Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B077/26C304EA906A11EEB3490627C4F9AE02/950812A4C5FE11EFA76A3266C4F9AE02.roa
File: 950812A4C5FE11EFA76A3266C4F9AE02.roa (raw, json)
Hash identifier: GtV0FeTeVluX/XanCeN+2QewCWE0y4Wr5uEweqnsLBI=
Subject key identifier: FE:14:14:AF:C0:52:A2:F3:BA:26:58:34:E1:88:58:19:DF:5C:8A:5C
Certificate issuer: /CN=A913B077/serialNumber=4BB80DD8E5B6ED2F5745585070333EF4A15D722B
Certificate serial: D2
Authority key identifier: 4B:B8:0D:D8:E5:B6:ED:2F:57:45:58:50:70:33:3E:F4:A1:5D:72:2B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S7gN2OW27S9XRVhQcDM-9KFdcis.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913B077/26C304EA906A11EEB3490627C4F9AE02/950812A4C5FE11EFA76A3266C4F9AE02.roa
Signing time: Sun 29 Dec 2024 16:04:28 +0000
ROA not before: Sun 29 Dec 2024 16:04:28 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 9664
IP address blocks: 210.79.186.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210 (0xd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913B077
Validity
Not Before: Dec 29 16:04:28 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=6771730c-8720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:71:c7:b4:63:12:d7:cc:8e:2b:bd:93:7c:b9:
1f:e0:0e:28:fb:4a:1b:e9:7d:f6:c2:7c:d9:ea:5a:
8b:05:8e:88:89:d7:1c:c7:87:cc:0d:06:60:4a:53:
f4:a6:76:49:f2:73:bd:4e:a2:85:6e:7c:a8:28:23:
b5:99:64:d5:ff:bf:bc:be:c7:d5:9c:30:16:f5:16:
bb:d9:c4:ea:74:55:c2:80:87:7c:a9:91:50:98:cc:
a0:91:a1:c4:5f:88:b7:5a:87:fd:64:3d:a8:91:d5:
b4:9b:2f:31:d8:d4:03:4f:8e:51:4d:16:1d:f8:9b:
e8:27:87:85:ca:9a:54:bc:b6:91:0e:41:0f:ab:94:
58:f6:fd:7a:dc:35:22:cb:0b:76:3b:cf:f3:24:1d:
e4:59:0f:00:8f:15:fa:f1:6d:36:ba:3b:7a:e0:dc:
d6:16:78:f1:0b:3e:da:03:16:2a:0f:a5:1a:07:41:
c8:41:da:f3:4e:5f:3b:53:78:e6:22:e9:a9:f1:d9:
73:af:53:23:8e:69:6a:21:c4:0a:0c:a5:a4:f7:51:
a1:3b:9b:4d:45:84:f0:1e:30:11:77:bc:3f:4f:92:
83:38:61:c7:c8:73:50:4a:29:7d:37:a6:38:1d:de:
1f:6c:36:e3:dd:21:0e:ac:3c:e8:01:1b:1f:db:31:
b1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:14:14:AF:C0:52:A2:F3:BA:26:58:34:E1:88:58:19:DF:5C:8A:5C
X509v3 Authority Key Identifier:
keyid:4B:B8:0D:D8:E5:B6:ED:2F:57:45:58:50:70:33:3E:F4:A1:5D:72:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913B077/26C304EA906A11EEB3490627C4F9AE02/S7gN2OW27S9XRVhQcDM-9KFdcis.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S7gN2OW27S9XRVhQcDM-9KFdcis.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B077/26C304EA906A11EEB3490627C4F9AE02/950812A4C5FE11EFA76A3266C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.79.186.0/23
Signature Algorithm: sha256WithRSAEncryption
49:75:34:6f:58:41:4d:01:60:47:3e:87:eb:6e:9f:7e:45:62:
30:7c:da:80:6a:ac:29:13:30:56:d7:9a:e8:6c:33:81:dd:05:
fb:b4:45:c7:a2:22:59:7d:24:78:99:9f:fb:d1:1f:cb:95:11:
79:ef:04:1c:9d:9f:e0:06:ec:6e:10:3b:5e:9a:64:7b:f7:34:
11:d8:a2:80:96:c3:2a:40:27:d2:ef:e3:48:b2:04:42:c1:8e:
55:05:82:11:db:84:11:5f:5f:f1:84:69:4a:99:5f:b6:14:ca:
40:72:32:1c:a9:b6:ac:29:b4:ea:cd:d8:70:bf:24:70:9a:ad:
e4:ac:bc:57:e1:d3:4d:54:e3:44:d2:59:3d:25:35:52:7a:59:
69:df:29:38:6b:a1:9f:c8:cb:2c:cd:5f:e7:77:1a:22:d4:17:
aa:d2:c4:e0:49:40:89:29:a5:b2:aa:fd:18:be:76:50:52:d8:
94:7f:9a:fc:ba:69:9c:ac:12:60:51:dc:24:b6:67:da:aa:d9:
76:d8:74:dc:60:60:08:a4:59:94:51:b1:a4:8c:93:44:7d:d5:
d2:94:81:13:8b:b6:00:2d:3b:26:2a:3d:a7:ad:dd:db:87:4a:
47:6e:7a:c9:4c:f5:22:25:a2:c7:a9:a0:c8:3a:04:11:0b:9c:
2e:fe:82:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:23 2025 by rpki-client