Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/15F05240B73511EC8392922AC4F9AE02.roa
File: 15F05240B73511EC8392922AC4F9AE02.roa (raw, json)
Hash identifier: mduAtaAIDyj6+f2o+4mchO5ZOar+f2ZG4HUbj9VS0r4=
Subject key identifier: 09:B1:3F:C4:11:56:8A:61:FD:E2:A7:FB:38:83:FF:4C:5F:3B:DC:8F
Certificate issuer: /CN=A913B6D4/serialNumber=0D5028986A356B69B4AF7D2F6649D6BBDCBE8BED
Certificate serial: 05F1
Authority key identifier: 0D:50:28:98:6A:35:6B:69:B4:AF:7D:2F:66:49:D6:BB:DC:BE:8B:ED
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DVAomGo1a2m0r30vZknWu9y-i-0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/15F05240B73511EC8392922AC4F9AE02.roa
Signing time: Tue 24 Dec 2024 22:41:20 +0000
ROA not before: Tue 24 Dec 2024 22:41:20 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 48024
IP address blocks: 58.84.52.0/22 maxlen: 24
103.197.68.0/22 maxlen: 24
116.206.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1521 (0x5f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913B6D4
Validity
Not Before: Dec 24 22:41:20 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=676b3890-9095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:4e:b7:20:38:4c:c8:93:fd:63:1b:a5:bf:fa:
96:02:00:25:4f:2d:30:14:7c:35:d0:52:4a:4f:e3:
ce:6a:79:e1:5a:8e:40:4c:3d:8e:62:08:f6:6c:ff:
04:b5:3d:aa:ec:6c:7b:2e:1b:55:27:10:40:99:43:
17:14:f1:e1:38:92:fd:14:a5:17:d6:87:6d:a3:47:
8c:8b:c8:bf:6a:4b:57:40:5d:f4:6e:07:2a:b2:f5:
9a:68:fd:38:fc:18:3d:21:13:2a:f2:e3:93:0f:16:
eb:5a:2e:d5:de:55:f2:6d:6f:5b:b1:09:27:b8:0d:
a1:b1:12:8c:0b:ae:24:60:5e:19:e3:56:06:0a:09:
b5:43:77:be:d5:06:2a:9b:fd:6e:4b:3c:48:49:5a:
42:eb:bf:cf:bc:f5:bc:f4:41:24:83:b6:f0:26:f5:
ef:79:d6:9d:bc:72:f0:53:0d:d6:52:13:aa:50:d0:
89:6b:ff:e3:0c:a9:ab:0f:fd:14:9b:07:9c:6b:7d:
67:7e:e4:00:d6:7e:8b:75:0d:26:96:29:78:c4:d7:
61:f3:0f:1a:1b:a7:a7:32:ad:2c:39:c4:00:5b:85:
41:cc:11:7b:5c:26:66:3b:0c:20:00:63:2f:85:a5:
6a:7e:d5:16:57:3f:da:fb:ed:dc:f7:3d:aa:37:76:
a0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:B1:3F:C4:11:56:8A:61:FD:E2:A7:FB:38:83:FF:4C:5F:3B:DC:8F
X509v3 Authority Key Identifier:
keyid:0D:50:28:98:6A:35:6B:69:B4:AF:7D:2F:66:49:D6:BB:DC:BE:8B:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/DVAomGo1a2m0r30vZknWu9y-i-0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DVAomGo1a2m0r30vZknWu9y-i-0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/15F05240B73511EC8392922AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
58.84.52.0/22
103.197.68.0/22
116.206.100.0/22
Signature Algorithm: sha256WithRSAEncryption
78:e8:76:07:a1:25:b6:da:23:ff:4b:41:9a:ce:04:05:dc:72:
d7:88:e8:d2:d9:86:52:92:d6:46:08:47:d6:43:88:cb:62:08:
28:22:5c:44:3e:bd:29:82:41:d5:e4:d6:8f:60:4b:9d:6c:9f:
65:6d:34:c4:cf:93:61:7f:f3:c6:64:46:63:a0:dc:6e:e6:9d:
25:de:9e:67:19:ca:42:2f:c4:87:55:d9:b7:5d:d3:25:db:88:
16:d9:eb:e8:96:96:36:98:80:57:50:8c:2d:5d:99:da:8d:1e:
91:1c:40:ed:e8:ac:af:01:35:93:7a:1e:0d:48:2b:56:58:9f:
4f:9b:12:bc:72:f7:22:cc:6c:4c:82:db:38:93:c1:2b:33:e8:
4a:a2:36:6f:27:8b:1f:4d:08:5d:1c:34:86:a8:01:0d:a7:ed:
d7:d1:05:07:49:3b:ca:9e:32:00:bd:a1:ce:c2:27:91:22:2a:
5d:f6:e3:96:4a:ff:fd:38:2c:95:87:0b:05:f7:33:7b:5c:78:
a4:ff:0c:72:5a:43:9b:76:e7:31:08:ac:06:ce:df:6d:88:6f:
8e:6a:db:4c:4a:bd:17:06:1f:3c:6b:b9:66:cb:d7:1b:1a:d0:
31:6a:2b:64:01:48:dc:2c:26:67:51:6f:a6:6f:01:61:6f:ef:
e4:1a:3a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:30:21 2025 by rpki-client