Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B077/26C304EA906A11EEB3490627C4F9AE02/2B752026906B11EE8F088143C4F9AE02.roa
File: 2B752026906B11EE8F088143C4F9AE02.roa (raw, json)
Hash identifier: i5nUZW342vifNZFiCtQR4fCIygdGR2eDt7BNl5170G4=
Subject key identifier: 0D:EA:35:E9:D7:00:D6:E1:BC:F2:7F:98:9A:0A:A1:0E:83:CC:EC:F2
Certificate issuer: /CN=A913B077/serialNumber=4BB80DD8E5B6ED2F5745585070333EF4A15D722B
Certificate serial: C7
Authority key identifier: 4B:B8:0D:D8:E5:B6:ED:2F:57:45:58:50:70:33:3E:F4:A1:5D:72:2B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S7gN2OW27S9XRVhQcDM-9KFdcis.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913B077/26C304EA906A11EEB3490627C4F9AE02/2B752026906B11EE8F088143C4F9AE02.roa
Signing time: Wed 11 Dec 2024 04:19:03 +0000
ROA not before: Wed 11 Dec 2024 04:19:03 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 9786
IP address blocks: 210.79.186.0/23 maxlen: 24
2001:df3:3c40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199 (0xc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913B077
Validity
Not Before: Dec 11 04:19:03 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=675912b7-adfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ff:55:6e:84:05:37:d9:1e:09:9d:b6:1e:8c:
a8:9b:c7:9d:4d:fa:87:24:da:d0:19:ad:53:ae:89:
c6:be:b4:8c:c4:97:51:c5:16:3a:d7:80:8e:b8:ab:
c7:2e:e6:54:dd:38:b5:67:4a:85:13:ce:45:a9:57:
cf:91:0a:d2:50:5c:b2:01:02:93:7e:cb:8c:c8:ce:
65:d5:e8:3b:a2:a7:bb:78:4c:43:74:a9:a3:b3:9d:
ac:28:97:27:d2:8b:3b:77:3b:ed:a6:9d:84:6c:c4:
18:bd:81:2c:65:43:67:f7:3c:0f:2e:58:30:c3:2f:
1d:6a:ad:49:0a:c7:99:02:e1:85:cc:35:2d:b1:9b:
7c:de:ca:a9:74:e4:06:6f:62:3d:e4:e8:1f:b5:b3:
d4:10:24:55:be:7c:c1:88:b6:61:73:84:95:4a:52:
ae:f4:ad:59:5d:45:20:a2:62:91:bb:cd:6a:e5:fd:
4f:a8:82:d7:6d:3c:62:cc:82:55:24:e8:95:7b:51:
af:b1:ff:fd:80:c0:43:e8:64:74:36:ec:ef:dd:3b:
87:0c:73:6c:89:af:bb:b9:d7:60:56:66:77:bb:34:
5b:ef:e5:b9:04:57:03:68:60:8e:d8:a2:67:f7:72:
55:fe:fc:34:16:d3:8e:20:40:e9:09:e7:cf:b3:17:
52:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EA:35:E9:D7:00:D6:E1:BC:F2:7F:98:9A:0A:A1:0E:83:CC:EC:F2
X509v3 Authority Key Identifier:
keyid:4B:B8:0D:D8:E5:B6:ED:2F:57:45:58:50:70:33:3E:F4:A1:5D:72:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913B077/26C304EA906A11EEB3490627C4F9AE02/S7gN2OW27S9XRVhQcDM-9KFdcis.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S7gN2OW27S9XRVhQcDM-9KFdcis.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B077/26C304EA906A11EEB3490627C4F9AE02/2B752026906B11EE8F088143C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.79.186.0/23
IPv6:
2001:df3:3c40::/48
Signature Algorithm: sha256WithRSAEncryption
1e:fb:aa:e6:e8:bb:a5:73:a0:b5:b3:39:f7:d9:8f:46:fa:cd:
42:ba:74:f1:c5:09:13:0b:e9:76:c7:ad:9c:2d:4d:07:4d:8a:
5d:05:0a:88:25:c1:0d:76:d2:de:1d:12:1d:5e:19:81:c8:67:
2c:3e:b7:ed:a7:57:85:fd:4e:76:25:1f:fa:30:ec:f0:6d:91:
a8:47:af:c0:f5:d2:bc:95:8d:df:ef:17:45:30:bb:a6:b0:ed:
f0:bf:e0:10:f2:9a:1a:ec:5e:bc:3f:db:ba:16:5d:5d:71:71:
66:d4:90:b5:99:56:ca:80:9e:07:4a:fd:12:34:3d:72:ab:e7:
2f:f0:86:9a:3a:a4:97:a2:0e:45:23:6f:16:15:50:a2:24:9f:
cc:10:25:b1:49:a5:36:e7:65:17:6c:9e:e8:2b:5f:c1:0a:fa:
eb:be:1c:84:8c:e4:59:3c:65:f3:94:30:02:66:52:52:8a:75:
4f:66:8b:d9:81:b4:4f:eb:94:13:a7:48:46:fb:17:3b:f5:d7:
24:f9:e9:ae:76:e2:e4:9a:45:da:4f:0e:07:11:5c:91:e3:03:
66:25:0a:99:43:14:60:ed:cb:e3:06:7e:69:ba:11:6e:a9:cd:
82:a7:02:f6:dc:ad:08:5b:97:77:d8:b4:3e:55:db:ad:86:af:
20:33:c5:8c
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0IwNzcxMTAvBgNVBAUTKDRCQjgwREQ4RTVCNkVEMkY1NzQ1NTg1MDcwMzMzRUY0
QTE1RDcyMkIwHhcNMjQxMjExMDQxOTAzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzU5MTJiNy1hZGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAm/9VboQFN9keCZ22Hoyom8edTfqHJNrQGa1TronGvrSMxJdRxRY614COuKvH
LuZU3Ti1Z0qFE85FqVfPkQrSUFyyAQKTfsuMyM5l1eg7oqe7eExDdKmjs52sKJcn
0os7dzvtpp2EbMQYvYEsZUNn9zwPLlgwwy8daq1JCseZAuGFzDUtsZt83sqpdOQG
b2I95OgftbPUECRVvnzBiLZhc4SVSlKu9K1ZXUUgomKRu81q5f1PqILXbTxizIJV
JOiVe1Gvsf/9gMBD6GR0Nuzv3TuHDHNsia+7uddgVmZ3uzRb7+W5BFcDaGCO2KJn
93JV/vw0FtOOIEDpCefPsxdShQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFA3qNenX
ANbhvPJ/mJoKoQ6DzOzyMB8GA1UdIwQYMBaAFEu4Ddjltu0vV0VYUHAzPvShXXIr
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjA3Ny8yNkMzMDRFQTkw
NkExMUVFQjM0OTA2MjdDNEY5QUUwMi9TN2dOMk9XMjdTOVhSVmhRY0RNLTlLRmRj
aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1M3Z04yT1cyN1M5WFJWaFFjRE0tOUtGZGNpcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0IwNzcvMjZDMzA0RUE5MDZBMTFFRUIzNDkwNjI3QzRGOUFFMDIvMkI3NTIwMjY5
MDZCMTFFRThGMDg4MTQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBAHST7owDwQCAAIwCQMHACABDfM8QDANBgkqhkiG9w0BAQsF
AAOCAQEAHvuq5ui7pXOgtbM599mPRvrNQrp08cUJEwvpdsetnC1NB02KXQUKiCXB
DXbS3h0SHV4ZgchnLD637adXhf1OdiUf+jDs8G2RqEevwPXSvJWN3+8XRTC7prDt
8L/gEPKaGuxevD/buhZdXXFxZtSQtZlWyoCeB0r9EjQ9cqvnL/CGmjqkl6IORSNv
FhVQoiSfzBAlsUmlNudlF2ye6CtfwQr6674chIzkWTxl85QwAmZSUop1T2aL2YG0
T+uUE6dIRvsXO/XXJPnprnbi5JpF2k8OBxFckeMDZiUKmUMUYO3L4wZ+aboRbqnN
gqcC9tytCFuXd9i0PlXbrYavIDPFjA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:29:07 2025 by rpki-client