Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/63E8739003C111EEB2272068C4F9AE02.roa
File: 63E8739003C111EEB2272068C4F9AE02.roa (raw, json)
Hash identifier: AjzVSaaH9fWXVN9n877r+FmZlcwm85Oz5kawF/sl3R0=
Subject key identifier: 6A:3A:88:26:4C:68:88:E5:C7:5C:74:4D:E1:99:45:0F:4C:34:E7:DA
Certificate issuer: /CN=A91A2A1F/serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA
Certificate serial: 040B
Authority key identifier: 69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/63E8739003C111EEB2272068C4F9AE02.roa
Signing time: Sun 05 Jan 2025 00:14:51 +0000
ROA not before: Sun 05 Jan 2025 00:14:51 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 135060
IP address blocks: 123.253.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1035 (0x40b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A2A1F
Validity
Not Before: Jan 5 00:14:51 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=6779cefb-837c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:56:d8:2c:e1:14:f2:a0:78:28:f1:ba:d6:89:
98:06:42:6d:13:3b:7e:59:9f:58:56:5f:55:45:a5:
4c:d9:77:a5:64:16:22:ca:04:0d:2b:22:d7:82:29:
84:35:a8:0a:0f:44:d4:34:e3:7a:08:ed:15:7a:4d:
95:93:4c:3a:bd:64:f6:f2:0f:69:c9:66:1f:53:38:
92:99:5b:69:9f:b5:46:70:ab:c2:8b:58:0e:89:91:
5b:95:8e:cf:db:b6:d1:64:2b:6f:7f:70:de:1a:f1:
bd:1b:95:ac:c4:e3:d7:90:ad:3c:af:be:78:69:64:
b4:f6:02:82:0b:dc:5c:f6:f7:6e:9c:67:4e:0e:e6:
de:71:67:8f:4b:5d:f0:8d:2d:18:e9:1e:2e:0b:07:
68:3b:a8:eb:6c:fb:fa:5d:7b:bd:b0:49:ff:29:b0:
5d:b2:56:84:c9:5b:12:c5:06:89:93:c4:81:62:f5:
83:92:44:44:3d:45:ff:30:ee:45:54:9f:40:a4:78:
01:2d:8e:7c:4c:3e:eb:dc:ae:51:95:5c:3e:e3:3f:
76:98:98:4b:f7:d1:43:2b:f5:ed:d4:10:f5:2a:4e:
01:15:34:37:14:a5:23:99:1c:19:0c:56:f5:0f:98:
37:68:42:2e:49:50:25:96:db:1c:0f:d8:88:7b:53:
d8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:3A:88:26:4C:68:88:E5:C7:5C:74:4D:E1:99:45:0F:4C:34:E7:DA
X509v3 Authority Key Identifier:
keyid:69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/63E8739003C111EEB2272068C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
123.253.192.0/24
Signature Algorithm: sha256WithRSAEncryption
50:f9:33:bc:3d:58:49:10:48:a3:f8:c3:cd:ca:5e:8b:b6:6d:
4f:6a:0b:6b:e1:d0:b4:89:60:22:be:18:94:12:db:db:e5:63:
e8:9c:67:e3:df:c7:73:a6:ac:f9:31:ed:2f:66:d5:d7:05:7b:
61:1c:62:ff:84:f7:af:c7:39:a1:27:21:83:48:fc:e3:5c:1c:
d8:44:2c:52:6f:8c:76:da:de:2c:75:99:9c:34:a1:59:79:79:
eb:3e:7b:58:e9:ff:c5:07:cb:03:a2:b6:e1:ea:e3:7c:60:fd:
1d:29:11:3a:76:cd:90:bd:05:bc:45:4b:6b:43:92:64:87:e5:
b9:fb:e9:bd:38:18:05:99:07:36:89:ae:26:06:06:cf:5d:f1:
e4:24:35:cd:4e:db:4d:5f:a7:3e:38:70:9a:c8:be:e0:6b:ea:
b3:05:ca:53:4c:aa:53:f1:9c:5b:d7:1a:52:d2:97:75:d0:54:
b9:ac:ad:21:fd:d4:3b:69:c0:14:68:9d:26:60:5a:d2:c2:5e:
d0:83:98:d5:84:4e:40:cb:1f:55:40:d3:c8:e6:3d:cf:9e:c5:
0b:33:fb:b1:bb:0f:82:04:90:d3:7d:db:9a:c2:57:fc:84:9e:
4f:60:7b:2a:2f:79:8d:c7:72:81:4e:d8:72:08:7d:89:8b:ad:
8a:16:66:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:23:01 2025 by rpki-client