Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/54376ADC1E0111E9A590C837C4F9AE02.roa
File: 54376ADC1E0111E9A590C837C4F9AE02.roa (raw, json)
Hash identifier: gAKksqQSB5zSekAYrTmNbpq6RitfbcEcSQM2gurSt9o=
Subject key identifier: 38:A3:E7:CD:E6:9E:E6:C6:0F:EA:C3:3D:A4:5C:D2:3D:FD:11:0C:A3
Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Certificate serial: 38CA
Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/54376ADC1E0111E9A590C837C4F9AE02.roa
Signing time: Tue 16 Jul 2024 14:31:33 +0000
ROA not before: Tue 16 Jul 2024 14:31:33 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 55844
IP address blocks: 119.46.243.0/24 maxlen: 24
2001:fb0:1078::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14538 (0x38ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9137ABC
Validity
Not Before: Jul 16 14:31:33 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66968445-4d2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0b:10:2f:97:3d:0d:94:74:bf:7f:a6:80:96:
39:b0:ae:cd:22:6a:09:82:5a:ae:d4:29:d1:fe:f4:
6a:5b:be:f8:d3:e8:cb:e8:b1:1c:12:44:d0:8a:5c:
5b:3f:60:e6:19:ca:92:f9:3d:7a:23:b2:86:e1:15:
c6:c4:9d:b6:e2:61:06:4f:8c:b6:56:6b:06:3e:bf:
e3:8e:c2:95:ad:0e:f4:a0:a3:1c:54:e5:ce:8d:c6:
45:9a:e8:a6:43:3a:69:fa:dc:6d:6b:46:c7:66:b4:
b9:82:b0:d1:07:44:9f:ac:79:37:32:e3:69:30:d0:
93:db:8b:e7:22:e5:61:27:1f:34:9a:09:47:68:8c:
1e:cf:b6:fa:29:43:9b:c7:a5:ac:e2:b1:e9:6f:63:
a6:92:4d:8f:bc:f8:8b:38:6b:b6:3d:43:54:f2:e7:
1a:4f:68:fd:37:e7:28:0b:e9:ee:9d:2f:0c:99:93:
5c:7b:3b:32:ba:0a:82:09:aa:d1:57:73:1f:1a:6e:
2d:ac:f1:16:48:12:d7:4d:9d:33:7f:1e:a6:78:39:
5d:fa:73:d6:49:5e:25:59:6b:91:d4:1e:1f:92:12:
3e:01:f4:fd:b4:9b:60:73:3a:81:04:9e:ae:f9:82:
c5:f7:23:4d:f8:00:f1:99:fa:ce:f7:05:97:3c:65:
45:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A3:E7:CD:E6:9E:E6:C6:0F:EA:C3:3D:A4:5C:D2:3D:FD:11:0C:A3
X509v3 Authority Key Identifier:
keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/54376ADC1E0111E9A590C837C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
119.46.243.0/24
IPv6:
2001:fb0:1078::/48
Signature Algorithm: sha256WithRSAEncryption
29:cb:aa:a2:ab:c1:0f:e1:08:18:52:b1:d3:3e:e1:bc:1a:6a:
1f:10:9a:e2:06:db:25:2b:4a:1c:c6:5a:91:7a:0c:ca:d8:aa:
40:55:5d:a3:18:c5:69:db:af:45:0b:61:4d:53:c8:bf:e9:6a:
29:c8:af:66:02:12:39:48:57:04:7a:fd:30:54:d0:4c:f9:6e:
8c:b6:2a:0a:62:9e:6b:2e:a3:ad:a3:ba:7b:b6:71:73:94:19:
bf:ed:9a:ec:2c:62:1f:8b:75:b7:7b:77:6e:49:82:41:d2:e1:
16:78:8a:f9:bd:27:f6:69:0a:ec:30:e1:6c:83:db:73:7c:a3:
07:f3:58:bc:e9:8b:8f:2d:fa:9a:97:d4:08:16:eb:67:f4:7c:
ec:5b:31:1a:b7:ac:a8:f8:d8:75:9a:ad:3a:dd:aa:66:b6:dc:
84:d6:12:3c:5c:50:d5:51:dc:a0:77:4b:69:9d:f9:f0:79:1b:
ea:f5:90:fe:90:f9:2e:b4:c6:23:20:33:d2:36:6b:5d:9e:25:
ac:99:03:91:b3:87:d4:7d:89:bf:d8:cf:91:8d:d0:0c:84:8d:
2f:c2:51:fe:8d:1e:e2:e0:ee:21:ab:32:8f:bc:85:dc:02:13:
63:1d:fd:33:f5:f0:bc:3c:83:fb:62:26:6d:7e:54:d5:44:4c:
89:24:25:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:17:04 2025 by rpki-client