Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/F69648C2ECF211EABBFDDD24C4F9AE02.roa
File: F69648C2ECF211EABBFDDD24C4F9AE02.roa (raw, json)
Hash identifier: 90ekW1pDIqXWRjwU9tVaYqCrzXTRiG8h8pa7XJ3ojS8=
Subject key identifier: AD:5D:0F:A6:1E:8A:97:17:0A:14:E0:9F:CF:05:24:2E:C5:FE:26:5A
Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950
Certificate serial: 07A5
Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/F69648C2ECF211EABBFDDD24C4F9AE02.roa
Signing time: Thu 16 Jan 2025 20:49:33 +0000
ROA not before: Thu 16 Jan 2025 20:49:33 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 4818
IP address blocks: 210.48.192.0/20 maxlen: 21
2402:1980::/32 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1957 (0x7a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9147241
Validity
Not Before: Jan 16 20:49:33 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=678970dd-fd5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:31:80:fc:fa:25:fd:f1:c8:59:0f:17:88:19:
26:eb:2e:7f:cc:c3:a3:88:2b:ae:75:72:54:59:53:
b9:5e:ff:af:e2:f9:80:5d:aa:92:7c:21:55:cf:12:
19:6f:a7:b0:5f:a4:99:45:78:b7:ce:20:6b:9a:e5:
7e:af:eb:5f:9f:bf:ec:70:bf:43:a9:33:56:2d:3c:
ad:ee:7d:a8:03:6c:c7:1f:83:8d:7e:72:e0:72:1a:
ee:68:da:e5:c6:bb:64:f5:a5:ad:c2:0e:ac:99:67:
b6:61:eb:64:b7:d7:0f:09:95:ee:08:47:5e:6c:10:
6d:07:27:ae:da:c9:7f:72:36:80:d9:1d:ab:d6:2e:
82:4f:e7:c5:86:09:c5:66:79:ed:39:5a:87:ad:6e:
1b:7c:5b:e5:99:04:19:fc:41:ce:05:7c:8f:32:d6:
88:5e:c3:52:14:8e:60:23:58:43:e8:80:16:33:f8:
d0:bc:93:c6:e5:6b:aa:35:df:d9:ec:0e:2c:4e:89:
08:f5:9c:28:5c:8d:24:c4:b0:4c:6b:70:84:d0:b0:
af:18:01:eb:88:90:35:3f:39:a9:dd:05:98:e0:19:
9a:49:b1:46:b6:73:d8:16:d9:f7:5b:d4:f2:fd:ed:
2e:50:3f:3c:39:75:55:9d:4c:92:55:98:4a:47:ca:
aa:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:5D:0F:A6:1E:8A:97:17:0A:14:E0:9F:CF:05:24:2E:C5:FE:26:5A
X509v3 Authority Key Identifier:
keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/F69648C2ECF211EABBFDDD24C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.48.192.0/20
IPv6:
2402:1980::/32
Signature Algorithm: sha256WithRSAEncryption
8e:92:92:1a:08:43:e5:d3:75:24:f8:8b:f9:7e:45:21:89:74:
76:31:64:d2:9a:6b:01:59:cc:20:e3:50:e4:62:85:07:c5:18:
cc:88:94:75:d1:ac:70:2c:33:6e:95:a9:6f:76:8a:04:0b:57:
bc:0c:46:da:af:f0:d4:bf:18:8b:26:6c:07:f4:18:f0:93:72:
7d:9d:62:da:37:a1:aa:c8:ce:85:50:66:ac:29:4a:cb:71:b7:
ae:b8:3d:ea:4f:b4:21:f1:3b:58:b3:26:2a:a8:cd:83:1c:f5:
53:39:ea:0c:25:f2:02:40:ce:01:17:33:ea:a6:f7:d8:92:34:
4b:d9:ea:60:0f:89:12:e1:cd:14:ae:c3:65:a8:11:50:f1:5a:
46:96:23:5d:d3:61:20:f4:d9:b8:b4:2c:00:e1:22:eb:d5:26:
ce:eb:81:d2:8c:2c:ec:8b:c9:c9:9a:67:c9:fb:aa:23:de:2a:
99:77:58:5e:b8:4a:5f:df:79:e7:f9:ce:ae:9a:dc:dc:a3:c7:
09:b0:cf:61:39:a1:cf:c5:e5:69:f1:38:76:65:72:04:83:18:
75:86:9f:97:91:33:76:1d:6e:86:b8:e2:38:e4:a6:2a:ad:aa:
29:ae:23:60:fc:f6:14:8a:0c:63:26:f9:0a:0d:48:16:68:e4:
70:5a:90:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:03:07 2025 by rpki-client