Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912A517/1F40DCA2F50011E8A93A8E63C4F9AE02/B592B306C5BD11EC941D5E45C4F9AE02.roa
File: B592B306C5BD11EC941D5E45C4F9AE02.roa (raw, json)
Hash identifier: ef+Q4LxwohHI780LgW7EeUWhy55g/EXGGU3q9p/82dw=
Subject key identifier: A0:70:8B:3A:38:F9:0E:5F:0B:08:5C:FB:F7:1B:DE:6C:9D:F5:49:31
Certificate issuer: /CN=A912A517/serialNumber=D8CCA7EFC9F875AE9CE9209B7A5851FF1BA0B226
Certificate serial: 0E8D
Authority key identifier: D8:CC:A7:EF:C9:F8:75:AE:9C:E9:20:9B:7A:58:51:FF:1B:A0:B2:26
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Myn78n4da6c6SCbelhR_xugsiY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912A517/1F40DCA2F50011E8A93A8E63C4F9AE02/B592B306C5BD11EC941D5E45C4F9AE02.roa
Signing time: Wed 27 Apr 2022 00:05:13 +0000
ROA not before: Wed 27 Apr 2022 00:05:13 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 55850
IP address blocks: 139.180.64.0/18 maxlen: 18
149.19.16.0/20 maxlen: 20
208.56.208.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3725 (0xe8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912A517
Validity
Not Before: Apr 27 00:05:13 2022 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=626888b9-2118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:01:99:80:73:72:aa:81:be:61:50:11:67:37:
4d:9d:ec:25:c6:df:b9:5a:d6:69:25:53:56:b5:24:
2f:08:03:85:9d:5b:26:a3:b7:b1:b2:3b:d4:1c:4b:
d6:56:69:2f:60:0f:47:4a:52:8e:b5:b0:d2:3b:b5:
11:e3:0f:fb:9e:c1:3a:6b:22:8d:a9:21:50:40:a9:
1f:1f:be:43:19:d2:f3:20:5c:4e:cb:bd:e5:c3:54:
6e:33:37:57:d4:28:61:32:43:af:a3:cf:9d:3f:a8:
53:8a:3c:40:ac:ca:45:3f:af:55:48:ab:4c:74:8b:
51:39:c9:cf:6f:e6:22:37:1b:06:b3:24:07:5e:cd:
dd:89:1c:4b:ea:3c:98:2c:3c:b3:60:ad:c9:2b:63:
16:9f:55:c9:49:96:f6:32:1c:31:a4:96:7d:d9:b0:
11:7e:23:9a:f1:ec:95:53:a6:97:03:52:35:9c:48:
32:5b:bd:c8:5c:59:76:5e:b7:e5:37:39:80:24:b2:
7c:fd:6d:b0:b6:95:81:54:c7:65:ea:7e:35:92:be:
10:7d:3a:92:66:ac:1c:d7:75:2e:8e:2e:66:44:b4:
2c:ed:dc:f8:40:c6:b4:32:9b:41:ce:43:6b:a2:cc:
68:01:49:a4:b2:84:80:63:3f:f1:3f:fb:81:31:9a:
f0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:70:8B:3A:38:F9:0E:5F:0B:08:5C:FB:F7:1B:DE:6C:9D:F5:49:31
X509v3 Authority Key Identifier:
keyid:D8:CC:A7:EF:C9:F8:75:AE:9C:E9:20:9B:7A:58:51:FF:1B:A0:B2:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912A517/1F40DCA2F50011E8A93A8E63C4F9AE02/2Myn78n4da6c6SCbelhR_xugsiY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Myn78n4da6c6SCbelhR_xugsiY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A517/1F40DCA2F50011E8A93A8E63C4F9AE02/B592B306C5BD11EC941D5E45C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.180.64.0/18
149.19.16.0/20
208.56.208.0/20
Signature Algorithm: sha256WithRSAEncryption
a8:69:86:67:17:4e:a5:44:48:9e:b5:7d:fa:45:ea:4d:4a:25:
65:49:43:39:a4:9d:b5:f1:d2:90:ff:eb:68:ce:8a:5a:35:46:
1c:01:b0:a9:d1:a1:6f:c4:17:86:ba:d7:61:d1:40:82:3f:30:
4c:46:82:03:74:e8:71:50:5c:a1:15:77:84:60:88:42:32:62:
f0:80:b6:8f:34:c8:73:d0:78:9b:d3:66:cc:55:80:50:1e:2f:
87:c7:ae:29:4b:28:53:a4:54:9c:77:00:50:20:c4:df:18:f9:
f5:b8:71:b9:75:8e:b2:bb:33:9c:39:6f:60:1c:84:0b:39:ae:
fb:4d:37:ea:02:65:3c:9d:1a:7e:0d:cb:56:7c:9a:5d:e3:fa:
ab:8e:bf:97:7a:c0:86:c1:70:f9:4b:af:04:a2:01:54:aa:62:
14:3d:7c:89:ef:8d:51:b9:67:77:a3:d5:71:55:7b:d5:9c:a4:
d6:35:a8:db:44:ef:6b:32:c7:6d:54:a8:8c:eb:a2:8b:c8:59:
ae:fb:33:2d:5a:4c:f6:af:cf:8f:63:1a:f1:49:56:f3:3b:c3:
1a:3c:56:47:8d:3a:70:2e:7d:aa:e6:16:6b:87:50:36:56:6c:
e8:c7:9e:99:56:ba:83:fd:e8:6a:ef:57:56:48:9c:44:03:1c:
ef:87:94:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:04:44 2025 by rpki-client