Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911AB17/5966DD2672A711EEB10BE852C4F9AE02/437375BC7F5111EFB8735348C4F9AE02.roa
File: 437375BC7F5111EFB8735348C4F9AE02.roa (raw, json)
Hash identifier: MiUmrOUrY1jCxzNkOhDOwwFLSpw0fp+op0zeu0tdUGo=
Subject key identifier: 5E:E4:D3:92:72:88:C8:71:E5:4B:44:F8:EE:28:68:74:B5:C8:A5:26
Certificate issuer: /CN=A911AB17/serialNumber=42F2791EEAC1FC7D7EC10B69F25E9EE95DAB34E1
Certificate serial: F9
Authority key identifier: 42:F2:79:1E:EA:C1:FC:7D:7E:C1:0B:69:F2:5E:9E:E9:5D:AB:34:E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QvJ5HurB_H1-wQtp8l6e6V2rNOE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911AB17/5966DD2672A711EEB10BE852C4F9AE02/437375BC7F5111EFB8735348C4F9AE02.roa
Signing time: Sun 01 Dec 2024 04:27:33 +0000
ROA not before: Sun 01 Dec 2024 04:27:33 +0000
ROA not after: Sun 30 Mar 2025 00:00:00 +0000
asID: 151805
IP address blocks: 2401:56a0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 249 (0xf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911AB17
Validity
Not Before: Dec 1 04:27:33 2024 GMT
Not After : Mar 30 00:00:00 2025 GMT
Subject: CN=674be5b5-9785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:02:6e:18:88:d1:e9:e5:59:34:04:54:5f:6c:
af:a7:69:9f:06:96:84:d5:a1:bf:61:e4:19:10:32:
05:7a:8a:21:5d:38:1f:69:11:f7:1b:36:62:cb:78:
55:97:53:a2:e9:ef:43:10:8d:ba:20:ca:55:71:90:
9b:13:42:13:ce:5e:1c:e0:13:7f:f9:a2:20:e3:f6:
ad:71:d0:8a:91:26:14:c8:97:0b:7e:c6:59:87:5f:
a5:e6:3d:96:65:d4:cd:b7:0d:38:04:74:74:de:f2:
61:f4:90:6c:d7:66:bc:8e:ab:a2:46:52:f8:b7:49:
f4:46:3d:96:46:21:a6:11:75:2b:3e:c8:98:77:0a:
98:0c:36:03:7b:db:41:0e:f1:80:d4:58:6f:a9:a8:
b9:8c:f0:25:f9:bc:15:3b:47:34:49:cf:f5:ee:79:
ac:f3:ef:3f:f3:a6:fe:e1:2e:b2:35:95:82:46:6e:
57:98:41:51:42:43:a6:ec:55:ca:17:98:15:e2:c4:
f9:2f:f7:81:65:43:09:c0:f7:9a:e0:7e:39:bc:1e:
7e:32:9d:3b:d3:9b:04:08:dc:22:50:1f:45:96:b4:
5d:24:23:fb:2f:d5:0e:f9:30:29:61:70:42:da:69:
3a:eb:53:7b:14:a7:2c:bd:53:7a:6c:98:18:ed:29:
df:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:E4:D3:92:72:88:C8:71:E5:4B:44:F8:EE:28:68:74:B5:C8:A5:26
X509v3 Authority Key Identifier:
keyid:42:F2:79:1E:EA:C1:FC:7D:7E:C1:0B:69:F2:5E:9E:E9:5D:AB:34:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911AB17/5966DD2672A711EEB10BE852C4F9AE02/QvJ5HurB_H1-wQtp8l6e6V2rNOE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QvJ5HurB_H1-wQtp8l6e6V2rNOE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AB17/5966DD2672A711EEB10BE852C4F9AE02/437375BC7F5111EFB8735348C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:56a0::/32
Signature Algorithm: sha256WithRSAEncryption
1b:a4:2b:09:2d:60:62:76:5e:cf:ee:9b:95:84:f9:fa:a5:d9:
cd:3c:08:b8:91:00:e6:47:c9:3f:3c:9f:ac:6a:80:73:70:b9:
e1:50:a0:71:21:96:d8:40:16:50:72:bf:64:61:db:e5:a8:5c:
64:14:cb:10:40:0b:ad:91:11:85:74:86:54:46:1b:80:d9:c1:
d6:76:ca:d4:70:30:4c:c6:1d:af:83:11:f8:bb:3d:b4:c4:b9:
4a:21:7c:2b:8d:29:53:14:36:8c:a0:57:fa:25:41:88:25:c4:
e5:c8:03:33:9e:84:52:1b:3d:09:9e:3d:31:be:a5:bf:8d:26:
31:e4:a0:aa:07:3f:8b:21:e4:c5:4a:e7:41:63:85:e9:c2:1f:
60:41:18:b7:8e:4e:51:53:a3:a9:b1:63:93:b2:d1:92:af:dd:
54:d0:5e:5c:f5:6b:15:59:f4:67:5e:c3:43:bb:c0:c8:6f:09:
ab:ef:aa:ef:56:06:d5:6f:0f:2f:cd:91:40:75:49:b2:77:0d:
28:83:42:09:cf:0f:92:fa:54:bb:b4:b7:ac:e2:c5:4b:31:6d:
9d:ff:bb:3c:95:6a:f8:98:e7:f6:ee:00:d2:bf:94:85:2b:af:
d2:33:74:79:fd:8b:88:55:49:e6:6f:65:35:05:eb:64:cb:31:
e9:46:7a:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:20:25 2025 by rpki-client