Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/C6EB4BB695C411EFB4437E46C4F9AE02.roa
File: C6EB4BB695C411EFB4437E46C4F9AE02.roa (raw, json)
Hash identifier: DKjdHPHX9uK/7sXdnl0CnoAUxvUfxg2iDv7piZLbE+g=
Subject key identifier: 69:00:79:C4:EA:14:A2:A0:96:9F:BA:C0:38:8B:1A:6A:25:E6:F9:B0
Certificate issuer: /CN=A913900D/serialNumber=C603786D55A904124E7592EED2899EF578921100
Certificate serial: 7D02
Authority key identifier: C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/C6EB4BB695C411EFB4437E46C4F9AE02.roa
Signing time: Tue 29 Oct 2024 07:09:46 +0000
ROA not before: Tue 29 Oct 2024 07:09:46 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 55845
IP address blocks: 202.9.114.120/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32002 (0x7d02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913900D
Validity
Not Before: Oct 29 07:09:46 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=67208a39-95c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:83:5e:42:28:59:06:64:7c:ab:fe:64:18:db:
ef:1d:9c:bb:53:49:8f:ca:2b:e5:f7:8e:3f:ba:40:
6c:e9:95:22:07:55:d6:8d:6d:77:ff:71:09:0a:06:
ad:4f:7d:9b:9d:f9:48:03:d8:24:ef:71:d6:64:3b:
73:d0:7c:b6:f4:bb:65:f5:9e:13:23:16:3b:0b:2f:
49:d5:d2:f9:4b:68:52:45:de:ab:64:09:58:9a:65:
5a:84:a1:11:1f:ab:0a:3a:92:ea:1a:5e:5f:45:fe:
c2:6d:24:a4:86:d4:ee:29:89:9c:51:06:f6:97:4b:
bc:5f:78:b4:6b:bd:96:ac:7c:dd:9c:1b:41:34:5d:
27:6d:2b:4f:b5:37:b0:32:30:22:7e:97:26:dc:1e:
44:f2:bc:41:fa:6e:97:24:b7:5c:c1:6b:6a:c1:ff:
03:3c:16:c4:ac:48:ed:0d:c2:47:c2:34:67:81:9c:
37:ad:a3:1e:c1:10:5c:c1:a6:b6:1d:50:62:a1:2a:
b8:93:7c:d4:24:5e:2d:ef:42:0b:fd:87:8e:89:7e:
d3:15:29:c7:27:59:e3:19:87:19:43:6f:f3:03:8d:
7c:2f:3f:82:07:40:84:dd:d0:25:af:f1:22:c7:4e:
e2:10:56:7b:2e:10:8c:c1:3d:74:4a:2b:eb:2f:e3:
cb:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:00:79:C4:EA:14:A2:A0:96:9F:BA:C0:38:8B:1A:6A:25:E6:F9:B0
X509v3 Authority Key Identifier:
keyid:C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/C6EB4BB695C411EFB4437E46C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.9.114.120/29
Signature Algorithm: sha256WithRSAEncryption
8e:67:63:9e:c4:4b:fa:a7:98:fd:d0:ca:ea:46:e1:b1:da:0a:
f3:14:1c:b1:c2:34:ff:aa:3f:c4:0e:e2:52:84:db:34:7c:2f:
ff:ca:51:d8:7b:ca:04:be:fc:7a:d6:c1:68:e5:07:15:2b:c0:
c7:e6:3d:04:e5:67:53:e2:ed:d3:f5:80:6b:bb:5f:62:aa:27:
6c:66:45:98:11:49:7c:84:3e:74:a0:4b:85:3f:e8:bb:9d:f1:
b5:48:94:13:52:04:8a:a6:db:5f:86:ce:2e:67:4c:63:4a:76:
67:ba:91:3f:3d:d3:de:51:07:42:e4:72:ff:29:7a:9e:b6:f0:
57:50:9c:68:b4:cf:8b:60:a7:32:4e:57:0d:32:7d:57:42:f8:
4f:aa:4d:74:4d:0d:3c:8d:3a:0c:7f:71:32:8a:7a:53:a2:a9:
c5:2b:0a:e2:55:dc:c3:7b:6c:74:43:c0:29:cf:d6:03:0f:97:
23:c3:d9:04:61:1c:af:b2:23:ab:e1:bf:f2:f6:7e:01:4c:83:
0a:c0:d7:c4:5c:65:98:e9:01:2b:8e:92:54:3e:3c:57:2f:1c:
a9:c3:5a:bf:d1:54:67:31:01:ee:49:b0:dd:35:03:a4:ac:8a:
63:c4:1b:de:74:79:80:e4:91:43:50:4f:5d:bf:77:00:95:c0:
e4:b1:ce:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:12:37 2025 by rpki-client