Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/E5AC554A897211EEA179DA5DC4F9AE02.roa
File: E5AC554A897211EEA179DA5DC4F9AE02.roa (raw, json)
Hash identifier: 6FWLxJ0tuemCPYBLnFeCXc6fNxB9xk/e0IXfBTmtzAk=
Subject key identifier: 22:8C:B5:F9:1A:08:C8:98:8C:FE:BF:BA:06:CC:B9:9C:03:1E:FD:D6
Certificate issuer: /CN=A9112DB1/serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5
Certificate serial: 041D
Authority key identifier: 22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/E5AC554A897211EEA179DA5DC4F9AE02.roa
Signing time: Sat 15 Mar 2025 00:45:51 +0000
ROA not before: Sat 15 Mar 2025 00:45:51 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 136011
IP address blocks: 2400:8a20:126::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1053 (0x41d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9112DB1
Validity
Not Before: Mar 15 00:45:51 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67d4cdbf-3003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:57:f8:a8:67:0b:58:a2:2d:44:2c:a5:c2:f0:
3a:f6:d5:63:3e:01:3e:4f:b9:4f:f0:7a:62:7d:b6:
49:20:08:31:a7:26:f1:c3:d6:d2:48:7d:ff:ba:f2:
3c:95:cb:8b:0e:ca:3e:6c:f5:38:7e:df:c9:87:77:
9b:1e:cd:34:7a:a4:21:0a:c9:79:d2:22:a8:7f:b9:
bf:c4:e7:94:b0:c9:53:4a:30:c6:dc:0a:43:92:92:
75:91:ee:7d:dc:08:d8:1c:ff:52:78:2f:ff:61:52:
86:a2:47:07:de:65:92:5a:15:50:79:13:39:4c:9b:
79:aa:3b:1d:66:d2:9b:c5:18:45:d9:0b:02:14:53:
05:26:1a:f8:0d:75:0d:93:d5:cd:f5:ee:7a:95:db:
f2:3d:4d:46:10:2e:a0:b4:6a:80:f1:66:1e:13:90:
5b:f1:59:dd:f0:c5:15:7c:49:23:ae:52:ec:62:8d:
1d:e7:18:c3:d3:1b:20:57:e9:0c:f4:15:51:11:90:
34:53:8c:2e:40:9c:37:0b:e5:06:22:38:d1:75:09:
9a:67:4e:ab:7c:da:f2:89:af:52:47:1c:ca:55:bc:
60:5c:2d:12:a2:38:11:eb:19:49:55:9d:cc:01:e4:
33:94:07:c2:07:05:42:ec:38:a8:49:de:33:50:83:
fb:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8C:B5:F9:1A:08:C8:98:8C:FE:BF:BA:06:CC:B9:9C:03:1E:FD:D6
X509v3 Authority Key Identifier:
keyid:22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/E5AC554A897211EEA179DA5DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:8a20:126::/48
Signature Algorithm: sha256WithRSAEncryption
10:73:c3:32:c9:93:73:00:da:73:b6:a0:60:4a:74:95:70:a2:
2e:34:55:14:52:f2:7c:ff:09:06:62:11:a0:14:2a:38:cb:bc:
cb:43:29:32:3d:e1:ed:31:5f:68:63:30:20:e4:34:a6:cc:21:
71:f5:7d:97:8d:83:4b:f5:ff:ce:1c:6e:56:c0:47:58:1e:6d:
fd:5d:ba:97:5d:5f:ab:a7:b4:e1:47:57:70:85:e6:54:94:70:
9c:bc:07:eb:02:69:f3:2e:a9:d5:c0:4d:e5:14:54:fb:63:b1:
97:55:99:4c:62:9a:d4:b3:a6:41:c7:6a:6a:0a:7b:1a:80:1a:
97:17:19:29:18:aa:b4:f1:67:f6:dc:f4:a1:89:d7:ac:fb:6d:
75:ec:3a:44:b6:b0:86:96:65:fb:37:bc:45:32:e7:ca:d0:46:
b7:07:ac:64:80:75:b0:fb:e4:67:23:ad:45:18:40:16:e1:19:
63:ac:0b:36:da:f2:4b:c8:64:f5:5c:ba:6b:ca:93:84:9e:95:
ea:6e:fc:9a:d2:a1:94:3f:6c:0c:50:4d:e7:ee:b7:fe:48:c9:
92:40:04:6b:36:4c:26:f4:60:ca:74:84:01:91:5f:8a:cb:d1:
1c:9c:31:54:12:60:e6:95:86:ca:11:ad:96:a6:cb:be:7f:ce:
38:46:77:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:23:08 2025 by rpki-client