Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/7C7BB76EB84C11EFA0502A5AC4F9AE02.roa
File: 7C7BB76EB84C11EFA0502A5AC4F9AE02.roa (raw, json)
Hash identifier: 8b9R3Ojw2TXgGnNCwkNNK0lGrhlktPwiPaGqawke974=
Subject key identifier: B6:B0:F5:DC:74:35:E1:84:C8:BF:9F:A6:61:1C:33:3A:92:68:0C:6D
Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Certificate serial: 3932
Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/7C7BB76EB84C11EFA0502A5AC4F9AE02.roa
Signing time: Thu 12 Dec 2024 05:46:52 +0000
ROA not before: Thu 12 Dec 2024 05:46:52 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 26937
IP address blocks: 110.170.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14642 (0x3932)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9137ABC
Validity
Not Before: Dec 12 05:46:52 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=675a78cb-adca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:98:2b:b1:78:33:65:40:d6:ab:a2:0e:d1:1a:
58:6e:80:07:4b:fb:21:06:af:54:2b:23:43:c5:ec:
0d:0a:46:6d:d5:0a:28:53:35:17:b9:19:5c:9c:f4:
01:05:aa:1f:8f:07:74:d5:23:28:14:2a:f0:e9:2b:
1d:ad:0c:3f:55:30:f4:3b:86:c4:12:71:c6:19:f8:
33:6b:f0:9c:f6:b5:10:7e:27:84:c5:6b:94:76:ce:
84:88:15:4f:75:c9:44:c8:32:d4:ce:6f:e0:c2:13:
70:bb:56:1a:9b:8b:af:bb:bd:09:57:ee:43:c0:5c:
e2:ec:7b:9f:60:e1:d6:cd:1e:23:9b:1a:9f:e3:4c:
d6:31:67:41:75:08:5a:80:4c:5d:51:ca:5d:3d:aa:
29:f1:fb:14:1e:a7:1b:26:4e:72:e9:58:4e:49:7e:
eb:65:cd:0b:ac:0f:cf:a1:55:5e:67:05:66:96:a7:
d1:07:77:5d:da:2b:5a:dc:d5:28:f8:c3:c7:0e:a8:
2f:16:f4:75:3f:a6:0e:16:0e:6b:bd:5f:68:49:60:
cb:77:e5:54:12:f3:30:dc:13:35:20:b5:82:8c:5a:
65:0d:37:27:d4:ab:dc:3e:78:a3:6e:7d:1c:76:98:
9a:c4:e7:54:3f:42:a9:05:71:b3:1a:3e:8f:85:2e:
39:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:B0:F5:DC:74:35:E1:84:C8:BF:9F:A6:61:1C:33:3A:92:68:0C:6D
X509v3 Authority Key Identifier:
keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/7C7BB76EB84C11EFA0502A5AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
110.170.124.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:7d:ca:9a:5f:f1:aa:d3:5f:66:78:8d:bd:74:29:ad:21:31:
ad:09:b5:07:0c:59:49:78:95:93:dc:fd:1c:3d:93:ec:75:86:
c5:d2:97:8d:b7:9c:ce:5a:e0:6f:e1:0a:d5:ef:66:e4:88:1d:
a0:c7:a7:8f:f9:61:7c:17:59:84:ec:f5:5a:ec:9e:fb:c5:b3:
11:50:78:be:1a:ca:90:b7:47:f9:8c:ee:b7:7a:ea:22:df:26:
de:88:b7:b3:43:3b:c6:fa:12:16:9b:c9:30:cc:b2:f0:e5:57:
e2:dc:d1:42:4a:ce:92:25:01:52:b5:1e:ea:5a:f8:dd:56:2b:
a0:5a:33:6c:7b:48:86:4b:e5:d4:eb:c9:7a:1c:ef:6e:4f:5d:
b7:6d:ec:3f:98:be:13:f8:ae:84:05:be:86:62:17:a9:d8:49:
f3:24:7d:be:6c:af:2d:63:ec:e6:1b:e9:d8:74:75:15:6b:97:
c8:a9:60:f5:d7:54:30:12:29:f3:01:b5:2e:50:94:84:b7:18:
8e:e6:a8:17:ce:73:81:5b:f7:59:3d:2b:5a:1d:b2:5a:45:ef:
14:bb:37:30:1c:d1:37:8c:ef:38:6b:a5:e4:b5:d5:e6:5a:bc:
aa:53:ec:38:24:5e:c4:85:31:cd:62:c8:4b:d4:ff:ee:ed:53:
9a:ac:bc:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:12:49 2025 by rpki-client