Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156B5D/98FD1A42F1C011EFA5716B54C4F9AE02/41554C78F1C111EFA67D2459C4F9AE02.roa
File: 41554C78F1C111EFA67D2459C4F9AE02.roa (raw, json)
Hash identifier: waSBCEbcYlolsmBXhQe06r7v3tswwJfsDI5vXs6FVRA=
Subject key identifier: A4:16:D7:21:1D:92:DF:0D:1A:28:78:55:B6:4A:22:83:3E:A2:FB:99
Certificate issuer: /CN=A9156B5D/serialNumber=0FE06324F1787C8F214FBEAE67D886D22F816702
Certificate serial: 02
Authority key identifier: 0F:E0:63:24:F1:78:7C:8F:21:4F:BE:AE:67:D8:86:D2:2F:81:67:02
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-BjJPF4fI8hT76uZ9iG0i-BZwI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9156B5D/98FD1A42F1C011EFA5716B54C4F9AE02/41554C78F1C111EFA67D2459C4F9AE02.roa
Signing time: Sun 23 Feb 2025 08:36:20 +0000
ROA not before: Sun 23 Feb 2025 08:36:20 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 134726
IP address blocks: 163.61.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9156B5D
Validity
Not Before: Feb 23 08:36:20 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67bade04-f0ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e8:a3:81:2b:c3:d3:8b:95:55:b7:9b:88:1a:
e9:df:b6:3c:85:6e:8b:52:20:6b:4f:ff:99:5e:b1:
39:1e:17:89:d0:7f:90:64:be:db:45:b9:1b:75:62:
fc:a5:8c:29:e6:62:69:81:0a:be:af:27:75:b0:d0:
d2:d0:76:2e:24:0c:21:5c:77:fd:03:d9:9c:7b:47:
9a:56:c8:14:fb:79:d8:e1:f3:44:b1:48:c4:c2:29:
9f:e3:c3:94:82:c8:9f:5f:5b:e6:b1:eb:81:fd:e6:
d7:c3:06:d9:eb:ac:33:6b:30:88:43:2e:be:e1:fb:
28:9f:df:aa:c0:ad:83:0d:57:9b:2b:63:54:a8:9e:
14:25:c0:88:be:76:08:9b:e1:aa:c9:8c:7e:e7:f7:
e6:d3:21:49:fb:a9:81:12:ea:27:3c:df:5d:09:4c:
00:b4:6c:81:ab:80:ea:f2:05:03:b4:d9:d1:02:39:
7b:ab:cf:3c:81:1c:67:ca:35:75:71:fe:53:8e:97:
0b:36:98:15:29:a9:3d:37:d4:b3:be:17:e5:fd:2c:
fb:23:eb:65:c8:84:97:38:7f:cf:12:43:96:66:28:
6f:20:b0:6b:c3:c0:c0:4a:f7:48:61:1e:c8:25:3e:
95:7f:40:2a:73:47:a1:fa:ed:73:95:f8:b4:9c:52:
a1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:16:D7:21:1D:92:DF:0D:1A:28:78:55:B6:4A:22:83:3E:A2:FB:99
X509v3 Authority Key Identifier:
keyid:0F:E0:63:24:F1:78:7C:8F:21:4F:BE:AE:67:D8:86:D2:2F:81:67:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9156B5D/98FD1A42F1C011EFA5716B54C4F9AE02/D-BjJPF4fI8hT76uZ9iG0i-BZwI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-BjJPF4fI8hT76uZ9iG0i-BZwI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156B5D/98FD1A42F1C011EFA5716B54C4F9AE02/41554C78F1C111EFA67D2459C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.61.27.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:9e:e1:e2:31:d7:4c:7b:0f:2d:58:7c:bf:4b:39:9c:d0:bb:
6a:1d:ce:a2:07:0e:f6:eb:60:c7:81:14:29:ab:10:14:07:58:
6e:39:b3:76:d0:f8:5d:2a:f7:18:3a:82:4c:d6:6c:20:30:fa:
b1:bb:b5:fd:96:12:fb:3e:75:98:12:dc:86:b9:6b:cb:19:31:
f0:19:89:a8:b9:40:7f:f6:fc:ee:87:39:4a:26:21:af:79:f5:
f1:eb:50:72:14:dc:f2:a1:8f:11:95:aa:31:1d:bc:b3:7a:75:
1c:85:5b:04:c6:0e:23:85:71:16:6b:e7:de:32:d2:9e:69:49:
4d:cd:43:c9:a2:32:02:08:76:4b:ad:f5:00:82:50:a4:3c:58:
b6:b4:48:ea:7f:9e:e6:9f:ca:a2:eb:92:30:2a:28:ef:02:b1:
d8:2c:bc:d2:7e:20:c2:7e:1d:e8:9a:15:04:bc:ca:bd:b4:df:
2e:ef:c0:fb:79:1e:3d:98:22:52:24:3d:71:50:c0:62:96:7c:
ac:64:ea:92:02:82:33:bb:8b:aa:92:bd:9e:b8:2c:64:62:70:
e4:d0:f5:8c:b4:d3:db:1a:92:c6:8e:2e:7b:b6:d2:4d:49:02:
f1:ef:25:9a:40:66:03:a2:e6:18:75:76:5a:80:c3:33:f5:77:
83:c2:33:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 09:11:36 2025 by rpki-client