Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/312806545DA611ECB01B733BC4F9AE02.roa
File: 312806545DA611ECB01B733BC4F9AE02.roa (raw, json)
Hash identifier: DzAwb3WY6QAYwTO9wBEBq85S1a98ddCfq+Akjp4UYDw=
Subject key identifier: CF:67:41:8C:C3:CE:BB:D2:9E:78:26:97:39:43:72:EE:48:DF:5B:6F
Certificate issuer: /CN=A916B8B3/serialNumber=F2C052E0C573AB0580EB06F3F90025646E6F32CF
Certificate serial: 0F68
Authority key identifier: F2:C0:52:E0:C5:73:AB:05:80:EB:06:F3:F9:00:25:64:6E:6F:32:CF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8sBS4MVzqwWA6wbz-QAlZG5vMs8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/312806545DA611ECB01B733BC4F9AE02.roa
Signing time: Sat 30 Nov 2024 18:06:24 +0000
ROA not before: Sat 30 Nov 2024 18:06:24 +0000
ROA not after: Sun 30 Mar 2025 00:00:00 +0000
asID: 134823
IP address blocks: 2403:a040:f852::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3944 (0xf68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916B8B3
Validity
Not Before: Nov 30 18:06:24 2024 GMT
Not After : Mar 30 00:00:00 2025 GMT
Subject: CN=674b5420-78d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f0:8e:fc:7a:3a:5c:4c:c4:b9:a7:3b:33:03:
b3:45:04:4c:33:2d:e8:68:46:42:47:69:e7:87:89:
81:b2:a0:72:06:6b:4f:e8:dd:35:89:3e:3a:b0:f4:
30:47:6d:4b:b7:ae:bb:85:b6:f1:a0:3c:67:49:62:
98:ec:a9:8c:0a:8d:64:af:c1:ad:d7:35:23:b9:06:
e4:cb:75:c1:7c:31:a4:b3:68:a9:84:70:d3:b8:b5:
30:88:2c:27:9c:93:20:5a:64:26:c0:74:79:cb:35:
7a:b4:9b:ee:bd:bb:7d:de:ad:a5:f6:99:1b:58:c4:
aa:0b:b5:bb:be:98:dc:85:a0:b0:2a:4a:16:19:45:
f3:e3:bf:77:b2:16:9d:eb:d5:e5:ab:ae:51:ed:0c:
f3:6c:ce:c5:a6:cd:bc:66:54:c0:3f:1f:af:c8:61:
f8:19:b2:73:80:b1:f0:a2:2c:d7:3b:47:f0:b6:eb:
2b:69:26:56:3e:e6:57:4d:2d:85:b4:17:79:fd:5d:
57:bb:1b:4a:79:fd:e5:83:a3:f5:ac:bb:f2:1b:c8:
b2:36:aa:90:92:a8:dd:3c:17:b1:f1:03:12:03:bb:
a2:95:8d:b0:74:f7:28:2c:74:ba:b1:34:85:4a:65:
df:d4:91:38:3d:ba:d4:8d:41:cb:1c:dd:0e:5f:bd:
2e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:67:41:8C:C3:CE:BB:D2:9E:78:26:97:39:43:72:EE:48:DF:5B:6F
X509v3 Authority Key Identifier:
keyid:F2:C0:52:E0:C5:73:AB:05:80:EB:06:F3:F9:00:25:64:6E:6F:32:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8sBS4MVzqwWA6wbz-QAlZG5vMs8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/312806545DA611ECB01B733BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:a040:f852::/48
Signature Algorithm: sha256WithRSAEncryption
6f:14:8f:07:87:98:81:ef:1e:d8:4a:78:c9:fe:04:20:12:de:
66:a5:2b:28:97:97:b0:db:2a:32:4b:26:78:45:2a:44:5a:e8:
bf:04:ee:e3:e0:4a:fe:8b:de:75:9d:6d:fc:54:71:d1:bd:31:
a7:63:a1:76:e6:83:4b:d8:af:f9:0a:24:45:ee:43:2d:94:ee:
fe:fa:10:09:f5:bd:c6:01:f2:d9:9b:d6:c6:a3:70:43:87:91:
1e:34:6d:00:55:dd:56:5b:4e:17:25:02:0c:ae:b7:9c:cb:08:
43:ec:91:d0:b7:eb:12:d6:c1:12:3e:15:ee:a8:e4:7f:32:be:
3a:2c:3a:70:64:f3:40:cb:8a:0d:01:c0:44:fe:ee:e5:5d:3c:
62:80:58:6a:8c:7d:61:34:47:3b:2c:a1:d1:2a:d9:49:f2:00:
ec:ce:74:be:d1:e0:e8:20:e7:c8:03:3c:70:84:7f:0a:d4:b8:
0a:8b:54:07:fe:43:b9:cc:87:50:04:3a:33:fa:91:57:c6:5d:
b1:54:fa:63:3a:7e:b5:2e:35:4c:0c:d7:54:70:51:70:69:e4:
64:ed:bc:92:b5:f1:bf:26:33:8c:8e:b2:cf:3a:35:67:11:02:
20:d7:f0:6d:33:6d:79:2c:95:eb:eb:63:86:f2:ae:6f:91:07:
44:bb:ac:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:09:12 2025 by rpki-client