Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa
File: D35D0A48129B11EB97265731C4F9AE02.roa (raw, json)
Hash identifier: YPo4JrjUY8rokDYSsOS/zRUheikbdfmmqRlCH28JQPw=
Subject key identifier: 07:C5:A9:59:A2:7F:5B:0B:CB:05:CE:F5:E9:91:21:65:98:43:40:E4
Certificate issuer: /CN=A91F2573/serialNumber=E847DEAD5C0FED49E33A3B6224EFF3E4ECDA4196
Certificate serial: 074F
Authority key identifier: E8:47:DE:AD:5C:0F:ED:49:E3:3A:3B:62:24:EF:F3:E4:EC:DA:41:96
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa
Signing time: Sat 08 Feb 2025 21:39:54 +0000
ROA not before: Sat 08 Feb 2025 21:39:54 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 56035
IP address blocks: 110.173.228.0/24 maxlen: 24
110.173.229.0/24 maxlen: 24
110.173.230.0/24 maxlen: 24
110.173.231.0/24 maxlen: 24
120.88.0.0/24 maxlen: 24
120.88.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1871 (0x74f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F2573
Validity
Not Before: Feb 8 21:39:54 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67a7cf2a-268f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ed:5e:8a:21:76:69:9a:79:65:51:6e:82:fe:
e0:88:de:20:74:7a:b5:c6:07:db:18:a5:23:20:88:
65:8f:a6:f8:85:11:be:ef:52:a6:c1:b5:0c:54:3a:
b5:74:5a:45:f1:d4:1e:58:61:79:a4:e5:90:e6:41:
e7:2b:83:cb:e4:ab:5e:89:38:12:11:f7:43:c7:7e:
b5:36:95:ad:1e:6e:cb:7c:e0:13:77:8c:18:77:e0:
5d:84:42:95:01:31:fc:c6:b7:65:c7:28:8d:6e:c1:
43:b3:ca:d1:76:a3:90:77:22:7b:b1:76:10:2c:67:
88:72:a3:9c:37:6d:31:40:bc:c2:d9:14:81:24:f6:
3b:57:b1:1a:1d:64:ce:ea:0b:5e:7e:61:b8:38:37:
cd:ee:70:39:a1:77:9d:26:99:05:96:02:3c:d6:37:
f3:24:1f:ad:d0:11:8b:f5:a6:f5:90:33:29:64:1c:
cb:09:df:14:88:ee:19:51:8b:7d:c8:c0:d4:a9:89:
93:a9:78:7d:85:ec:be:c3:9e:30:f3:3e:d8:37:dd:
0b:94:73:37:7c:b3:0b:1e:6c:74:a4:15:73:fc:c7:
16:c2:9f:a5:dc:8c:9f:aa:58:a2:5d:21:4c:71:46:
83:5f:ed:76:5a:2e:d3:b7:da:d1:d4:06:a0:8f:f4:
38:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C5:A9:59:A2:7F:5B:0B:CB:05:CE:F5:E9:91:21:65:98:43:40:E4
X509v3 Authority Key Identifier:
keyid:E8:47:DE:AD:5C:0F:ED:49:E3:3A:3B:62:24:EF:F3:E4:EC:DA:41:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/6EferVwP7UnjOjtiJO_z5OzaQZY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
110.173.228.0/22
120.88.0.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:54:6e:37:13:ab:a3:09:4d:3d:87:cf:b0:80:df:33:12:07:
48:a9:d0:ad:ba:5b:51:80:16:83:15:08:94:28:4e:10:45:d7:
85:f5:52:61:71:ab:0a:98:92:16:0b:29:28:33:cb:77:a2:86:
19:98:85:75:5d:8b:e3:29:b3:ff:07:a7:5c:a7:cb:90:70:ef:
b0:b0:6e:39:34:ee:b8:70:55:35:70:62:d5:41:2c:a6:b8:6b:
24:ff:0a:f5:31:94:94:ed:16:81:9d:c0:61:9e:06:50:fb:15:
85:64:22:06:64:cf:6e:61:67:d9:bf:aa:85:86:ec:21:13:38:
68:7d:3a:01:00:f2:3c:1e:e4:e0:19:76:bf:99:59:8c:cb:07:
5a:7f:06:73:ad:4b:dd:ff:2a:4a:8e:4b:ec:aa:9c:79:8f:e7:
bf:d6:90:7e:3f:bd:3e:ba:68:69:09:a0:ad:13:b7:bb:f5:1b:
fb:5f:5d:d3:3d:b7:68:85:61:31:7f:00:c5:a4:f5:ef:23:24:
9f:7e:13:b0:2f:49:1d:31:b3:5c:b6:25:c8:08:4d:32:0c:d4:
36:9b:96:dd:1b:49:94:47:1b:8c:dd:80:cf:78:44:69:c6:f7:
57:84:30:1b:8a:a5:f4:76:ea:30:66:c5:e0:53:5f:7e:89:f2:
c7:38:b4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 05:55:15 2025 by rpki-client