6d:9f:49:a2:b4:
83:be:ca:a3:3f:49:b3:f5:a8:51:54:43:00:36:a3:
c9:64:3b:32:b6:bc:30:a0:11:8a:4e:ca:e9:da:17:
12:2f:6f:d0:9c:3a:ae:38:f9:27:d4:d0:14:e7:15:
a7:68:c1:38:af:ef:c4:23:f5:87:1a:88:ad:71:e6:
b7:ee:15:2c:1f:5b:03:16:86:4a:8c:45:8b:3f:c6:
00:e5:ee:62:7e:82:04:5f:ee:0d:82:c6:b2:8e:49:
f7:50:7a:da:db:f6:e0:80:9f:03:37:02:5f:f2:51:
6e:e7:2e:0f:2c:a7:78:7f:84:de:df:b6:4f:de:19:
bc:78:89:73:96:81:db:67:d8:57:1f:3d:24:1c:c8:
b1:52:c8:31:68:e3:62:fe:a0:a4:0e:08:f3:aa:23:
b4:26:3b:bd:0e:aa:77:ba:da:ac:07:72:81:d8:a7:
ed:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:05:4C:90:0A:3C:AC:E0:04:5C:C3:8D:50:65:59:FF:FA:C7:E4:71
X509v3 Authority Key Identifier:
keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/EAEC9066690E11EF9396CC48C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
119.63.70.0/24
119.63.82.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:bb:c9:4d:2b:29:1f:29:18:d6:31:02:c9:ff:59:f8:e0:e5:
c6:db:c6:b5:e0:33:45:e9:c9:b6:66:cd:97:bc:00:00:df:ea:
69:b6:47:36:7d:57:61:7d:c0:4b:6c:89:bb:67:42:ad:ee:fd:
10:36:c9:79:0f:15:1a:8f:15:a9:65:77:d7:b1:fc:f9:5e:a5:
10:cd:b3:92:aa:13:47:34:66:60:c0:ff:6f:33:f1:22:03:a8:
44:92:fd:84:d0:92:5a:18:97:bf:ca:33:d6:2d:16:a5:7c:d8:
f5:c4:8f:41:64:b5:7b:20:db:5a:cc:67:14:f0:69:0c:ca:f6:
3f:8a:df:17:42:e8:d1:41:96:59:58:fb:5a:64:42:d0:15:ac:
b3:04:be:17:16:11:38:e7:3b:d9:70:69:f4:78:07:0b:f3:48:
38:f8:bc:4a:54:bd:06:5f:74:a3:10:52:82:b2:bb:bb:96:db:
ef:21:e3:74:04:08:36:9c:d5:60:67:2c:74:43:34:cf:11:2f:
8b:d0:0c:df:3a:e2:84:42:76:23:e7:4e:12:fc:8b:9c:eb:37:
38:4a:2a:8d:9f:cb:e8:91:2c:17:7a:22:c2:c9:7e:59:1a:07:
3c:2a:a7:1f:00:75:83:3d:71:03:49:d7:b1:c6:45:f9:60:5a:
f3:1b:e3:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:31:03 2025 by rpki-client