Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/F8D5DC60BF7111EE806CB182C4F9AE02.roa
File: F8D5DC60BF7111EE806CB182C4F9AE02.roa (raw, json)
Hash identifier: dnFPJnob0iVhfZy+h628YHTmIBu/2rM+XDutXFD80e0=
Subject key identifier: FC:C9:4C:2A:9A:51:24:1E:FA:DF:D5:5D:70:6C:8D:47:D6:CE:F5:D5
Certificate issuer: /CN=A91187FD/serialNumber=68852AB7F2714FCF54D75F0AAE3068ADC38B35CC
Certificate serial: 0136
Authority key identifier: 68:85:2A:B7:F2:71:4F:CF:54:D7:5F:0A:AE:30:68:AD:C3:8B:35:CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/F8D5DC60BF7111EE806CB182C4F9AE02.roa
Signing time: Fri 23 Aug 2024 05:07:20 +0000
ROA not before: Fri 23 Aug 2024 05:07:20 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 150368
IP address blocks: 2401:3fa0:100::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 310 (0x136)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91187FD
Validity
Not Before: Aug 23 05:07:20 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66c81908-c563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:55:12:74:d1:f8:51:ce:51:12:9f:f2:aa:7b:
00:dc:7e:ff:3f:0d:d1:ab:b0:8a:ff:ad:b7:90:36:
89:ed:2e:1a:4a:81:22:82:e6:58:4a:ba:a7:4b:0c:
e0:a8:10:b2:b9:fa:bb:49:4b:b8:ef:35:65:b2:db:
22:01:96:62:8e:27:e7:a0:85:1e:92:04:1b:42:a7:
7f:04:46:92:c6:14:a5:6e:54:d1:61:02:02:02:21:
bd:dc:56:44:43:df:a1:8d:73:c3:ee:04:1f:27:30:
31:fb:07:aa:46:73:fd:da:5b:e6:31:9c:5f:f0:03:
9a:9f:81:14:dc:d2:74:17:5d:57:03:5b:00:1d:f0:
12:46:80:37:43:23:5c:a0:23:d0:fc:8a:3a:f0:98:
f4:d3:51:4a:98:19:be:3d:05:65:d3:1e:5e:fd:24:
11:61:95:dd:22:84:bb:7a:c7:3e:3f:5e:39:ab:82:
2a:b5:41:4e:7b:64:7d:0d:b1:70:81:45:f8:aa:30:
61:7d:7d:a0:1b:fd:8c:6b:9e:f0:f6:4b:1c:d2:e1:
3d:e5:68:39:da:ef:73:99:7f:ff:18:22:a1:75:70:
b2:c9:f4:53:23:f0:84:ce:79:7f:15:f2:41:81:86:
2a:2a:6d:da:8c:96:41:c2:76:b7:24:7a:38:22:3b:
a2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C9:4C:2A:9A:51:24:1E:FA:DF:D5:5D:70:6C:8D:47:D6:CE:F5:D5
X509v3 Authority Key Identifier:
keyid:68:85:2A:B7:F2:71:4F:CF:54:D7:5F:0A:AE:30:68:AD:C3:8B:35:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/F8D5DC60BF7111EE806CB182C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:3fa0:100::/44
Signature Algorithm: sha256WithRSAEncryption
0d:ad:3f:f1:f3:6b:95:59:96:ca:b0:fc:3f:07:a8:88:2e:02:
65:38:03:72:f6:77:39:3e:74:ae:5b:95:d3:74:2f:cc:83:4b:
b2:ba:f1:d9:f9:db:c2:20:5b:a4:ed:e7:4c:53:8e:da:10:a5:
ae:22:73:76:65:8f:4c:8d:8c:a8:49:bc:21:4e:1f:a4:26:89:
16:b4:ff:f4:d6:30:89:e3:93:23:77:e0:4f:c1:33:3e:28:03:
40:2c:f3:37:53:3a:ff:1c:36:fc:62:e8:c0:1e:45:3e:59:35:
66:da:68:26:83:0c:81:65:0e:31:4e:e7:b2:ce:cc:d7:a6:bd:
b4:94:76:c1:ef:1a:d9:b4:cb:ab:80:7a:4e:d3:4d:37:5a:32:
72:a0:a7:5c:04:cb:1a:fc:ca:c6:6f:dc:5c:e8:38:61:5f:4c:
69:33:ae:af:c2:62:28:e6:2f:61:16:1a:8c:4f:90:63:23:fa:
cc:59:91:bf:01:52:85:ee:66:3b:9a:85:14:6b:70:5d:c6:1e:
3d:62:99:d0:a4:26:a9:7b:74:b7:b5:9a:7d:38:e4:c5:09:18:
a5:0a:ce:62:42:3a:ac:94:d2:0c:bb:e7:23:81:95:27:b9:0f:
dc:bc:3c:b3:86:1a:a7:20:78:d3:df:e2:b1:4d:92:52:9c:d0:
5a:e5:7e:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:39:08 2025 by rpki-client