Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912AC3E/0F50E03633BA11EA95828581C4F9AE02/72CF780C819311EB8964C17EC4F9AE02.roa
File: 72CF780C819311EB8964C17EC4F9AE02.roa (raw, json)
Hash identifier: qEnxbXTZjYArRGRzDWZrlZe2tR2ZHb8POdNuo8ieu30=
Subject key identifier: 7B:A0:5C:30:3A:04:CC:F8:CB:8F:A3:98:96:D0:9A:39:FA:B6:46:EE
Certificate issuer: /CN=A912AC3E/serialNumber=C869E0A53875FC1259786B527E6784CBF1F89B40
Certificate serial: 0B27
Authority key identifier: C8:69:E0:A5:38:75:FC:12:59:78:6B:52:7E:67:84:CB:F1:F8:9B:40
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yGngpTh1_BJZeGtSfmeEy_H4m0A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912AC3E/0F50E03633BA11EA95828581C4F9AE02/72CF780C819311EB8964C17EC4F9AE02.roa
Signing time: Tue 24 Dec 2024 19:17:34 +0000
ROA not before: Tue 24 Dec 2024 19:17:34 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 4589
IP address blocks: 59.191.240.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2855 (0xb27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912AC3E
Validity
Not Before: Dec 24 19:17:34 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=676b08ce-5ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:08:6d:65:27:7e:70:dd:71:f3:78:a3:38:02:
2b:14:79:39:02:92:0d:34:79:20:63:2b:a0:41:06:
47:03:c9:b5:8a:11:60:da:99:05:d3:fb:cd:f1:5e:
94:11:4a:2c:ae:b0:c5:0d:30:2c:99:5d:97:68:98:
b0:a1:db:d6:11:5f:5c:ab:f4:8d:d3:d0:47:f9:34:
e6:39:24:af:4c:a7:c1:a9:1c:90:e9:db:13:85:bb:
e7:ab:89:10:77:ee:a8:b7:c1:d3:5a:dc:c2:af:19:
0c:77:c5:98:1e:1c:35:fc:1a:90:55:a7:e1:b7:ab:
53:16:c0:fa:9f:4b:57:d8:e3:be:7a:b8:79:8c:a0:
7a:6f:7d:a4:ab:dc:aa:61:f5:20:4a:f4:27:0f:86:
7d:d0:9c:50:07:84:da:9a:7f:95:a6:ca:55:1a:1e:
0e:75:81:cc:19:fe:a4:96:64:85:e1:91:fa:59:84:
aa:a5:0f:67:b5:23:db:29:66:51:b4:d1:26:25:76:
c0:61:32:68:dd:1f:02:82:9c:9b:c2:a4:e6:23:c1:
06:3b:fd:11:ca:1f:6c:39:db:93:e1:da:d3:a2:68:
62:b5:f2:7b:ab:5d:84:99:b3:bb:49:5d:91:ef:3e:
70:a3:aa:e7:f7:70:80:45:5d:29:75:87:9a:da:8f:
59:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:A0:5C:30:3A:04:CC:F8:CB:8F:A3:98:96:D0:9A:39:FA:B6:46:EE
X509v3 Authority Key Identifier:
keyid:C8:69:E0:A5:38:75:FC:12:59:78:6B:52:7E:67:84:CB:F1:F8:9B:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912AC3E/0F50E03633BA11EA95828581C4F9AE02/yGngpTh1_BJZeGtSfmeEy_H4m0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yGngpTh1_BJZeGtSfmeEy_H4m0A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AC3E/0F50E03633BA11EA95828581C4F9AE02/72CF780C819311EB8964C17EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.191.240.0/20
Signature Algorithm: sha256WithRSAEncryption
7c:7f:54:c1:86:82:b9:5d:2f:bd:0c:05:1a:18:f7:0b:01:c6:
4b:1a:ae:5c:07:38:fb:8c:25:f4:f7:e5:1c:c6:d2:a2:a1:38:
62:e6:4b:38:76:1c:8f:35:3f:42:d8:27:65:ad:18:11:c0:1e:
37:22:e8:72:4d:63:7b:1d:13:38:a7:4a:84:64:19:61:6a:f0:
16:fe:81:6b:d6:5e:87:08:ce:4a:d7:37:3a:9b:8b:ee:24:27:
01:fb:b7:36:e8:af:d9:a6:15:0c:96:a2:f4:83:2b:6d:f3:4f:
d0:28:e9:fb:65:40:b6:53:f6:12:1d:c6:e3:37:4f:6d:9e:6a:
3e:19:54:ca:f4:52:c3:aa:96:ab:79:ee:5e:4d:db:ca:0c:d8:
ba:e0:19:b3:59:31:bc:b2:95:2a:32:0f:cd:ad:05:8b:8e:af:
e7:0e:0d:ad:35:74:4e:05:4c:dd:46:0d:21:6c:96:aa:92:e7:
00:6e:63:b0:3a:a7:c1:47:c3:17:59:24:0c:7d:53:2a:96:df:
c4:e0:c9:c8:b5:a8:a0:fa:a5:9a:c8:fe:50:82:77:93:99:71:
c7:0f:69:9a:b5:76:bc:97:7a:2b:e0:b9:c8:3f:e3:8f:b8:e3:
e6:f8:21:51:bb:25:9e:21:c7:25:9c:18:64:02:6c:3f:ff:b2:
d7:fa:c9:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:10:00 2025 by rpki-client