Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F059F2A463E011ECB11B2C79C4F9AE02.roa
File: F059F2A463E011ECB11B2C79C4F9AE02.roa (raw, json)
Hash identifier: JOy6pkqjwB4tWmPL4WqA4qFLkmPbKeQq7BkS4i+IgOY=
Subject key identifier: F7:34:0D:BE:BF:E9:51:16:BD:24:71:73:A8:F3:7C:FA:C9:8E:6A:A9
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4522
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F059F2A463E011ECB11B2C79C4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:31:32 +0000
ROA not before: Thu 05 Sep 2024 03:31:32 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 131122
IP address blocks: 117.122.2.0/24 maxlen: 24
2001:dc8:2002::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17698 (0x4522)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:31:32 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d92613-ea78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:85:5d:a6:ce:d6:ca:20:47:1c:2f:3e:84:20:
c8:0c:3d:14:ad:59:9b:d8:2b:53:e3:0e:23:6e:68:
74:bb:04:d4:09:bf:4a:9f:bd:eb:03:3c:b5:3f:41:
26:8c:43:1b:26:8c:e8:a1:28:08:f2:9e:c7:c4:02:
7a:44:95:b3:6d:61:66:bf:0e:48:ca:89:56:c2:d3:
6b:b3:bb:12:e4:f0:28:f8:d1:83:3b:6f:56:11:df:
55:d4:12:0f:3c:e3:00:3c:4f:a9:35:e0:51:c8:d4:
48:5f:be:b3:61:b6:2c:7f:e0:82:de:3d:25:72:0b:
c1:a6:96:a7:67:b2:0c:86:70:51:19:ec:eb:9c:e2:
d3:a0:5a:12:e7:ff:df:9b:3e:63:a2:6f:2d:c2:93:
0c:a9:0c:e0:22:fe:00:2a:8e:b0:62:ac:e2:b1:f6:
1a:96:e9:c5:0b:c7:49:7e:5e:1b:2a:93:9e:be:6a:
f9:15:f4:64:3c:cc:bf:62:2d:61:1c:54:74:5a:0b:
d9:39:f6:97:10:7f:67:ef:9f:d0:e1:95:e1:6e:3a:
0a:fa:df:f5:af:4a:44:52:aa:df:f1:53:16:e2:c7:
25:61:81:10:9d:68:c9:e5:c1:d6:7f:e5:50:16:b4:
63:f8:df:57:54:29:97:3f:21:c5:bc:9e:a3:c1:55:
09:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:34:0D:BE:BF:E9:51:16:BD:24:71:73:A8:F3:7C:FA:C9:8E:6A:A9
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F059F2A463E011ECB11B2C79C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
117.122.2.0/24
IPv6:
2001:dc8:2002::/48
Signature Algorithm: sha256WithRSAEncryption
20:14:49:d2:6d:4d:97:a9:42:5a:76:20:65:f5:43:1a:d3:c3:
ff:81:d2:09:72:5a:3c:cb:dd:a8:ea:3c:f3:48:50:f4:d7:a1:
43:81:aa:1a:18:9d:79:b4:02:3b:bb:3c:a7:1c:67:c1:3a:f5:
1c:f0:65:25:17:54:c7:d2:53:0f:db:88:6f:2f:34:82:9d:27:
20:7f:6e:39:fd:f4:87:27:b1:38:72:35:5f:4f:5b:f5:17:af:
1c:4b:57:96:fa:9e:b7:05:23:8c:1e:d0:e0:d9:4f:51:6e:b2:
c4:65:2a:92:d1:ce:fc:7e:57:5a:4d:7a:37:65:de:d3:5a:c4:
4b:50:df:fb:29:fc:be:d4:75:63:67:b0:55:0a:c1:5c:dd:30:
33:89:8d:9f:20:88:15:e2:ca:cb:1b:c8:1f:73:ee:ba:08:8d:
b7:47:32:a7:4b:27:d7:7d:67:07:76:4a:76:86:1c:e6:12:63:
70:c2:a2:8d:7e:0b:91:c0:1d:a7:68:26:5d:59:e1:c6:a8:b0:
20:13:e3:a1:82:0e:83:8e:14:43:0d:8a:d1:58:ef:fb:d1:d0:
3a:75:a9:b3:d5:89:89:f2:b8:76:63:28:e3:20:eb:b0:47:f0:
45:43:c5:75:cc:43:60:47:2f:6f:23:b2:a7:3b:3e:e4:e7:20:
d0:cf:30:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:48:38 2025 by rpki-client