Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/7BF6BA42E91A11EF804C4B57C4F9AE02.roa
File: 7BF6BA42E91A11EF804C4B57C4F9AE02.roa (raw, json)
Hash identifier: HNlYiglg+bBDY8hf2XbMc61T9NCbbnRV5gfydPimiu8=
Subject key identifier: A6:6E:19:DA:DF:75:38:E5:E4:94:E9:1F:00:C6:6C:4E:BD:E7:CE:1C
Certificate issuer: /CN=A9111FFD/serialNumber=104CF87063B5EABF34DE4E25FECE9AB5AF736C14
Certificate serial: 25
Authority key identifier: 10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/7BF6BA42E91A11EF804C4B57C4F9AE02.roa
Signing time: Thu 27 Mar 2025 05:37:50 +0000
ROA not before: Thu 27 Mar 2025 05:37:50 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 153557
IP address blocks: 163.61.14.0/24 maxlen: 24
163.61.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37 (0x25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9111FFD
Validity
Not Before: Mar 27 05:37:50 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67e4e42e-3ec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c8:e6:e9:2c:c2:08:24:cb:a9:47:76:5d:d2:
02:db:6f:c0:df:34:1c:92:22:c6:68:57:d8:3a:c4:
23:88:63:ea:9e:55:ed:a1:13:14:f3:ca:7a:c0:b5:
7c:6b:4e:7d:e6:bc:b8:12:44:7e:08:91:2c:a4:7b:
17:bc:f1:4c:e0:37:5f:84:85:82:bf:ce:ae:fe:ad:
22:f4:72:f6:07:34:78:96:9b:c6:af:26:1a:42:65:
82:ad:1b:bd:ff:d9:f8:dc:90:af:1b:b0:99:15:82:
3e:cc:64:2f:e4:b2:b6:c7:33:7c:ea:6e:ab:45:04:
41:2a:1d:e3:66:52:d6:a9:24:77:ad:4b:24:1d:d1:
d1:40:4e:2d:fa:ca:6e:20:86:40:bc:8a:81:22:20:
d5:fa:8b:14:c7:93:61:23:a7:22:2f:2c:5e:90:44:
72:e4:67:7a:fd:58:67:8a:b8:7e:3b:bf:20:31:1c:
70:bc:e1:3c:6a:14:e8:87:07:e0:a5:ba:86:c2:08:
b6:85:53:1e:2a:e5:84:bd:6c:47:10:5a:5a:ea:ac:
3b:9c:fe:aa:12:ca:37:32:d8:c2:7f:7c:d4:b3:b9:
2f:74:55:72:2b:9d:c3:4d:a3:75:d8:64:66:71:5f:
e0:9e:ba:7c:4e:bb:03:0d:83:79:7c:7d:6f:21:66:
30:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6E:19:DA:DF:75:38:E5:E4:94:E9:1F:00:C6:6C:4E:BD:E7:CE:1C
X509v3 Authority Key Identifier:
keyid:10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/7BF6BA42E91A11EF804C4B57C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.61.14.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:e8:d8:82:a8:46:2a:a3:ad:77:87:e3:43:b1:52:8a:31:40:
01:c1:73:7f:36:5d:aa:95:a1:a1:a3:10:9d:ae:69:a8:76:8f:
52:5c:95:06:7e:48:a7:6d:4e:cc:4f:c3:bc:6b:5c:e3:79:6a:
b9:6f:d5:b4:c1:bd:37:6c:6a:85:5f:c2:d3:ef:89:d0:10:f2:
38:af:e8:0f:a6:42:d5:29:2f:8e:80:41:51:9b:2f:09:29:cd:
29:33:8e:ad:63:e4:3c:00:59:25:42:2c:79:a1:da:51:8c:3a:
b6:70:aa:52:ad:ea:ec:10:a0:95:62:8d:9c:80:70:1f:f6:99:
d7:50:06:1c:bb:ee:7c:1a:da:6c:1f:bd:7a:8d:80:a1:0e:70:
0e:ca:24:54:3e:f0:50:b4:de:3a:c2:c4:ab:8c:d3:91:d1:f6:
0d:46:6e:76:e7:b1:33:9d:10:6e:a1:46:9d:71:51:7d:12:99:
8f:71:48:1b:29:45:ca:f5:70:ce:7b:3a:61:c1:c3:2a:59:68:
58:f3:bd:f3:03:a1:c0:4a:06:37:01:b4:62:d3:93:92:b9:b1:
a7:9f:43:0d:ec:e4:77:54:36:bc:10:ed:f4:3f:a7:e3:0d:b7:
85:02:4d:b3:73:4e:a7:22:d6:3b:a4:71:77:21:b5:ad:3a:85:
39:21:b7:9b
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx
MUZGRDExMC8GA1UEBRMoMTA0Q0Y4NzA2M0I1RUFCRjM0REU0RTI1RkVDRTlBQjVB
RjczNkMxNDAeFw0yNTAzMjcwNTM3NTBaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY3ZTRlNDJlLTNlYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDbyObpLMIIJMupR3Zd0gLbb8DfNBySIsZoV9g6xCOIY+qeVe2hExTzynrAtXxr
Tn3mvLgSRH4IkSykexe88UzgN1+EhYK/zq7+rSL0cvYHNHiWm8avJhpCZYKtG73/
2fjckK8bsJkVgj7MZC/ksrbHM3zqbqtFBEEqHeNmUtapJHetSyQd0dFATi36ym4g
hkC8ioEiINX6ixTHk2EjpyIvLF6QRHLkZ3r9WGeKuH47vyAxHHC84TxqFOiHB+Cl
uobCCLaFUx4q5YS9bEcQWlrqrDuc/qoSyjcy2MJ/fNSzuS90VXIrncNNo3XYZGZx
X+CeunxOuwMNg3l8fW8hZjCnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUpm4Z2t91
OOXklOkfAMZsTr3nzhwwHwYDVR0jBBgwFoAUEEz4cGO16r803k4l/s6ata9zbBQw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExRkZELzQyRUIwNTM0REQz
ODExRUY5QzM0Njc0NUM0RjlBRTAyL0VFejRjR08xNnI4MDNrNGxfczZhdGE5emJC
US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvRUV6NGNHTzE2cjgwM2s0bF9zNmF0YTl6YkJRLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
MUZGRC80MkVCMDUzNEREMzgxMUVGOUMzNDY3NDVDNEY5QUUwMi83QkY2QkE0MkU5
MUExMUVGODA0QzRCNTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAaM9DjANBgkqhkiG9w0BAQsFAAOCAQEAj+jYgqhGKqOtd4fj
Q7FSijFAAcFzfzZdqpWhoaMQna5pqHaPUlyVBn5Ip21OzE/DvGtc43lquW/VtMG9
N2xqhV/C0++J0BDyOK/oD6ZC1SkvjoBBUZsvCSnNKTOOrWPkPABZJUIseaHaUYw6
tnCqUq3q7BCglWKNnIBwH/aZ11AGHLvufBrabB+9eo2AoQ5wDsokVD7wULTeOsLE
q4zTkdH2DUZuduexM50QbqFGnXFRfRKZj3FIGylFyvVwzns6YcHDKlloWPO98wOh
wEoGNwG0YtOTkrmxp59DDezkd1Q2vBDt9D+n4w23hQJNs3NOpyLWO6RxdyG1rTqF
OSG3mw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 01:44:09 2025 by rpki-client