Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/17FCD734563A11EE89046132C4F9AE02.roa
File: 17FCD734563A11EE89046132C4F9AE02.roa (raw, json)
Hash identifier: nBLvVbNoZBHwgAUG7CrVbHtaE204SRQMJIPFLqxYQG4=
Subject key identifier: 90:6F:0C:2B:FF:E1:CB:38:F9:25:8C:4D:EB:F9:B5:6F:F9:3D:5D:BE
Certificate issuer: /CN=A913B6D4/serialNumber=0D5028986A356B69B4AF7D2F6649D6BBDCBE8BED
Certificate serial: 05F0
Authority key identifier: 0D:50:28:98:6A:35:6B:69:B4:AF:7D:2F:66:49:D6:BB:DC:BE:8B:ED
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DVAomGo1a2m0r30vZknWu9y-i-0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/17FCD734563A11EE89046132C4F9AE02.roa
Signing time: Tue 24 Dec 2024 22:41:19 +0000
ROA not before: Tue 24 Dec 2024 22:41:19 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 18464
IP address blocks: 58.84.52.0/22 maxlen: 24
103.197.68.0/22 maxlen: 24
116.206.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1520 (0x5f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913B6D4
Validity
Not Before: Dec 24 22:41:19 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=676b388f-5331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4a:be:dc:f4:9e:dc:4c:26:05:13:58:94:a0:
0d:1a:f0:0b:2f:20:fa:4d:13:9b:52:72:f9:e0:35:
6f:78:bc:d5:5c:65:16:76:21:9c:2e:0d:83:08:2f:
f0:dc:96:a0:d5:04:a3:b5:23:72:f8:6e:34:0a:9d:
9f:10:04:b9:96:fd:c9:b1:c5:19:cd:0c:b0:f2:2e:
8c:b6:4d:bd:05:8b:2f:95:42:46:1b:50:5f:87:6b:
1b:80:4e:dc:55:8d:ce:0f:97:6e:e5:19:4b:3c:e4:
76:fd:16:7a:81:06:2a:b8:90:4e:81:25:8c:ac:70:
ea:62:a1:4d:0e:ff:39:f5:85:ae:6a:0d:20:0a:00:
c6:20:0c:a9:4e:36:76:27:fc:f2:d3:15:7e:de:7c:
b7:f0:29:11:5b:c6:14:65:79:e6:63:0d:48:d6:e7:
fb:b7:69:b9:d9:e6:7d:db:2e:57:64:bb:17:bd:6f:
52:62:22:0e:ab:44:98:0c:8e:40:bf:60:da:0a:92:
1f:a5:c0:41:0b:64:df:7c:55:18:61:86:2e:12:a8:
51:45:0d:cd:cc:82:0a:7f:aa:f8:39:c0:90:26:6e:
71:6a:93:57:21:97:a3:a8:29:cc:c7:a4:8a:2e:ad:
3b:f2:1a:be:59:98:9e:dc:87:ad:54:98:d2:45:35:
3b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:6F:0C:2B:FF:E1:CB:38:F9:25:8C:4D:EB:F9:B5:6F:F9:3D:5D:BE
X509v3 Authority Key Identifier:
keyid:0D:50:28:98:6A:35:6B:69:B4:AF:7D:2F:66:49:D6:BB:DC:BE:8B:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/DVAomGo1a2m0r30vZknWu9y-i-0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DVAomGo1a2m0r30vZknWu9y-i-0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/17FCD734563A11EE89046132C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
58.84.52.0/22
103.197.68.0/22
116.206.100.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:c2:c2:74:e8:13:d5:32:3c:d2:c3:4d:4f:c2:0d:ca:77:39:
f2:2b:6f:40:cc:b8:f3:2f:a8:fc:e5:cc:f6:7e:6d:97:e9:de:
11:49:3f:af:d3:03:e0:cb:6c:33:21:db:2f:f4:92:b3:a4:bd:
8a:32:dd:6a:f6:40:0b:34:6c:5a:0f:a2:5c:79:7a:56:f3:22:
b0:76:38:4d:25:39:ee:d2:70:14:10:cd:ba:71:5f:11:a8:74:
42:3a:94:c7:f1:38:53:64:ed:80:08:09:cc:fc:21:2f:1e:8b:
23:31:3e:29:50:f2:a5:78:1a:b8:2e:f9:67:fb:24:fe:75:57:
53:47:8e:4b:14:47:47:7c:98:19:fc:b8:95:b5:4e:b0:a3:85:
02:10:84:15:ab:de:5f:19:68:b4:06:55:8c:b3:a2:4e:bf:97:
8f:a5:c5:df:69:c0:74:1b:e4:a5:92:72:2e:3e:12:06:b3:75:
27:44:91:d4:fc:a4:94:c4:71:52:1e:ff:79:93:c9:72:5a:63:
66:b1:08:c3:bb:7a:0b:c7:8c:4d:46:d9:bb:2a:72:e3:30:78:
2d:15:f1:d7:a7:55:6d:2e:66:80:6b:d6:c2:c1:af:ae:7f:44:
f4:13:fb:67:0d:f7:ca:91:c9:0b:71:c6:80:76:ef:8c:79:14:
55:75:6c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:09:24 2025 by rpki-client