Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B077/26C304EA906A11EEB3490627C4F9AE02/BBCD5340CDCF11EEBFF83067C4F9AE02.roa
File: BBCD5340CDCF11EEBFF83067C4F9AE02.roa (raw, json)
Hash identifier: BIdBn2Wy2QHfm96X+rnHB6L7+6TiJMWHxItID0xcUhI=
Subject key identifier: AF:5D:D2:16:39:B9:B5:1D:B2:D3:6D:E4:11:63:8E:F8:B3:1F:5B:A5
Certificate issuer: /CN=A913B077/serialNumber=4BB80DD8E5B6ED2F5745585070333EF4A15D722B
Certificate serial: C6
Authority key identifier: 4B:B8:0D:D8:E5:B6:ED:2F:57:45:58:50:70:33:3E:F4:A1:5D:72:2B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S7gN2OW27S9XRVhQcDM-9KFdcis.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913B077/26C304EA906A11EEB3490627C4F9AE02/BBCD5340CDCF11EEBFF83067C4F9AE02.roa
Signing time: Wed 11 Dec 2024 04:19:02 +0000
ROA not before: Wed 11 Dec 2024 04:19:02 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 63801
IP address blocks: 210.79.186.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198 (0xc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913B077
Validity
Not Before: Dec 11 04:19:02 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=675912b6-e280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e3:96:cb:28:af:da:0f:21:ec:34:61:12:4f:
87:1c:ab:21:00:52:8f:2a:03:82:3f:7d:aa:6a:c8:
d2:78:6a:ea:52:a7:c3:97:a9:ee:ae:62:53:59:b3:
c3:04:69:48:c5:6b:81:54:fd:22:3e:27:1f:9f:e5:
7a:f2:23:7b:63:b5:ab:a5:9e:2b:ae:25:50:5f:3b:
f6:89:45:fb:d1:26:68:82:2a:4b:e3:9f:00:9c:20:
98:56:a7:b8:4c:c0:53:83:f0:a7:0c:d2:64:81:3d:
ec:b2:ef:e1:d3:f0:8e:43:f4:9d:d0:63:14:66:68:
1b:06:a0:87:12:cc:fb:eb:76:3e:9e:93:a4:e6:6c:
c4:f8:9f:f6:f5:2a:b3:aa:75:0e:2e:bb:ef:c1:43:
2a:a2:a1:25:ef:38:4c:3f:3f:26:7a:bb:87:51:60:
bb:c1:1c:8d:bb:7e:9c:00:2b:89:39:d5:60:d4:03:
2e:b7:b3:ff:02:7c:ce:35:1b:f4:3c:f7:1a:84:f0:
e9:1c:95:3d:93:2b:5b:e3:d1:23:2d:7e:6e:79:a3:
39:36:1a:6f:90:57:ab:6c:88:f0:71:05:ba:df:05:
22:99:c5:dd:56:8f:a2:7c:bb:76:a7:08:20:d7:da:
ee:b8:49:0f:0e:db:78:e2:0d:62:34:4d:c7:c2:9a:
fe:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:5D:D2:16:39:B9:B5:1D:B2:D3:6D:E4:11:63:8E:F8:B3:1F:5B:A5
X509v3 Authority Key Identifier:
keyid:4B:B8:0D:D8:E5:B6:ED:2F:57:45:58:50:70:33:3E:F4:A1:5D:72:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913B077/26C304EA906A11EEB3490627C4F9AE02/S7gN2OW27S9XRVhQcDM-9KFdcis.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S7gN2OW27S9XRVhQcDM-9KFdcis.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B077/26C304EA906A11EEB3490627C4F9AE02/BBCD5340CDCF11EEBFF83067C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.79.186.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:30:17:21:18:2f:ad:31:19:bc:08:03:45:f1:5e:e6:7b:72:
bb:25:4c:ae:df:d4:bd:48:5e:9f:dc:97:7d:03:92:52:45:a9:
86:71:57:c4:b2:bf:27:ff:20:1f:f3:1c:6e:8f:f0:9b:12:02:
79:33:38:5e:8c:8e:b0:b2:21:14:97:da:bc:a9:6b:cb:01:af:
ae:c1:f6:83:fc:b9:04:b5:8b:c8:e9:b8:94:76:7b:e2:3a:66:
10:a9:6d:33:db:f7:52:c7:45:cd:ae:c3:67:f5:07:05:78:91:
32:93:ec:4f:a1:ec:ac:6f:64:22:b0:43:e6:34:94:bd:86:42:
32:27:56:cb:34:a6:cd:f7:4f:91:33:bc:19:e1:c4:5b:03:62:
7b:06:2c:7d:1c:47:ce:63:5f:3d:dc:57:ef:ac:66:72:a1:1f:
77:7f:df:b6:c4:83:c6:27:7d:65:1e:b8:30:d0:9a:e7:33:ff:
8a:3c:ad:13:19:8a:1c:6f:e8:cc:6a:6e:90:c7:d4:5e:bf:f6:
25:0d:a6:30:35:fb:03:91:3b:c3:f7:a6:0c:4f:81:e3:83:95:
d7:ad:ce:e4:30:88:4c:21:94:0a:57:d6:0c:4e:24:2d:3b:b0:
dd:d4:e7:51:57:24:fb:44:1b:a3:71:43:4b:d0:b6:b7:cb:08:
91:96:20:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:25:32 2025 by rpki-client