Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/816B5C3685AE11EB82E3AB17C4F9AE02.roa
File: 816B5C3685AE11EB82E3AB17C4F9AE02.roa (raw, json)
Hash identifier: bHeA3qoZ4lZQSCkiwi56f/mMODdImMmOLthfvH5JELs=
Subject key identifier: 24:F1:E1:11:79:3C:CF:88:6A:EF:94:38:0F:7F:11:E1:A5:F7:61:E2
Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E
Certificate serial: 363E
Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/816B5C3685AE11EB82E3AB17C4F9AE02.roa
Signing time: Mon 02 Dec 2024 14:30:34 +0000
ROA not before: Mon 02 Dec 2024 14:30:34 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 141692
IP address blocks: 122.155.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13886 (0x363e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9125475
Validity
Not Before: Dec 2 14:30:34 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=674dc48a-b6a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d3:70:d4:55:11:2f:61:2c:73:dd:a9:d8:74:
40:cb:88:b6:34:36:ca:05:17:02:7b:f9:8a:94:2d:
51:c0:e7:ba:e9:c0:c3:6f:22:8c:42:3c:e5:34:66:
ce:63:99:42:41:52:9f:be:2b:66:c3:59:97:e1:06:
6d:d7:bf:ad:4c:46:da:38:02:9e:d8:59:72:7d:d8:
d0:5d:3b:d0:f4:c9:a3:c0:a8:cb:15:3f:45:87:72:
22:a7:27:99:b4:5a:f1:2e:88:a8:7f:83:59:0d:22:
89:c9:fb:f3:81:11:4e:fe:a8:0e:6c:97:f5:75:e6:
18:4e:50:f2:2f:99:d1:59:2f:90:20:b8:9e:9b:63:
15:e0:e5:d8:a8:5b:4b:cc:53:bc:8a:d7:12:82:d0:
5b:41:70:f9:86:b5:55:7f:5b:86:21:d2:97:54:d9:
7f:87:23:58:90:6e:a3:dd:97:e7:18:c5:0b:ef:fe:
03:d7:c8:6c:60:fa:e3:63:58:e1:44:a8:d3:f5:d6:
7b:ec:25:06:41:91:b7:e4:ee:97:2f:0e:6f:a1:fe:
70:b3:b4:13:8b:39:8c:51:54:ac:42:c6:86:9b:ba:
08:25:ff:d3:72:cc:3b:87:ec:cd:6e:cc:af:99:78:
cb:cf:1e:b9:c0:4e:ca:5c:7f:0d:ab:bf:88:19:58:
cd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F1:E1:11:79:3C:CF:88:6A:EF:94:38:0F:7F:11:E1:A5:F7:61:E2
X509v3 Authority Key Identifier:
keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/816B5C3685AE11EB82E3AB17C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
122.155.64.0/24
Signature Algorithm: sha256WithRSAEncryption
78:6d:ad:f8:9d:dc:d9:90:76:59:b7:61:88:9a:84:3b:49:2c:
cb:a3:96:95:08:ca:1a:45:5b:7c:1f:45:48:2d:7b:1b:b6:3b:
44:6a:d4:32:6c:01:41:57:35:0b:a4:c5:33:68:ca:e5:5f:ad:
20:9d:0a:35:02:52:61:a8:a4:53:4b:a3:b9:2a:91:68:83:81:
b5:06:3d:d3:c2:d5:00:f1:6d:a8:22:bb:37:e3:30:88:6d:19:
a3:61:93:9f:53:d9:70:b3:5a:95:cc:60:a8:77:d3:4b:71:df:
11:ba:11:fa:de:27:a8:87:4c:df:3b:a2:22:97:a1:df:32:22:
97:07:52:36:e3:40:80:4e:5f:f9:be:ad:e7:b8:90:9f:6c:b6:
a5:3f:97:cc:94:6a:06:97:e7:3f:a8:94:50:e3:63:5e:19:d0:
cd:a4:1b:a2:53:22:a0:5d:3a:e9:ab:bd:7a:71:d3:07:d3:a4:
2e:94:2f:23:77:0d:9a:84:4e:b0:d2:4a:c0:53:b9:82:66:a2:
a1:2c:f8:e7:ac:70:77:a3:f4:c2:57:e5:12:29:1c:c7:84:97:
9d:f9:fb:40:d4:70:f1:6d:33:ac:a3:c9:fd:b5:3c:34:48:68:
0c:f4:39:a9:8c:ce:f9:f5:cf:26:57:bd:b4:11:a3:2d:02:87:
6e:4f:8a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:28:44 2025 by rpki-client