Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/F88F642285E411EEB951413BC4F9AE02.roa
File: F88F642285E411EEB951413BC4F9AE02.roa (raw, json)
Hash identifier: 5XS7gAJ1w57LGdHifEwdGpT41QuHVgx3tURmBIG/Ph0=
Subject key identifier: 81:31:99:8B:D0:B6:38:9D:7E:F3:06:2F:40:06:A8:64:C0:A6:DA:D4
Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B
Certificate serial: 04E1
Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/F88F642285E411EEB951413BC4F9AE02.roa
Signing time: Sat 28 Dec 2024 23:32:31 +0000
ROA not before: Sat 28 Dec 2024 23:32:31 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 21859
IP address blocks: 117.55.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1249 (0x4e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ACD72
Validity
Not Before: Dec 28 23:32:31 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67708a8e-9633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:59:a9:57:db:15:c7:bb:0d:1e:93:98:68:e3:
07:51:be:97:ef:d4:b6:90:e2:ed:1d:b8:9a:63:47:
37:1e:c1:9a:05:38:84:9c:a4:71:68:fd:d1:78:64:
2d:09:bb:c5:7c:cb:a9:8d:cc:c2:d0:ca:ef:7b:1c:
45:ad:8e:35:77:76:7f:4b:3a:52:66:53:57:59:f3:
f4:3e:b9:4d:01:7a:56:50:c8:cc:02:7e:0a:92:57:
37:72:1c:7e:19:a7:27:23:14:68:9c:90:1a:58:00:
11:9b:1f:ae:e7:ba:d8:6a:c5:79:41:2e:03:2e:55:
ce:fc:62:02:83:60:93:da:57:70:e3:84:bd:09:d5:
5d:3b:42:4b:5d:74:eb:37:2f:21:23:fa:70:dc:69:
b0:48:15:7f:fa:46:b3:1e:27:0e:a7:87:69:ef:cf:
96:7f:99:ca:3c:c3:ce:1e:fb:c0:c1:17:ef:8a:c9:
27:49:16:bc:a0:7b:ca:58:f9:6c:ca:1f:59:ba:37:
da:12:57:c3:4d:cb:16:72:df:fc:b5:b3:39:aa:93:
3d:6a:22:1d:35:99:f9:e2:fd:b4:28:a4:61:c5:59:
37:0a:67:72:ab:e0:e4:25:91:c8:46:33:3e:95:b3:
c9:44:d5:37:d1:3a:fd:c4:e1:04:3c:b7:9a:d8:fe:
5d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:31:99:8B:D0:B6:38:9D:7E:F3:06:2F:40:06:A8:64:C0:A6:DA:D4
X509v3 Authority Key Identifier:
keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/F88F642285E411EEB951413BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
117.55.205.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:83:87:8a:60:d1:ab:fe:00:5b:6f:fd:ed:62:92:98:b7:23:
ed:f4:03:3d:9a:1e:57:c5:d5:15:ae:7c:b9:20:bf:78:dd:c2:
d0:f3:d8:a1:85:cd:07:dc:40:63:be:c5:f5:68:2a:0f:03:66:
72:ea:2a:a1:59:3a:7d:58:48:3e:2b:0f:1f:5f:47:8e:30:5a:
12:ea:47:4b:40:59:50:0c:e0:17:cd:72:9c:b4:87:e4:82:82:
05:83:86:06:b5:13:10:de:09:d0:82:c9:6c:b9:cb:07:0d:87:
4e:c4:56:65:61:7b:ca:41:06:fc:af:57:04:c7:d3:58:59:ab:
6c:df:1b:4d:ec:29:6a:aa:9a:ff:d8:33:1e:45:9c:53:11:31:
95:4b:e9:00:b5:ae:17:67:c5:e3:9d:f0:d3:4a:65:6e:6e:f6:
d4:82:fe:6c:c4:44:6f:17:6c:44:31:14:71:d3:48:50:3f:1f:
d4:d4:f3:37:73:9b:de:a4:b3:dd:e4:c6:fd:ce:a4:c3:fb:fc:
68:96:b3:dc:70:e3:aa:f2:5d:96:ca:f3:a7:7f:7d:e2:d8:c3:
22:62:cd:9d:55:10:c0:36:a8:10:7e:49:76:93:d1:ce:e7:4c:
23:0c:3b:ab:62:70:99:a0:3e:37:f8:7b:8e:2f:3d:41:c0:a9:
25:89:01:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 22:39:08 2025 by rpki-client