Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/1ACCB31CCA2011EEAAE0BC1DC4F9AE02.roa
File: 1ACCB31CCA2011EEAAE0BC1DC4F9AE02.roa (raw, json)
Hash identifier: zvj9UK8T+8CC31S1QfeLyCh52ggJamqXxF9Th/UxIhc=
Subject key identifier: 5C:9A:8D:FA:28:65:FE:39:97:18:EA:23:4D:7B:ED:1C:A1:38:98:11
Certificate issuer: /CN=A913900D/serialNumber=C603786D55A904124E7592EED2899EF578921100
Certificate serial: 7CE6
Authority key identifier: C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/1ACCB31CCA2011EEAAE0BC1DC4F9AE02.roa
Signing time: Mon 16 Sep 2024 17:25:00 +0000
ROA not before: Mon 16 Sep 2024 17:25:00 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 18117
IP address blocks: 118.127.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31974 (0x7ce6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913900D
Validity
Not Before: Sep 16 17:25:00 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66e869ec-6559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c2:08:b4:db:bb:8e:26:93:3d:e5:70:b1:fb:
66:66:bb:86:8b:a8:cb:96:49:e3:c8:1b:61:d6:16:
9f:e4:4e:79:63:ff:01:b0:40:62:dc:93:76:1c:f0:
2a:ee:0a:ff:17:73:4f:6b:a1:04:7a:ac:7f:dc:d5:
5a:b6:5d:25:0a:84:c3:5e:b7:b9:fb:f6:52:b4:68:
18:ba:47:a7:ae:c2:27:67:65:5e:e2:f5:15:18:ae:
0f:db:a6:18:c3:c1:41:9d:af:72:bd:a3:37:ab:e9:
3f:60:4a:ec:89:f9:3d:85:46:2c:5c:d9:1e:a6:91:
ce:28:f8:53:cb:69:7f:f5:27:d4:93:7b:c5:fa:11:
1e:1d:d2:8e:2d:08:ff:fc:0a:49:c2:e6:6c:5b:bc:
3e:d1:d8:09:fb:f8:90:67:97:09:72:6d:6d:a7:da:
75:94:cf:12:cb:38:5b:8b:fd:d2:5a:a2:56:71:d8:
bf:32:6b:d4:e1:c9:ee:88:07:19:82:44:3a:44:bf:
e7:09:b5:e5:a1:40:97:8f:64:3c:a1:27:4b:ed:3c:
10:36:cc:3c:b3:ba:96:ed:80:bf:e4:fd:e5:21:f0:
5d:13:a7:4c:fd:96:5b:a6:8d:7f:76:23:72:91:81:
6a:9c:a7:ab:2b:c3:ad:aa:c3:1b:64:44:3d:6d:4e:
ef:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:9A:8D:FA:28:65:FE:39:97:18:EA:23:4D:7B:ED:1C:A1:38:98:11
X509v3 Authority Key Identifier:
keyid:C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/1ACCB31CCA2011EEAAE0BC1DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
118.127.64.0/19
Signature Algorithm: sha256WithRSAEncryption
b7:fe:fd:cc:fe:30:10:56:0f:03:46:e8:f9:16:eb:d6:65:dc:
e2:76:dd:a3:b1:ee:ac:b3:2e:fe:fa:27:24:70:5c:e2:8d:01:
57:16:19:bd:ef:63:22:b6:b1:15:70:85:3c:2e:1c:ba:eb:dc:
cf:3e:13:4d:93:90:4b:1e:a9:0f:14:0c:bc:e5:46:c8:73:c2:
fa:00:f5:f9:32:3b:81:ed:72:b1:6f:db:de:ae:d6:b4:7c:6c:
f6:44:71:90:ac:bc:73:c1:23:c3:4f:f2:b8:94:a5:f4:8f:1d:
30:bb:eb:2c:e3:5b:25:42:97:4b:b6:61:5f:18:ad:d2:11:8e:
10:c3:ca:b6:51:07:0b:fc:b0:b4:de:c2:df:34:0b:6a:c0:68:
72:06:86:48:73:04:54:5f:81:38:dc:bf:83:c9:c6:11:b8:6f:
30:fc:4c:45:f2:8b:d1:71:66:09:11:29:2d:96:86:ac:29:53:
18:33:bc:09:b0:6d:f7:fc:04:2d:fa:4b:73:86:26:f6:0f:c7:
90:4b:73:0a:9f:f6:bd:4a:ae:51:a3:7f:35:d2:cc:ba:6a:6b:
26:fb:9b:7c:16:7c:36:f7:90:71:6f:82:7a:06:47:e6:cc:7e:
18:b0:03:47:6d:fb:26:fd:ff:71:19:77:0e:80:03:e9:82:59:
6f:18:24:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:36:59 2025 by rpki-client