Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/B7E4B4D8676411EA90B16258C4F9AE02.roa
File: B7E4B4D8676411EA90B16258C4F9AE02.roa (raw, json)
Hash identifier: ZJxL1MdbhAv+jZrXHgGesgnpKK6b8TXGM55sEaDPeH8=
Subject key identifier: E4:69:4E:0B:CA:A8:23:90:64:01:30:09:F4:53:59:58:88:9C:1F:FE
Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7
Certificate serial: 34C6
Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/B7E4B4D8676411EA90B16258C4F9AE02.roa
Signing time: Fri 24 Jan 2025 16:02:29 +0000
ROA not before: Fri 24 Jan 2025 16:02:29 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 24213
IP address blocks: 119.82.224.0/20 maxlen: 24
202.182.56.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13510 (0x34c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9186214
Validity
Not Before: Jan 24 16:02:29 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=6793b995-7197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:98:93:23:06:b4:d5:6a:75:ce:b4:bd:9c:15:
14:af:36:72:81:eb:ae:c3:63:03:71:a9:67:9b:a3:
34:de:34:53:a2:db:c1:02:48:f7:17:e0:46:7d:02:
23:4c:b6:27:b6:a7:3a:ae:a0:38:02:27:d2:6c:d2:
bd:bd:b0:28:93:db:33:f0:83:c4:03:ed:34:60:ea:
3c:1c:51:81:ac:91:fb:a4:e2:8f:66:52:79:aa:fa:
08:b2:a3:4e:7e:a3:29:f2:43:84:82:bf:23:5f:a1:
c3:32:2f:23:0b:39:19:f0:74:02:1f:bd:f0:74:4c:
36:04:81:64:03:fa:b1:13:75:d2:0e:5b:b5:f9:7b:
3a:bd:37:54:dc:15:8a:4d:bf:84:73:0d:5d:59:1d:
fa:56:b4:e0:a9:a1:ad:d7:1c:19:b1:38:1e:9b:ec:
36:cb:40:95:ea:8f:a7:ac:a9:9a:2f:df:99:c6:c6:
96:b2:31:e4:0d:9f:9a:1b:41:7b:be:99:bf:78:d8:
33:c1:d8:5f:d2:df:e3:6c:a3:47:df:13:2d:6e:67:
cf:e2:e0:44:ae:c6:4e:f5:97:a8:fe:d2:e7:62:63:
ff:68:9c:61:57:7a:21:6d:2b:75:b8:c4:eb:c5:9e:
f0:6d:d8:3f:13:96:b9:c3:36:52:00:32:e7:86:c0:
a2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:69:4E:0B:CA:A8:23:90:64:01:30:09:F4:53:59:58:88:9C:1F:FE
X509v3 Authority Key Identifier:
keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/B7E4B4D8676411EA90B16258C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
119.82.224.0/20
202.182.56.0/21
Signature Algorithm: sha256WithRSAEncryption
c1:b6:65:88:32:ea:6d:48:ab:1f:8c:d2:d4:07:40:56:db:31:
30:18:76:13:05:ee:db:05:5f:94:f3:88:08:93:ab:e2:70:ac:
32:c1:2b:cd:fd:43:82:7f:a3:56:40:37:f0:a5:45:bd:5b:e8:
23:da:50:88:89:ef:9c:a8:7f:57:dd:60:8a:b9:1c:c5:39:7f:
2f:6f:f5:e6:05:8c:f1:07:d9:a5:ef:30:f0:72:14:4c:fd:95:
e1:05:37:96:f3:54:a4:d6:78:71:86:31:52:1b:98:1f:75:3e:
c2:2d:6b:7d:22:c9:37:3c:bc:3c:ad:df:ae:07:5d:1e:61:71:
63:fd:1a:b7:35:bd:54:57:24:f2:2f:10:c1:6a:44:8b:db:f4:
c8:b2:72:c1:ca:2e:fd:cf:dc:c8:c4:72:32:02:18:32:b8:19:
ba:6c:48:90:ae:fb:63:f1:3b:e2:d9:3a:8f:fb:82:42:03:85:
56:a4:a5:51:44:9f:3a:a7:4b:d7:c5:b2:63:04:7a:90:cd:ec:
54:8e:99:dd:87:0b:0d:a2:51:40:3d:fd:ee:6d:04:ac:2f:05:
b0:5e:b4:f0:68:03:d2:70:b6:33:46:35:24:de:60:2d:e0:c5:
30:7c:f3:f6:c2:d8:49:44:c5:51:26:5b:72:22:5f:c2:f9:5e:
46:0c:a1:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:03:41 2025 by rpki-client