Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/87662556555511EF88D9F680C4F9AE02.roa
File: 87662556555511EF88D9F680C4F9AE02.roa (raw, json)
Hash identifier: k8ciaOJiovKzhjLhsMW8Olbo59H12ftecdkV4UavoKg=
Subject key identifier: C2:A2:11:89:7A:CC:36:57:19:8A:0F:74:5B:60:78:04:A1:75:10:96
Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D
Certificate serial: EB
Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/87662556555511EF88D9F680C4F9AE02.roa
Signing time: Thu 27 Feb 2025 07:00:28 +0000
ROA not before: Thu 27 Feb 2025 07:00:28 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 9444
IP address blocks: 120.88.192.0/18 maxlen: 18
120.88.192.0/19 maxlen: 19
120.88.224.0/20 maxlen: 20
120.88.224.0/24 maxlen: 24
120.88.225.0/24 maxlen: 24
120.88.226.0/24 maxlen: 24
120.88.227.0/24 maxlen: 24
120.88.230.0/24 maxlen: 24
120.88.232.0/24 maxlen: 24
120.88.236.0/24 maxlen: 24
120.88.237.0/24 maxlen: 24
120.88.240.0/24 maxlen: 24
120.88.241.0/24 maxlen: 24
120.88.242.0/24 maxlen: 24
120.88.243.0/24 maxlen: 24
120.88.245.0/24 maxlen: 24
120.88.246.0/24 maxlen: 24
120.88.252.0/24 maxlen: 24
120.88.253.0/24 maxlen: 24
120.88.254.0/24 maxlen: 24
202.4.192.0/19 maxlen: 19
202.4.196.0/24 maxlen: 24
202.4.208.0/24 maxlen: 24
223.130.32.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 235 (0xeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9195F7B
Validity
Not Before: Feb 27 07:00:28 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67c00d8b-2405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:dc:a7:01:6b:be:d0:c2:d9:be:2f:53:62:7e:
dd:d7:9e:47:55:5b:c1:0d:b6:89:9f:38:91:18:f4:
ad:e1:c9:f7:d8:24:ec:d2:a6:4e:e1:19:e5:e7:b4:
bb:32:d6:43:d4:40:64:bf:98:6a:4a:f7:0f:12:d6:
00:52:6e:b6:23:67:52:bc:65:2c:de:c4:e2:58:b8:
a0:84:86:4d:db:1b:e5:07:02:99:80:80:c5:09:d3:
21:71:af:ca:bb:5e:ee:33:1c:5e:57:38:83:46:c1:
8b:4a:bf:c9:19:5f:f7:6c:cf:92:04:9b:9b:87:6b:
73:f8:82:cc:3c:db:be:33:7f:30:e2:c0:37:d7:82:
b1:8a:0d:20:a6:34:79:f8:d1:b1:22:ec:de:3c:8d:
86:eb:1c:20:c6:e5:25:91:e5:89:e4:44:cd:ea:95:
bf:a6:f8:f2:73:0a:c7:50:6a:d1:6a:26:0f:84:9d:
78:bc:22:f7:4d:1f:0e:23:ba:db:87:63:bf:a7:f9:
8e:2d:52:df:10:39:b1:b0:a3:2f:76:8b:88:10:86:
2e:55:80:00:85:84:d2:4c:ed:a3:be:ef:1c:5f:a2:
5b:72:22:95:51:ec:6c:da:22:19:b5:8a:fd:68:69:
05:f7:13:64:61:56:e5:f9:70:cb:76:dd:30:cb:ae:
a8:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:A2:11:89:7A:CC:36:57:19:8A:0F:74:5B:60:78:04:A1:75:10:96
X509v3 Authority Key Identifier:
keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/87662556555511EF88D9F680C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
120.88.192.0/18
202.4.192.0/19
223.130.32.0/19
Signature Algorithm: sha256WithRSAEncryption
a6:46:d5:b1:3d:90:46:20:66:6c:94:7f:bc:da:f9:5b:b8:29:
43:71:e9:d1:3c:03:51:b8:db:8d:54:12:e4:2e:b4:41:bd:b1:
a3:30:af:97:f6:1d:48:ae:50:9e:fb:67:11:36:9d:17:2d:a8:
09:5f:5f:a7:e5:d9:ba:a6:16:3f:97:ff:98:e9:de:b4:a9:05:
63:1f:ec:15:f9:f7:b2:b2:08:bf:bc:2c:3a:af:6d:e0:3b:24:
15:03:c9:db:c8:77:6d:39:99:c5:92:84:a9:7a:83:db:70:62:
cd:99:42:2b:e5:6c:d5:e7:ed:72:da:24:6c:c9:09:c6:4e:16:
fa:64:75:29:80:aa:40:f5:dd:ac:b8:d9:a5:33:62:a1:94:9d:
fe:ff:0b:d2:b6:63:04:bc:b4:4e:ea:76:c5:68:3e:fc:5b:e6:
22:d2:9a:22:2c:6b:67:fd:d6:d7:eb:00:5f:be:95:46:1b:42:
ab:98:78:b2:97:e2:f2:a2:4f:14:93:d5:4e:be:ed:dd:fa:0d:
46:43:f0:e6:c9:7a:bb:20:e3:b4:7f:b8:af:99:77:77:93:95:
a9:cc:bd:21:71:1d:eb:d8:6e:33:f9:fc:68:1a:c3:e4:84:6d:
2e:8f:93:fa:da:df:fc:f8:6e:f1:49:5e:22:fd:e2:4f:2a:77:
15:3e:fc:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:58:29 2025 by rpki-client