Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/A2696B18D16C11EA8886BE5DC4F9AE02.roa
File: A2696B18D16C11EA8886BE5DC4F9AE02.roa (raw, json)
Hash identifier: fq/qWIdl/zMbQPXZZ52zcLgyQibFEjxrMjtOCJGOy18=
Subject key identifier: CB:0F:03:2E:44:B0:FF:F9:76:D8:F0:92:00:9A:A5:20:01:8A:05:ED
Certificate issuer: /CN=A913900D/serialNumber=C603786D55A904124E7592EED2899EF578921100
Certificate serial: 7CE5
Authority key identifier: C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/A2696B18D16C11EA8886BE5DC4F9AE02.roa
Signing time: Mon 16 Sep 2024 17:24:59 +0000
ROA not before: Mon 16 Sep 2024 17:24:59 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 140945
IP address blocks: 2402:f00:2800::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31973 (0x7ce5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913900D
Validity
Not Before: Sep 16 17:24:59 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66e869ea-f696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0e:9b:ec:d1:a2:30:ac:87:d5:fc:f4:1a:db:
5b:5f:f1:07:cd:76:49:2e:13:5f:22:68:29:53:43:
22:2e:68:66:4f:fb:fa:a1:ea:40:29:61:d6:69:fd:
ae:45:da:61:54:61:40:8d:ce:6e:9d:f6:78:a7:ba:
49:cf:3e:b8:37:14:f3:c5:17:0a:d1:5d:d7:f5:47:
0c:05:8d:39:98:15:cc:6c:27:d8:47:70:09:be:4e:
f4:50:8f:5f:10:13:19:fb:88:19:24:f9:41:83:10:
7c:8c:a8:9e:a0:a5:51:3c:1b:00:5d:3f:42:d4:12:
c4:ae:49:38:35:a1:ba:ea:cc:40:5c:a2:74:d9:01:
f4:51:0c:02:dc:30:ba:45:ce:96:ee:df:d5:04:7d:
58:5a:87:1d:e3:b6:e3:36:d8:1d:3a:ee:3d:47:ae:
f7:2c:8c:ad:1a:29:d0:98:46:f1:19:e3:52:0e:01:
9f:c0:9b:10:3c:64:f9:a1:00:da:b6:11:ba:69:d5:
e6:b9:7f:a1:9d:d9:d7:0e:ba:51:19:74:f4:61:bc:
3d:4f:90:46:94:d2:7e:79:fd:6f:ef:e5:38:17:a2:
25:8b:8a:04:06:d9:01:90:1a:9c:cf:4d:de:f3:11:
ed:83:9b:5b:5b:0b:2e:f6:a3:d5:92:b2:09:bc:85:
de:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:0F:03:2E:44:B0:FF:F9:76:D8:F0:92:00:9A:A5:20:01:8A:05:ED
X509v3 Authority Key Identifier:
keyid:C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/A2696B18D16C11EA8886BE5DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:f00:2800::/38
Signature Algorithm: sha256WithRSAEncryption
2b:77:22:9a:a4:59:fd:e2:be:7e:e3:56:0e:e8:af:84:fc:19:
f7:e0:11:97:b0:1c:ba:f8:be:62:b4:60:aa:8c:89:5a:45:d4:
28:0a:16:d7:5b:b9:23:01:4f:f9:e6:ff:79:36:96:4b:43:86:
6c:5f:e4:f4:c4:42:db:bb:d8:29:71:e6:8e:fd:2a:85:c9:20:
95:1f:36:25:46:34:27:b2:f7:fb:a6:f8:01:97:02:e6:d1:c9:
85:cc:14:22:d1:3c:7e:cf:af:99:33:6d:81:b2:17:b9:81:23:
7e:63:08:b8:31:3a:0c:ed:53:76:c4:d7:e1:82:e1:fa:ac:de:
10:6a:3a:d9:8b:38:1c:2a:e2:fa:4c:ca:2d:a8:c8:12:19:99:
5a:22:fd:73:4c:51:dc:63:01:6f:39:d2:0f:12:18:bf:1d:65:
3a:c9:c4:f4:ad:82:cf:3e:c8:d0:a5:6b:04:95:2c:74:63:3e:
6f:bc:1d:de:66:f4:0d:8a:59:c0:35:42:38:5a:7c:20:ce:be:
60:e4:af:21:2d:64:af:56:a9:ce:5a:2f:3d:34:4c:e8:cc:37:
bd:5b:41:4e:b3:bb:d9:39:1f:cd:56:80:1f:27:2d:34:10:70:
2d:12:fe:8a:63:c8:5e:c3:b2:66:17:4b:b8:bb:86:76:e7:c7:
12:22:df:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:10:23 2025 by rpki-client