Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/981F188018CE11EFBCD58454C4F9AE02.roa
File: 981F188018CE11EFBCD58454C4F9AE02.roa (raw, json)
Hash identifier: VqWzdPFCvuqUEShaf6/toPwLspmfOG4EJ7lP9CUoJW0=
Subject key identifier: 13:D8:86:61:98:D7:BF:A3:54:56:F8:84:3A:77:20:A0:53:90:49:F1
Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003
Certificate serial: 0931
Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/981F188018CE11EFBCD58454C4F9AE02.roa
Signing time: Sat 22 Jun 2024 21:13:59 +0000
ROA not before: Sat 22 Jun 2024 21:13:59 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 9381
IP address blocks: 138.19.0.0/16 maxlen: 24
165.84.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2353 (0x931)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911647C
Validity
Not Before: Jun 22 21:13:59 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66773e97-a04b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3e:aa:68:5e:6f:0e:cb:83:92:61:1a:55:05:
dc:98:15:8a:2d:8c:ae:30:9b:f3:57:67:c2:d8:ec:
9c:78:7c:ce:d6:ee:f4:f8:eb:34:d0:69:54:e6:4c:
83:84:c0:9d:5f:13:e7:53:83:a6:c7:1b:a5:86:74:
60:89:fe:95:81:a0:5c:8c:db:e9:dd:24:39:d9:8f:
32:b7:89:63:15:55:b5:27:c8:a5:c8:c7:09:9a:c6:
22:9d:ba:29:ff:48:9d:9b:ab:57:4f:95:e0:1e:d9:
2e:33:c4:47:c3:04:b2:fa:e0:41:ce:d9:9c:79:1f:
29:60:34:e9:12:fa:58:ff:4c:0b:6d:6b:bc:2d:46:
21:24:00:4f:87:77:5e:ca:3c:cb:ef:a1:ae:45:b8:
69:b7:eb:31:00:33:92:ba:a3:11:1d:94:d3:42:a3:
ce:ac:aa:05:90:a5:ac:9d:33:65:7e:b7:2c:7a:1c:
15:3a:e2:1a:03:72:29:ae:af:18:82:5b:f1:df:09:
22:6f:d8:e6:e1:1d:14:a3:59:96:d4:05:d1:38:1e:
99:8a:a4:51:af:a3:ed:b6:30:36:2b:fa:48:b0:6f:
30:49:b3:0e:ad:ab:35:9a:38:29:4b:8a:45:a1:ec:
f2:fe:5f:08:ad:f7:8a:b6:be:18:df:c7:9a:81:26:
a6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D8:86:61:98:D7:BF:A3:54:56:F8:84:3A:77:20:A0:53:90:49:F1
X509v3 Authority Key Identifier:
keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/981F188018CE11EFBCD58454C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
138.19.0.0/16
165.84.128.0/18
Signature Algorithm: sha256WithRSAEncryption
24:c7:07:68:b3:f4:ae:f7:af:51:d8:86:3c:cf:c5:ec:45:f0:
88:8c:13:71:ae:81:88:f0:75:e8:42:c7:65:4e:ee:1d:ae:9a:
0c:36:36:f3:c7:c3:e8:e5:e2:c2:10:cb:0d:27:14:b9:0f:00:
83:10:bc:1d:b8:c6:43:6d:04:4d:7a:81:cf:0f:10:42:58:d9:
d3:d5:9e:61:95:85:db:5e:d0:d6:43:97:70:f7:97:b7:9c:88:
5b:43:c7:a6:61:25:22:42:23:0e:dc:f3:f0:73:4d:ee:72:97:
a3:3d:17:96:ff:e6:60:41:44:c6:36:de:15:d4:c2:c7:10:b5:
c8:4b:8b:e4:90:98:33:f7:41:c7:0c:95:e1:3e:64:f9:d4:2b:
60:2b:0d:25:85:64:02:1c:2a:30:03:36:6c:0e:d3:ac:de:5f:
4a:eb:c6:30:1b:eb:b9:95:6b:7e:27:9e:50:43:6d:d5:07:55:
ce:d1:88:00:00:9e:ca:0c:b7:a3:5c:ca:31:03:27:da:5a:69:
fc:23:d3:fe:3b:97:90:db:51:4d:59:d1:6f:c2:0c:53:6d:78:
21:25:dc:64:c9:63:a3:f6:27:ef:b5:30:fa:f9:90:64:47:92:
f6:ce:fc:0f:07:5f:1b:51:d6:4e:16:f7:66:07:61:e4:cf:5e:
e7:84:06:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:09:09 2025 by rpki-client