Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/21047C70672211EF998AEF2BC4F9AE02.roa
File: 21047C70672211EF998AEF2BC4F9AE02.roa (raw, json)
Hash identifier: 3NZc5h6ed9BUlmgYjohUHdHLn8ZtKRYjymamcmwqc6s=
Subject key identifier: 1D:39:5A:7F:4F:58:2F:18:6E:54:26:30:9D:60:82:17:A8:C7:19:6A
Certificate issuer: /CN=A91D63EA/serialNumber=5E7DD05A9C1BE04444ACE03FE4A92026804D4B2A
Certificate serial: E3
Authority key identifier: 5E:7D:D0:5A:9C:1B:E0:44:44:AC:E0:3F:E4:A9:20:26:80:4D:4B:2A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xn3QWpwb4ERErOA_5KkgJoBNSyo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/21047C70672211EF998AEF2BC4F9AE02.roa
Signing time: Mon 13 Jan 2025 04:08:15 +0000
ROA not before: Mon 13 Jan 2025 04:08:15 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 149283
IP address blocks: 113.192.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227 (0xe3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D63EA
Validity
Not Before: Jan 13 04:08:15 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=678491ae-ebbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0d:da:d1:f2:f3:2f:79:88:ba:94:3e:2c:86:
bc:df:08:08:97:f4:57:62:2c:04:9b:81:64:46:4e:
90:ac:29:36:28:93:39:d6:06:4c:f1:73:c7:a8:3f:
4a:a2:56:91:7e:8e:61:dc:1a:16:a3:e0:c0:0b:71:
d6:e2:38:28:0c:91:b5:9f:b4:e4:57:cc:4d:44:53:
ed:4e:b3:b9:93:58:f5:d3:8a:e2:02:45:71:23:f6:
49:04:85:c5:7d:67:6a:95:56:ed:9e:38:3a:25:cc:
ae:3b:36:35:d1:c2:1e:c2:77:73:48:99:3f:92:f6:
fd:b2:fd:d7:26:03:a4:52:4a:66:fb:ee:a3:23:e0:
cd:94:4c:07:25:a6:da:40:80:fe:8d:8e:05:6b:47:
45:f4:dd:99:72:18:17:39:10:b0:72:87:e3:75:5f:
bc:ab:c7:24:14:90:3c:b6:0a:f9:76:d5:37:7f:b9:
e1:85:7e:c6:69:fe:a8:10:56:33:75:0a:9b:17:7b:
78:82:7c:d8:db:3a:44:16:31:ed:f5:ae:d8:4e:7f:
37:ea:f9:26:bb:6b:72:3a:be:10:91:8b:bf:c0:95:
91:70:02:18:79:03:dd:24:06:8a:54:c1:c8:8b:68:
90:ae:db:f9:3c:d4:a3:a8:4c:c4:3d:07:6e:74:48:
da:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:39:5A:7F:4F:58:2F:18:6E:54:26:30:9D:60:82:17:A8:C7:19:6A
X509v3 Authority Key Identifier:
keyid:5E:7D:D0:5A:9C:1B:E0:44:44:AC:E0:3F:E4:A9:20:26:80:4D:4B:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/Xn3QWpwb4ERErOA_5KkgJoBNSyo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xn3QWpwb4ERErOA_5KkgJoBNSyo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/21047C70672211EF998AEF2BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.192.46.0/24
Signature Algorithm: sha256WithRSAEncryption
be:d6:b1:c6:b6:5e:b2:4b:30:62:53:6d:40:79:9c:ef:33:ae:
e1:6f:6d:02:22:04:f4:ab:42:5d:26:77:b1:9c:6b:43:fc:96:
c8:7a:67:2a:fa:1b:b4:81:63:69:7c:a1:56:92:eb:74:1c:1d:
32:5c:bc:55:4b:5e:67:3a:2a:f1:24:a4:c4:f6:17:c3:b4:c1:
af:2e:58:08:2c:e6:5b:e5:a2:c2:73:dd:2f:31:d6:a1:10:30:
2e:82:de:6e:1c:bd:9b:3f:14:cd:4c:2f:dc:6c:24:74:d4:61:
a5:72:63:7e:b3:56:f3:3d:81:30:43:ce:d8:e3:c1:56:c6:a5:
f4:50:0b:72:ea:6c:e7:37:e7:82:25:3f:15:4e:36:ff:a8:19:
4b:3c:5d:f6:5c:d4:78:c9:29:2e:5d:28:8f:06:1d:7e:d6:67:
26:1d:4f:31:fe:34:d9:c1:98:1c:ad:8e:bd:d8:94:3f:7d:76:
d6:ef:ef:78:2f:0b:6c:2b:fd:ae:b7:7b:d7:66:80:f8:67:02:
85:8c:b8:13:5f:e9:40:42:19:cb:a5:c5:08:cb:19:46:a9:b4:
a8:b2:1c:89:12:d8:d6:da:f4:c8:01:c7:6e:f8:a4:1d:29:07:
10:88:c2:4b:08:d1:b7:aa:a0:c7:75:07:7e:f7:67:56:08:90:
41:2a:a1:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:19:22 2025 by rpki-client