Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D778/5B8D866890E211EF97612A46C4F9AE02/7DA8E78890E711EF8262A053C4F9AE02.roa
File: 7DA8E78890E711EF8262A053C4F9AE02.roa (raw, json)
Hash identifier: SX03ccnLTHDWWqP2dXM+ZAcRiPmXaj3vkOlikMISxno=
Subject key identifier: E0:4D:15:9B:E9:A3:B4:FA:5A:24:75:94:4E:C3:98:A7:67:76:AE:4C
Certificate issuer: /CN=A917D778/serialNumber=DDC5DB381FF1ECCA5B95A28514792DCDBA49182B
Certificate serial: 3B
Authority key identifier: DD:C5:DB:38:1F:F1:EC:CA:5B:95:A2:85:14:79:2D:CD:BA:49:18:2B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3cXbOB_x7MpblaKFFHktzbpJGCs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917D778/5B8D866890E211EF97612A46C4F9AE02/7DA8E78890E711EF8262A053C4F9AE02.roa
Signing time: Wed 15 Jan 2025 06:09:16 +0000
ROA not before: Wed 15 Jan 2025 06:09:16 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 58627
IP address blocks: 210.79.130.0/23 maxlen: 24
2401:5460::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59 (0x3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917D778
Validity
Not Before: Jan 15 06:09:16 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=6787510c-78c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a9:f9:29:df:0c:e4:6a:16:40:23:11:8c:bb:
4a:01:6d:5e:83:87:3c:b3:2b:fc:da:55:83:0a:20:
9d:e3:75:8a:17:29:38:47:e6:cf:f9:0f:60:dd:19:
21:79:01:d6:b4:ea:40:bb:c1:fe:4c:1c:96:7d:59:
36:6e:5c:4d:6f:00:ce:22:53:35:7a:db:fe:b3:ae:
27:02:2d:f1:97:36:a3:db:b3:ed:58:5c:8c:75:93:
88:e2:de:79:79:90:6a:1f:51:5c:30:a7:2a:c1:31:
18:f6:b0:2b:df:32:0a:1e:7a:ef:5f:58:ae:fb:95:
06:92:16:6b:2c:18:8c:f7:12:5b:20:07:f8:a3:3a:
a4:7d:ae:e8:31:d9:c8:66:b0:df:95:8a:a6:ae:4c:
9a:5d:38:bf:a9:e2:a8:22:06:d8:bd:94:ca:7c:89:
e2:21:6d:2b:57:45:49:70:31:59:6b:93:24:68:9c:
c6:14:3d:42:77:d1:ea:46:fd:1c:4a:bb:1f:9d:02:
81:c8:c8:5f:61:de:d9:e7:a2:16:97:01:60:11:e9:
81:e6:bf:9a:ea:90:75:20:0b:5a:ed:61:c4:55:d8:
6c:3b:eb:81:e5:27:f9:40:4c:2c:ed:f0:76:6c:93:
85:a6:86:ed:ad:3a:97:02:dc:83:64:9b:8e:41:7d:
97:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:4D:15:9B:E9:A3:B4:FA:5A:24:75:94:4E:C3:98:A7:67:76:AE:4C
X509v3 Authority Key Identifier:
keyid:DD:C5:DB:38:1F:F1:EC:CA:5B:95:A2:85:14:79:2D:CD:BA:49:18:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917D778/5B8D866890E211EF97612A46C4F9AE02/3cXbOB_x7MpblaKFFHktzbpJGCs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3cXbOB_x7MpblaKFFHktzbpJGCs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D778/5B8D866890E211EF97612A46C4F9AE02/7DA8E78890E711EF8262A053C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.79.130.0/23
IPv6:
2401:5460::/32
Signature Algorithm: sha256WithRSAEncryption
55:9f:e8:82:4a:58:1b:ed:8f:52:84:83:e5:65:d7:93:a7:1c:
82:b7:02:79:0d:b3:04:88:e6:de:f3:fe:a9:33:e5:6a:86:da:
35:0e:4d:a0:c6:f5:2c:3c:67:2c:ce:d1:f0:18:27:13:2b:46:
35:40:0e:05:7f:fc:79:d3:a2:d7:3f:34:c7:68:9d:74:03:8d:
6f:03:24:8e:0b:2e:ff:7f:af:dd:e1:d7:c8:f0:70:b3:78:5e:
5b:48:52:25:a0:74:c1:d3:4e:29:f7:0f:dd:1b:f2:40:fd:cc:
d8:84:f6:7c:24:5d:92:87:ab:4a:5d:30:39:c7:f3:14:75:95:
64:a9:c3:23:f5:8c:e5:05:08:ca:54:b4:f7:6a:63:ca:42:77:
c2:72:2a:fe:d4:d6:73:2b:d8:16:dc:8b:ca:bf:e1:31:97:74:
e0:9f:c3:28:fb:c4:2a:4a:30:3b:13:6b:42:15:9d:c3:9f:d5:
d2:6c:8a:9b:41:aa:82:10:3a:03:65:d1:61:69:90:d4:67:92:
7e:9c:25:c0:69:02:d6:a5:6d:77:5e:a5:af:e4:9b:ac:64:c0:
a3:3e:7c:4e:6c:36:36:eb:1c:bf:7c:59:81:ed:2a:0b:3d:04:
55:1f:a8:33:d6:15:8e:f3:3a:25:ef:45:db:e9:04:f6:93:2e:
21:18:3b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:21:38 2025 by rpki-client