Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912A517/1F40DCA2F50011E8A93A8E63C4F9AE02/F77D5572F50111E8B14E7E66C4F9AE02.roa
File: F77D5572F50111E8B14E7E66C4F9AE02.roa (raw, json)
Hash identifier: uOLTEDEoqIG493Vs/zFOijgdGdWC6fHHGOkV0x6yxtw=
Subject key identifier: F1:33:A7:9A:4A:D3:4F:76:58:BE:98:83:0B:40:5E:42:4C:55:2E:A3
Certificate issuer: /CN=A912A517/serialNumber=D8CCA7EFC9F875AE9CE9209B7A5851FF1BA0B226
Certificate serial: 0D8E
Authority key identifier: D8:CC:A7:EF:C9:F8:75:AE:9C:E9:20:9B:7A:58:51:FF:1B:A0:B2:26
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Myn78n4da6c6SCbelhR_xugsiY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912A517/1F40DCA2F50011E8A93A8E63C4F9AE02/F77D5572F50111E8B14E7E66C4F9AE02.roa
Signing time: Tue 21 Dec 2021 06:35:50 +0000
ROA not before: Tue 21 Dec 2021 06:35:50 +0000
ROA not after: Thu 02 Mar 2023 00:00:00 +0000
asID: 55850
IP address blocks: 139.180.64.0/18 maxlen: 18
149.19.16.0/20 maxlen: 20
208.56.208.0/20 maxlen: 20
209.87.188.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3470 (0xd8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912A517
Validity
Not Before: Dec 21 06:35:50 2021 GMT
Not After : Mar 2 00:00:00 2023 GMT
Subject: CN=61c175c5-72f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:38:25:63:65:48:22:26:df:17:90:81:f4:c7:
2c:7a:24:f8:3c:a5:7c:9d:33:f0:51:ef:3c:f2:27:
54:15:e7:75:b0:d1:d1:18:0d:a3:08:1a:e9:f6:96:
94:d0:e1:53:16:e8:2a:53:33:f3:0c:06:69:c0:e9:
10:61:b9:27:57:7b:9e:8b:45:69:fa:55:9d:4f:07:
81:08:fb:96:93:40:56:43:be:ea:cb:96:18:de:bc:
a2:3a:f0:0a:21:a1:0b:4e:95:4e:64:8f:ac:c9:44:
9c:26:88:48:f9:01:62:2d:c2:4f:ec:ce:c0:6b:96:
3b:be:c2:85:de:5d:5c:cd:55:5b:e8:ba:df:58:83:
bb:71:ca:92:63:42:b8:6a:e2:07:19:1e:48:b1:77:
31:cb:b0:20:e1:24:6a:3e:1d:4c:93:ea:08:ad:95:
4c:8a:ad:3f:9c:d8:82:de:ea:5c:89:bd:bc:74:0f:
b2:d2:6d:3b:e2:0f:d6:d7:b8:c9:2a:b8:0e:68:37:
20:fb:62:4f:42:0f:ef:05:5b:46:2d:54:8a:ac:6c:
57:af:2e:45:ee:ee:a9:fe:f3:19:d0:44:e1:a3:38:
92:bf:d6:ba:6d:cf:d0:67:45:d6:84:30:2c:dd:b2:
11:d7:6c:fc:93:8d:fb:d9:88:4a:fd:07:bf:03:b0:
73:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:33:A7:9A:4A:D3:4F:76:58:BE:98:83:0B:40:5E:42:4C:55:2E:A3
X509v3 Authority Key Identifier:
keyid:D8:CC:A7:EF:C9:F8:75:AE:9C:E9:20:9B:7A:58:51:FF:1B:A0:B2:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912A517/1F40DCA2F50011E8A93A8E63C4F9AE02/2Myn78n4da6c6SCbelhR_xugsiY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Myn78n4da6c6SCbelhR_xugsiY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A517/1F40DCA2F50011E8A93A8E63C4F9AE02/F77D5572F50111E8B14E7E66C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.180.64.0/18
149.19.16.0/20
208.56.208.0/20
209.87.188.0/22
Signature Algorithm: sha256WithRSAEncryption
32:1c:83:57:d2:98:46:44:c8:d5:ef:5a:3b:55:87:a9:d0:71:
d3:1a:fd:57:dd:4d:7a:85:97:af:eb:48:dd:7b:88:91:ea:26:
7f:cc:45:09:3f:20:b6:bd:dd:4f:c5:c8:1e:d7:6f:b8:01:3f:
12:aa:20:af:5d:c5:ab:f8:32:d5:9f:0d:72:dd:ca:07:96:63:
fc:57:67:24:9c:9b:3b:52:79:c5:f8:fe:e4:70:4b:1b:c0:b4:
e1:2b:96:15:2d:25:28:c7:5d:58:3c:39:b9:30:96:98:0c:50:
0d:54:80:0b:a5:5f:fe:b6:66:ad:2f:7c:90:7c:8f:88:a2:4d:
e5:00:b2:17:e0:fc:25:49:fd:e6:3b:15:bd:a7:5a:27:fb:b5:
82:05:c2:0c:4e:78:80:e6:82:cd:2f:53:fe:ae:b9:8c:bb:2b:
66:77:2e:92:5a:4e:bf:6a:3d:84:06:0b:c9:57:cf:0b:e0:42:
df:23:aa:44:b8:a3:d4:20:2d:77:14:de:0b:26:15:09:84:90:
b1:79:59:8b:91:b9:57:50:ac:b4:20:5a:3b:1b:29:e5:ea:31:
97:04:7d:3f:d5:99:87:87:a0:c0:12:bc:b7:2f:1e:fd:be:81:
44:35:4c:56:d1:31:f0:80:ea:31:22:8f:f1:68:f7:86:b4:ea:
fa:54:67:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:08:41 2025 by rpki-client