Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/48BB49E8763A11EFA077F11CC4F9AE02.roa
File: 48BB49E8763A11EFA077F11CC4F9AE02.roa (raw, json)
Hash identifier: kbKWOZNJMc5q48ZGAPJwk/No5hClmF4tRx65umSQzAA=
Subject key identifier: 46:ED:05:2B:95:BC:82:E2:C7:68:20:AC:12:D9:18:7E:3B:7A:18:BC
Certificate issuer: /CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F
Certificate serial: 1E6A
Authority key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/48BB49E8763A11EFA077F11CC4F9AE02.roa
Signing time: Sat 02 Nov 2024 16:23:36 +0000
ROA not before: Sat 02 Nov 2024 16:23:36 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 209242
IP address blocks: 114.129.43.0/24 maxlen: 24
2400:c760:a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7786 (0x1e6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913F0E3
Validity
Not Before: Nov 2 16:23:36 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=67265208-bedf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:62:2d:ef:25:de:64:14:23:dd:86:76:5c:cf:
a8:03:94:bd:c6:5a:7a:98:9c:fe:d2:80:a1:8e:51:
28:41:95:2d:bc:b0:60:20:b4:69:5f:2d:44:d0:19:
05:49:32:78:8d:90:70:2d:92:7a:78:c2:3a:27:1d:
00:49:56:f9:3a:da:c1:a2:55:6c:f8:8e:d0:2b:a3:
43:51:2f:af:1f:47:f4:8c:52:fa:ac:a8:5e:11:c4:
79:73:cf:c6:99:49:b4:09:52:06:41:5c:24:66:17:
eb:58:af:c8:35:6f:57:bc:8a:8d:12:13:4f:70:15:
9e:bc:74:29:ea:98:f0:d4:c0:51:3b:02:ee:d6:66:
6e:73:29:55:11:c7:4a:32:7d:73:d7:2e:f4:e6:0c:
e1:8d:ee:26:fa:cb:a0:43:60:88:be:f6:2d:5f:a5:
f6:44:d6:d8:cf:bb:f2:57:bb:33:1f:01:6e:3f:b9:
7b:7f:16:ed:e4:c8:bd:b3:a7:1a:e3:89:ec:6a:7c:
62:50:37:49:02:33:0a:0f:87:da:e3:77:26:26:e7:
90:b1:51:6f:6c:da:80:12:a0:c5:73:91:13:ed:e7:
d4:e9:b6:3c:ee:39:fb:f2:fc:bf:38:03:82:fc:08:
b4:03:be:02:79:be:2f:b8:29:23:57:cb:2f:9f:2b:
94:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:ED:05:2B:95:BC:82:E2:C7:68:20:AC:12:D9:18:7E:3B:7A:18:BC
X509v3 Authority Key Identifier:
keyid:8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/48BB49E8763A11EFA077F11CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
114.129.43.0/24
IPv6:
2400:c760:a::/48
Signature Algorithm: sha256WithRSAEncryption
78:7b:b6:69:f9:29:77:4e:7c:56:25:1e:c0:30:1d:8a:2b:4b:
d3:a4:70:f7:b8:82:85:94:ee:57:b2:5e:41:e0:98:8a:63:26:
58:a4:ec:a2:05:b4:7c:12:4b:ed:d4:11:25:9a:ad:ca:1c:50:
01:c8:a3:f2:34:74:69:78:ab:61:87:5f:9e:80:91:1c:2a:c0:
07:79:6d:e1:e3:f3:75:d4:a9:0c:f6:58:11:2b:4e:bc:af:a3:
07:6e:ea:bb:84:90:f4:44:ae:ce:21:11:c0:55:c6:65:f7:16:
c2:61:69:a1:01:73:4b:10:43:29:fe:9f:87:16:bb:cf:e6:23:
08:90:6c:e7:99:7e:62:6f:c8:59:a0:6d:93:8f:e2:c3:ef:7d:
6a:a4:b3:c1:19:fc:af:b3:d7:01:84:ea:43:3a:d3:c2:08:bb:
4b:88:9b:ca:1f:56:0a:41:3f:78:14:a2:6b:34:91:1c:c9:90:
31:06:ae:91:54:93:bd:b5:62:3f:53:67:ce:ab:02:67:9f:e2:
55:b5:f6:69:af:eb:8e:87:4a:53:e8:23:e3:6e:34:24:45:a2:
29:d3:4a:d2:e8:61:d9:35:5e:49:1b:b0:9e:68:34:47:30:e0:
35:ba:2d:f3:ff:76:92:8f:a2:46:1f:f9:24:ab:dc:07:e0:b2:
67:d9:11:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 08:40:32 2025 by rpki-client