Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/E6EA5626B3A311EF9D9F7429C4F9AE02.roa
File: E6EA5626B3A311EF9D9F7429C4F9AE02.roa (raw, json)
Hash identifier: 3+JDVuiPlbwikbiK7IFOC7PgUQwiTHWoco7qtA33ENw=
Subject key identifier: 51:2B:22:99:75:9B:90:AC:9B:C9:53:42:C7:5E:4D:DE:AE:5D:0B:6F
Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Certificate serial: 21D0
Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/E6EA5626B3A311EF9D9F7429C4F9AE02.roa
Signing time: Fri 06 Dec 2024 07:30:01 +0000
ROA not before: Fri 06 Dec 2024 07:30:01 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 180.210.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8656 (0x21d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Validity
Not Before: Dec 6 07:30:01 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6752a7f8-5aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0f:44:06:2e:9e:5b:26:ef:df:7c:4a:a9:24:
b0:7b:cd:71:8a:24:0f:c0:c7:cb:ce:28:dc:68:b7:
ac:26:d4:75:12:99:d5:48:05:fb:89:66:65:ca:2d:
ab:45:91:fc:0b:ff:22:ad:e0:8c:9f:e0:ea:ea:2b:
6f:e8:b4:9a:2c:b6:2d:37:be:ba:48:37:da:50:bf:
76:d7:59:7e:4b:66:a9:cf:e6:e2:32:0a:bc:fb:5f:
14:63:f4:1a:7b:41:45:8d:9b:f3:28:f0:bf:1b:02:
82:e7:82:63:7d:02:ea:41:8b:d6:5c:04:56:59:c4:
ec:95:2d:7f:d1:b1:02:39:31:c6:87:ae:62:ec:c3:
4f:ff:0c:f0:fb:0a:0c:03:ac:30:f1:bf:b3:be:d9:
cc:e0:a4:a1:64:60:ce:78:7a:16:c5:a0:39:9b:85:
cf:0c:59:e9:fd:8e:b0:04:d6:64:77:5a:48:45:70:
55:ee:54:c0:55:38:e1:ef:b8:29:a5:72:d8:af:75:
56:5f:14:b4:66:fd:fc:6a:9b:1e:cf:df:e0:ea:d1:
e9:13:8c:c0:80:07:d6:00:e6:31:a0:2b:8e:19:42:
55:ae:1f:84:52:a4:06:10:bc:ab:49:c1:98:7c:a0:
3d:fa:7e:ed:77:bb:8b:1a:6a:36:43:35:33:2f:96:
52:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:2B:22:99:75:9B:90:AC:9B:C9:53:42:C7:5E:4D:DE:AE:5D:0B:6F
X509v3 Authority Key Identifier:
keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/E6EA5626B3A311EF9D9F7429C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
180.210.221.0/24
Signature Algorithm: sha256WithRSAEncryption
95:67:e8:55:17:62:63:1e:19:73:77:42:4d:b8:7b:bc:7e:15:
82:87:ba:db:c0:1b:3f:7a:1e:e7:34:6f:91:27:0c:51:3a:b5:
83:a7:a3:5a:81:4f:62:43:5e:b0:0d:d4:e4:fd:e2:85:96:50:
07:69:6b:56:4e:9a:b9:a9:7a:fa:55:4e:d9:d3:1c:7e:19:32:
2c:84:39:ab:63:27:93:77:68:db:e3:74:49:5d:aa:c7:37:e9:
0e:17:1a:5b:4c:e6:3c:9a:f2:3b:fe:c9:0e:40:9d:1b:ca:73:
bc:ad:2f:bc:d5:fc:6e:16:94:81:b8:60:32:3c:89:99:23:51:
d8:c5:64:e9:0a:9e:fd:47:7a:ad:a6:1f:d7:d2:2c:75:06:c3:
ee:90:92:30:ed:77:7e:75:97:31:14:6c:88:fd:5a:d3:42:10:
29:ec:51:ea:75:49:4b:df:0e:28:71:16:2e:fb:d4:7b:32:af:
5c:c1:36:6c:b9:51:ff:15:44:54:8d:7c:5c:0a:77:68:ad:be:
b5:b1:d5:0c:ed:59:dc:e1:26:50:ae:b8:8c:cc:78:14:83:a5:
9a:f7:48:55:77:13:a6:95:76:b8:e0:8d:6f:4a:03:51:db:fb:
73:26:10:2f:d3:e7:ae:0b:12:d5:82:78:90:2a:1c:8b:03:3f:
06:bd:71:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:10:32 2025 by rpki-client