Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/0849E902C9F311EFA5078871C4F9AE02.roa
File: 0849E902C9F311EFA5078871C4F9AE02.roa (raw, json)
Hash identifier: PyYZollofnQb0fPe9xYQw9RO8ZJkPUDPsC1qVYOrCSE=
Subject key identifier: EF:D5:AF:7C:08:43:45:C4:38:DA:3B:27:5B:B6:8F:A0:A0:C6:02:F8
Certificate issuer: /CN=A917315B/serialNumber=196F92773293E4954B4D97A5D37AC820A745C2E0
Certificate serial: 02C4
Authority key identifier: 19:6F:92:77:32:93:E4:95:4B:4D:97:A5:D3:7A:C8:20:A7:45:C2:E0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW-SdzKT5JVLTZel03rIIKdFwuA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/0849E902C9F311EFA5078871C4F9AE02.roa
Signing time: Fri 03 Jan 2025 16:51:53 +0000
ROA not before: Fri 03 Jan 2025 16:51:53 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 208171
IP address blocks: 2001:df0:d840::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 708 (0x2c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917315B
Validity
Not Before: Jan 3 16:51:53 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=677815a8-a158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:80:a4:9f:44:1c:1d:75:10:56:96:db:e3:e1:
d1:d6:76:6e:0c:9f:f7:5e:26:34:60:d6:b0:48:db:
ec:c1:85:aa:82:92:01:60:67:fc:e6:6b:71:b2:79:
2b:06:c1:72:e7:ba:d1:96:a8:d3:a5:6d:87:2f:48:
87:be:6e:83:24:36:d7:27:19:4a:54:99:b7:35:5e:
2f:67:50:9c:98:d3:6a:c6:b7:9c:8d:0f:7b:7e:ab:
59:8d:c5:6d:6e:49:22:41:31:d9:fc:45:6d:71:ff:
47:08:10:38:88:c9:4f:d3:6b:de:16:e0:1c:45:7b:
f0:54:47:fc:d3:a7:a3:2c:72:b9:1f:86:5d:95:dd:
a9:4d:19:09:9e:3d:de:5c:07:89:52:9f:f4:47:db:
83:ea:e8:73:3e:0d:ea:9a:d6:bb:56:6d:a2:65:d1:
98:da:f2:01:2c:82:83:c7:9d:c6:64:d9:20:08:d9:
dc:ff:a9:02:e4:92:14:2e:a2:4f:db:54:81:47:71:
07:40:37:01:1f:17:09:80:89:03:c3:be:31:33:24:
16:be:18:35:d3:5e:b0:99:89:c1:02:b0:d4:87:aa:
06:f9:da:e6:0a:f6:9b:f7:64:06:ad:01:c8:32:7d:
45:00:9b:83:22:b7:6c:e2:f6:68:6a:b4:6f:3c:4b:
99:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:D5:AF:7C:08:43:45:C4:38:DA:3B:27:5B:B6:8F:A0:A0:C6:02:F8
X509v3 Authority Key Identifier:
keyid:19:6F:92:77:32:93:E4:95:4B:4D:97:A5:D3:7A:C8:20:A7:45:C2:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/GW-SdzKT5JVLTZel03rIIKdFwuA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW-SdzKT5JVLTZel03rIIKdFwuA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/0849E902C9F311EFA5078871C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:d840::/48
Signature Algorithm: sha256WithRSAEncryption
9e:10:69:72:05:10:73:ac:a9:86:97:fa:ab:97:80:2f:59:f4:
a5:9e:b4:0c:1b:fa:5a:a9:54:81:67:e2:99:f8:4a:47:7e:56:
04:97:d8:55:4c:54:43:72:de:e3:6e:eb:88:d9:bd:80:24:b3:
c8:6d:eb:10:30:3a:53:d3:36:87:29:18:fa:eb:ba:6d:97:43:
f9:73:06:1a:40:37:d3:68:08:51:73:b8:cf:ed:62:b5:7a:8e:
63:3d:53:3a:b1:db:33:8e:c2:57:9c:8e:c8:21:00:21:33:04:
a6:8c:33:3c:5e:64:b9:52:72:a7:f6:be:8a:e0:ee:57:d5:55:
7f:11:48:ab:ea:61:95:99:d5:a6:1f:6b:81:96:14:f6:83:02:
47:94:ef:32:e1:14:d4:0c:a0:68:d5:82:f3:bf:37:df:7a:b6:
92:57:d1:35:81:28:7f:01:f2:09:9c:fe:3d:42:08:f8:ee:d9:
cc:a0:ce:7f:8d:7d:04:e9:df:03:f6:1a:5f:f9:c5:d9:a0:ab:
27:68:39:b5:7a:84:ef:b5:9b:ac:32:ed:91:de:e7:e6:fd:b5:
96:56:f7:a3:3b:c7:f0:45:86:fa:11:2f:11:7e:7b:28:d1:25:
22:14:80:64:85:67:a5:3e:5c:bc:ff:db:34:e9:23:4b:fb:0e:
7f:21:72:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:12:23 2025 by rpki-client