Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/0DBB8642B84C11EF8F628659C4F9AE02.roa
File: 0DBB8642B84C11EF8F628659C4F9AE02.roa (raw, json)
Hash identifier: E15GmewgXqOMq5eWqJuAPdOTtaOMuLwWQmCYuZoW1/I=
Subject key identifier: FD:DB:4C:2C:69:B2:18:07:A0:1C:93:33:7B:30:7D:53:3C:94:D2:9A
Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Certificate serial: 3930
Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/0DBB8642B84C11EF8F628659C4F9AE02.roa
Signing time: Thu 12 Dec 2024 05:43:46 +0000
ROA not before: Thu 12 Dec 2024 05:43:46 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 24344
IP address blocks: 110.170.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14640 (0x3930)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9137ABC
Validity
Not Before: Dec 12 05:43:46 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=675a7812-a9e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:54:74:19:46:85:a8:ae:84:14:33:28:83:2d:
9c:c3:4b:98:9e:04:67:1c:6a:ac:ba:a7:b3:2b:ef:
ee:98:dc:b7:1d:24:82:33:f8:fc:c8:1a:48:59:dd:
f8:78:23:21:56:71:cb:f9:fd:60:47:0b:8d:02:29:
08:a6:bc:5b:57:ec:1c:b3:e7:c1:69:65:e3:9e:94:
92:c6:5c:99:6f:90:3b:b8:0c:ca:3f:60:e5:ba:1f:
fd:f3:35:eb:62:c4:32:d3:f1:ca:ba:1d:f4:2c:c7:
c3:99:f6:89:3f:ce:7e:42:2f:5d:c3:95:29:cc:0e:
cf:90:10:60:65:5b:3a:58:a5:00:01:6e:ad:33:ae:
8c:c9:9a:a5:47:f9:8f:6d:e1:e9:8b:21:b5:a9:5f:
6c:f3:27:26:6c:22:07:4b:70:fe:80:9f:4d:87:ea:
1d:dd:69:7b:b5:ef:e7:7f:4e:4d:d0:e5:12:1f:cd:
ab:92:1a:f0:f7:9d:07:da:b2:55:09:c8:ad:29:8d:
75:99:5f:61:6d:be:c9:a0:92:36:e6:3f:97:ca:b4:
58:36:da:d1:ec:94:76:5d:7d:18:fa:d5:fa:06:cb:
06:ac:d1:67:67:63:19:27:08:d0:78:bf:08:f4:42:
af:ee:1c:53:d0:7a:13:72:6b:1d:18:de:e5:d0:2d:
7a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:DB:4C:2C:69:B2:18:07:A0:1C:93:33:7B:30:7D:53:3C:94:D2:9A
X509v3 Authority Key Identifier:
keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/0DBB8642B84C11EF8F628659C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
110.170.138.0/24
Signature Algorithm: sha256WithRSAEncryption
17:75:a2:15:24:32:14:aa:07:9c:f8:11:95:a9:eb:0d:a0:4b:
02:ec:29:6c:05:c9:ee:04:c6:c3:6c:57:69:26:07:81:f7:70:
b9:a9:ed:72:f3:95:2a:91:7b:7a:79:4b:c4:c7:8f:d2:62:ab:
35:b0:c4:2a:59:c5:38:53:05:23:b9:e4:1c:52:48:84:b0:86:
83:e7:f5:a6:9a:95:97:20:46:e3:5a:63:98:a9:32:94:15:1c:
e6:d1:df:ca:29:9f:13:0b:a7:f1:ff:7d:cb:80:2f:68:36:0e:
ba:85:05:08:bd:e1:91:28:65:c1:9b:8e:38:98:58:38:89:23:
c5:84:ee:d1:9a:d2:e1:4d:ad:67:4c:3c:e2:87:e1:86:43:64:
fb:42:6f:69:5f:1a:0f:6a:77:4f:f8:a9:1a:6c:d8:75:2e:a8:
92:7b:68:e5:46:de:94:a2:88:9f:e9:75:4f:a5:5f:9f:8c:7f:
87:7f:4e:c5:16:70:c8:1e:73:1c:d8:12:38:00:07:05:1c:85:
5e:3e:e2:c9:f9:cf:c7:9c:18:50:3d:89:d7:49:b3:69:07:1c:
7b:34:fc:f8:41:73:aa:fc:96:67:e2:64:38:06:d2:70:7c:be:
23:4e:01:1f:ec:54:cd:29:0f:d6:46:aa:f6:91:93:bf:cc:d0:
4e:e0:64:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 07:14:48 2025 by rpki-client