Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/0D0118A89A4C11EEB7AE8812C4F9AE02.roa
File: 0D0118A89A4C11EEB7AE8812C4F9AE02.roa (raw, json)
Hash identifier: dKUIWl8erdDyFZKjf2ms5iCtc7nOGksh5tTJx3endFE=
Subject key identifier: D4:DD:05:01:A2:5B:69:DD:6A:69:0E:91:28:97:B0:58:C4:4D:7F:09
Certificate issuer: /CN=A919A9C8/serialNumber=7838FFF971DBA42BCDD8D8F37455F0B2849B79D7
Certificate serial: D0
Authority key identifier: 78:38:FF:F9:71:DB:A4:2B:CD:D8:D8:F3:74:55:F0:B2:84:9B:79:D7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDj_-XHbpCvN2NjzdFXwsoSbedc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/0D0118A89A4C11EEB7AE8812C4F9AE02.roa
Signing time: Mon 13 Jan 2025 04:08:22 +0000
ROA not before: Mon 13 Jan 2025 04:08:22 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 152152
IP address blocks: 210.79.170.0/24 maxlen: 24
210.79.171.0/24 maxlen: 24
2001:df3:38c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 208 (0xd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919A9C8
Validity
Not Before: Jan 13 04:08:22 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=678491b6-9507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2b:1f:a8:33:f9:7b:7b:96:d1:45:c5:f4:f9:
84:93:84:2f:c9:fd:b8:d1:00:c7:52:61:eb:d7:f2:
2d:3d:f8:41:16:95:f0:33:c7:fa:62:8b:21:4b:47:
29:55:6a:9e:75:30:b2:5b:07:04:eb:56:54:09:9e:
33:18:66:eb:79:b4:60:f0:e0:b2:f7:00:4b:a1:d0:
06:db:57:1a:c5:66:96:61:e3:20:ef:ad:63:b8:5d:
21:e0:60:0d:bc:ac:5b:00:3e:c1:f6:2c:f7:bb:ba:
68:87:aa:25:94:19:f3:23:d7:b0:7b:d0:5e:74:6a:
93:84:ab:e4:c9:e0:d9:c7:3f:52:45:6f:94:60:8c:
fa:a7:e1:38:f2:6f:0c:1d:8e:ef:40:e1:7a:a9:f4:
fc:f5:ba:22:0f:9c:f4:d0:d2:27:e5:0b:7e:b0:58:
ea:da:eb:73:bc:9f:fe:bb:95:71:f9:cc:5e:8f:9d:
ac:fe:0e:ec:3d:b9:87:09:14:0e:63:10:ce:a8:56:
f3:ab:28:93:69:19:74:5f:e5:36:2d:dd:c0:b8:bf:
59:aa:71:9d:ee:9b:83:21:92:2f:82:90:3e:9f:46:
5e:94:fe:fa:61:9d:13:84:35:6b:19:94:ab:a8:24:
5f:69:6a:fc:37:65:c7:c8:cb:2d:7f:77:f3:c6:61:
43:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:DD:05:01:A2:5B:69:DD:6A:69:0E:91:28:97:B0:58:C4:4D:7F:09
X509v3 Authority Key Identifier:
keyid:78:38:FF:F9:71:DB:A4:2B:CD:D8:D8:F3:74:55:F0:B2:84:9B:79:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/eDj_-XHbpCvN2NjzdFXwsoSbedc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDj_-XHbpCvN2NjzdFXwsoSbedc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/0D0118A89A4C11EEB7AE8812C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.79.170.0/23
IPv6:
2001:df3:38c0::/48
Signature Algorithm: sha256WithRSAEncryption
82:63:ef:ce:0f:d9:f0:bc:ce:f0:2b:7e:db:cb:0c:8a:0c:c8:
1b:72:da:8c:f3:d1:0f:02:52:85:18:43:9d:56:35:61:55:77:
95:22:a9:e8:0b:83:69:a6:fe:16:01:c7:c3:d1:41:3d:74:b4:
f0:99:fc:a6:0f:5e:45:d2:dd:c2:f0:f3:a3:ed:a9:58:77:cd:
b8:4b:ee:36:d1:58:0a:da:62:3f:77:06:0a:2d:27:a0:33:f2:
cf:87:12:cd:7e:4b:de:16:c8:75:f2:26:ed:79:a0:04:9d:40:
4a:73:d9:db:40:25:a9:3f:3e:72:f9:28:7f:9a:c8:f8:1d:8d:
6b:6a:34:9a:6a:d5:91:46:44:30:5b:c5:a0:d6:a3:d5:68:a2:
5e:4a:39:e9:8b:3a:b5:ba:ea:90:7f:14:f0:76:37:45:f0:03:
d5:a0:ac:3a:94:25:34:ea:a6:84:73:c9:a9:11:29:ab:4a:48:
01:af:33:fe:30:4b:37:30:06:81:ab:73:51:58:52:73:44:89:
fd:61:19:9a:61:83:4e:da:14:14:60:33:72:cb:e2:e7:83:28:
93:7f:75:fc:23:6c:78:e4:89:ba:d9:96:ad:0d:82:86:19:bc:
93:fd:d0:1d:f8:44:c4:25:e4:9d:cd:7a:0c:d9:63:28:ca:93:
67:c9:0c:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:29:01 2025 by rpki-client