Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/6198218AEB3311EEA75DE77DC4F9AE02.roa
File: 6198218AEB3311EEA75DE77DC4F9AE02.roa (raw, json)
Hash identifier: br9VY1Ap5bODWGjIwXH93XykBR4wm+eKQRXiepCLuxo=
Subject key identifier: F7:21:EC:CB:CB:C9:1C:22:3A:E0:8D:B9:52:09:57:BD:CD:B3:66:AA
Certificate issuer: /CN=A912BA82/serialNumber=AFB8FFE1E8686296B996C63AA902EA9C128F48FE
Certificate serial: C9
Authority key identifier: AF:B8:FF:E1:E8:68:62:96:B9:96:C6:3A:A9:02:EA:9C:12:8F:48:FE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7j_4ehoYpa5lsY6qQLqnBKPSP4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/6198218AEB3311EEA75DE77DC4F9AE02.roa
Signing time: Fri 07 Mar 2025 04:51:48 +0000
ROA not before: Fri 07 Mar 2025 04:51:48 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 148968
IP address blocks: 2401:76e0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201 (0xc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912BA82
Validity
Not Before: Mar 7 04:51:48 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67ca7b64-2aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:50:92:20:87:7f:e0:93:f1:b7:2e:65:f0:db:
70:8c:04:09:f9:68:32:d9:4d:b8:24:02:4c:75:8d:
32:9c:e6:a3:11:f3:d1:3a:9d:1f:c6:00:a2:66:10:
c0:b2:e6:5a:d2:78:7c:c7:08:02:b9:db:e2:96:2b:
28:07:9a:e2:8d:2e:da:e3:ca:ee:d0:88:39:7a:69:
7d:2b:84:f1:8e:5a:ab:d4:c0:3e:43:f8:be:e3:13:
ba:e5:ab:2a:9c:35:f9:3a:5a:fa:26:de:88:82:06:
a0:2e:aa:ca:ae:c0:57:12:0b:bd:38:80:c6:57:e9:
d2:26:75:76:7a:b3:93:7d:90:e1:c9:a5:bc:f3:8b:
d4:cc:ff:d6:8e:17:55:ae:27:9e:85:d0:57:7a:10:
aa:4c:4e:88:35:01:23:2c:e9:05:55:53:19:75:c5:
50:8b:24:0a:b5:1f:69:70:f3:7f:74:4b:b0:51:c9:
37:30:d3:f1:70:63:c8:b0:bf:d2:6d:f5:5a:34:b8:
8b:e4:36:78:06:ab:22:fb:b0:c3:a0:17:e7:df:88:
78:d3:9d:d9:42:bd:6c:07:4e:e7:68:68:b4:75:d6:
92:e5:eb:33:40:77:55:29:70:41:2d:5b:c0:53:01:
b7:a9:67:f0:16:4b:43:f1:a9:36:32:c4:72:28:c4:
b1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:21:EC:CB:CB:C9:1C:22:3A:E0:8D:B9:52:09:57:BD:CD:B3:66:AA
X509v3 Authority Key Identifier:
keyid:AF:B8:FF:E1:E8:68:62:96:B9:96:C6:3A:A9:02:EA:9C:12:8F:48:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/r7j_4ehoYpa5lsY6qQLqnBKPSP4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7j_4ehoYpa5lsY6qQLqnBKPSP4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/6198218AEB3311EEA75DE77DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:76e0::/32
Signature Algorithm: sha256WithRSAEncryption
a0:3f:c4:9c:18:16:35:d7:6a:09:da:1a:20:ee:2a:c5:cd:7d:
d9:5d:a3:b6:31:9c:bb:8f:95:8f:ae:2e:ca:eb:66:b1:49:3a:
d9:3c:32:b3:45:df:bc:58:20:28:35:2d:5b:ec:61:c4:fd:99:
d3:26:4b:c5:af:84:b0:ba:90:7e:8c:26:a9:2d:b8:47:3c:99:
4f:53:2a:09:32:0d:b0:72:21:23:01:f2:a9:51:5c:36:d1:24:
25:7b:b6:e8:74:32:a2:0a:8a:79:2d:0d:8d:23:a7:d3:67:bb:
63:0d:0c:aa:39:f9:c9:44:19:cb:16:ec:d8:c4:ae:66:97:ff:
b8:46:44:98:1c:9e:24:3a:43:29:3c:67:50:4f:c0:43:2d:d9:
fe:3d:b2:c7:90:f0:9d:e9:7f:20:96:50:8e:d5:e5:dd:d1:81:
dd:67:a5:79:33:34:c5:60:5c:33:3d:1a:20:ab:c5:50:2b:56:
98:7e:ec:2d:0c:d6:91:04:44:09:16:5a:cf:5b:0c:98:e5:00:
ba:4b:69:bc:41:d4:09:91:64:c9:38:33:78:51:3b:02:f9:1c:
ef:e0:c1:59:91:ab:70:e2:81:63:26:57:99:2b:75:ff:af:ca:
56:56:55:a7:0b:d7:f4:63:b7:88:db:39:20:37:17:e8:9e:be:
20:0c:6b:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:39:01 2025 by rpki-client