Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/971DDCE0B23511EF8ED1973DC4F9AE02.roa
File: 971DDCE0B23511EF8ED1973DC4F9AE02.roa (raw, json)
Hash identifier: RFGE7mJBJM7csMQLOM5NpeuAOSCWsBCYcpvU7tBAkfk=
Subject key identifier: D0:03:65:D2:F1:53:10:BC:4D:EE:0C:A2:25:0F:08:DE:98:23:5E:9E
Certificate issuer: /CN=A917315B/serialNumber=196F92773293E4954B4D97A5D37AC820A745C2E0
Certificate serial: 029A
Authority key identifier: 19:6F:92:77:32:93:E4:95:4B:4D:97:A5:D3:7A:C8:20:A7:45:C2:E0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW-SdzKT5JVLTZel03rIIKdFwuA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/971DDCE0B23511EF8ED1973DC4F9AE02.roa
Signing time: Wed 04 Dec 2024 11:47:51 +0000
ROA not before: Wed 04 Dec 2024 11:47:51 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 208171
IP address blocks: 2001:df0:d840::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 666 (0x29a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917315B
Validity
Not Before: Dec 4 11:47:51 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=67504167-d051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:72:ff:5d:c8:95:ca:f6:5a:c4:36:db:06:46:
d4:95:e9:16:56:07:ae:9c:24:17:5f:2f:58:e0:00:
9a:7c:77:ca:bc:da:8b:59:01:e6:b6:5a:a8:a5:50:
89:5c:9c:1e:bd:31:a7:82:bc:73:89:18:70:82:36:
64:84:45:b5:35:0f:93:80:e0:46:74:56:52:c3:74:
01:78:3b:04:70:97:21:32:a5:8f:d0:d7:7f:7a:29:
ba:bb:9a:7a:f5:5c:f0:c2:6e:ac:ab:0f:7e:bb:da:
95:50:a4:48:f2:1d:04:42:3d:f6:a4:10:a1:90:c3:
83:03:e7:1f:1e:90:14:dc:b6:ad:91:07:99:c9:a0:
cd:1b:5e:b0:2e:2b:65:2f:45:97:b8:98:36:88:53:
64:fa:c8:64:b5:2c:92:6e:42:f2:29:ac:a9:56:6c:
c3:58:c7:83:4e:58:3b:56:e4:46:77:2b:15:96:47:
e6:4b:a7:0a:ef:97:fa:e2:fa:3a:3a:e7:e6:c7:cf:
2b:32:ba:e2:78:2f:78:47:73:07:15:f6:6e:1b:f5:
f8:62:b1:74:01:23:f5:e9:e4:17:c9:82:0f:7d:4b:
2c:c5:85:10:08:c8:f8:86:3b:7c:39:68:d5:07:7a:
a7:79:2b:92:62:b4:6a:7e:ff:ae:61:58:0f:cf:b5:
9d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:03:65:D2:F1:53:10:BC:4D:EE:0C:A2:25:0F:08:DE:98:23:5E:9E
X509v3 Authority Key Identifier:
keyid:19:6F:92:77:32:93:E4:95:4B:4D:97:A5:D3:7A:C8:20:A7:45:C2:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/GW-SdzKT5JVLTZel03rIIKdFwuA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW-SdzKT5JVLTZel03rIIKdFwuA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/971DDCE0B23511EF8ED1973DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:d840::/48
Signature Algorithm: sha256WithRSAEncryption
0b:5e:41:11:66:f2:60:b0:ea:db:14:32:57:3f:1f:39:f8:8f:
7e:96:91:e9:79:6d:ff:d2:e6:8f:67:95:f7:33:c6:c0:3b:a4:
70:b0:2b:06:9e:b6:39:8b:02:15:fa:1e:e8:58:96:ad:e8:25:
92:5b:7f:ae:92:21:44:96:f2:61:53:1f:47:15:34:d9:fc:11:
40:2f:07:34:74:b3:b8:7c:d5:2f:6b:5d:79:82:19:e5:52:62:
18:96:07:aa:6b:5d:d5:a8:72:f5:42:cd:28:46:d0:a6:a8:e5:
94:8f:be:e0:23:9f:c0:ff:ce:b2:a2:b3:21:10:48:dd:18:8c:
8d:00:59:71:e8:92:e9:46:f6:0e:fc:bb:32:ee:81:4c:85:83:
01:31:40:35:c7:cf:3a:ba:f0:32:ef:cb:0a:74:a1:5b:85:c9:
06:e6:7b:58:93:1f:5b:2e:18:e6:4e:50:9b:c9:68:5e:fe:0e:
26:4e:4f:8c:52:33:38:97:40:89:e0:f2:0a:ca:fe:fd:44:18:
80:9d:71:70:00:4d:65:44:a4:3f:c6:40:60:c1:64:d6:46:de:
2b:42:99:50:62:2b:21:c7:dd:7f:37:56:1c:3e:f1:fb:95:f1:
07:fe:da:72:37:ce:f5:39:b3:3a:ba:e6:1b:70:fe:5b:d3:63:
dd:76:e7:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:12:19 2025 by rpki-client