Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B75A/12D30FD85B9A11EF82027640C4F9AE02/8A54B9326F0C11EF866A7A83C4F9AE02.roa
File: 8A54B9326F0C11EF866A7A83C4F9AE02.roa (raw, json)
Hash identifier: 4E2LrZlO3ISS0nbt57DW68xHKT/RNp0hNVMadZS9u+U=
Subject key identifier: 03:25:F1:98:41:FC:70:24:9C:BB:C1:FE:6F:3C:37:44:49:C7:7E:63
Certificate issuer: /CN=A912B75A/serialNumber=55770F63A0E65F4C2FC96AF198BC5784DCE78A46
Certificate serial: 15
Authority key identifier: 55:77:0F:63:A0:E6:5F:4C:2F:C9:6A:F1:98:BC:57:84:DC:E7:8A:46
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXcPY6DmX0wvyWrxmLxXhNznikY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912B75A/12D30FD85B9A11EF82027640C4F9AE02/8A54B9326F0C11EF866A7A83C4F9AE02.roa
Signing time: Tue 10 Sep 2024 00:35:12 +0000
ROA not before: Tue 10 Sep 2024 00:35:12 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 4826
IP address blocks: 160.30.95.0/24 maxlen: 24
160.187.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21 (0x15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912B75A
Validity
Not Before: Sep 10 00:35:12 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66df9440-37aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:41:d7:88:59:e6:46:eb:54:f0:1f:34:25:9c:
c1:e1:b7:24:df:42:f9:93:8c:4c:3b:0c:44:a0:77:
ee:a1:59:96:06:28:08:91:30:56:23:78:5b:9c:ff:
2c:a0:bc:e5:a6:2e:0c:8c:9e:fd:e0:cc:9e:1d:bd:
0e:3c:5d:60:c6:db:a3:e1:1e:82:a2:e5:70:29:67:
31:cb:b8:6c:ba:80:9d:56:d8:2a:cb:05:84:2e:67:
96:ce:31:ac:56:14:45:ce:3c:23:af:08:09:f5:9b:
f0:ee:63:e2:54:fc:ab:b0:30:c7:84:af:31:f5:dd:
d9:f9:8d:f0:66:0d:8e:03:a4:ef:cd:28:6b:b9:59:
5b:fc:63:f1:ff:8a:9f:8d:48:3d:2c:f1:c7:2c:70:
bc:5d:e9:95:11:d3:c6:1f:8e:9a:3c:55:ec:1c:25:
37:bc:bc:49:8c:e7:ca:1b:5e:2a:13:d6:0b:36:50:
51:6e:a9:30:4a:08:d2:5f:3c:68:75:8c:95:03:e8:
3c:bc:17:e6:9a:87:68:fb:39:6b:41:2d:61:5c:9e:
5c:ee:9c:21:21:0b:65:a9:b2:62:22:61:ed:46:4e:
ee:c4:87:c6:8a:b2:2a:b3:c8:63:b6:6d:b3:72:d4:
00:6b:d8:c2:77:a3:fd:7a:87:99:fd:49:0c:b8:fb:
e4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:25:F1:98:41:FC:70:24:9C:BB:C1:FE:6F:3C:37:44:49:C7:7E:63
X509v3 Authority Key Identifier:
keyid:55:77:0F:63:A0:E6:5F:4C:2F:C9:6A:F1:98:BC:57:84:DC:E7:8A:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912B75A/12D30FD85B9A11EF82027640C4F9AE02/VXcPY6DmX0wvyWrxmLxXhNznikY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXcPY6DmX0wvyWrxmLxXhNznikY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B75A/12D30FD85B9A11EF82027640C4F9AE02/8A54B9326F0C11EF866A7A83C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.95.0/24
160.187.24.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:df:a7:01:16:45:ea:0c:e3:4f:60:d5:a2:9e:f8:44:1f:e1:
e6:ff:cf:de:59:d1:d1:3a:90:0e:af:3c:f8:a5:fb:80:ea:d5:
ef:16:87:65:c2:7d:2e:ce:15:c4:87:12:94:2e:e6:0c:a1:35:
76:3f:b6:93:c2:e3:49:3f:70:da:d7:76:50:08:ae:55:06:0f:
48:0b:f1:1f:ad:dd:1a:29:96:8c:d3:3d:b5:2e:9e:81:ed:15:
cc:8b:2a:c9:63:6d:dc:9d:b8:5f:48:be:01:1a:7c:02:89:2e:
84:43:a0:0b:54:23:cb:18:a9:ab:3e:35:3f:47:5f:ff:5d:17:
9a:be:e4:42:7c:02:75:25:85:ec:3d:df:f9:91:cb:a9:e1:ed:
ac:b1:8f:79:32:b5:c0:42:92:26:68:52:a9:10:1a:1a:89:da:
1b:ab:77:d6:03:07:83:a3:76:da:7c:1b:ee:ef:6c:9e:16:52:
30:59:bc:e3:05:bf:a3:61:e2:97:9f:13:e7:bb:f9:d2:53:f8:
65:33:ae:3f:49:30:cd:b1:07:7e:3c:f5:7b:40:2d:c3:46:5a:
0b:47:19:30:5d:93:7e:64:04:f3:de:7b:19:d1:40:72:bb:26:
45:37:4c:d1:5c:86:db:c5:be:b6:41:5d:d5:35:6c:d1:35:1b:
bf:be:6f:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:13:25 2025 by rpki-client