Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/0B8725CCF78311EF91B13914C4F9AE02.roa
File: 0B8725CCF78311EF91B13914C4F9AE02.roa (raw, json)
Hash identifier: FzFTIO9/+5N4+jvzII19nog08hCnW/N3LSLttA7TPlU=
Subject key identifier: CD:C5:06:03:09:C3:12:B5:4C:CB:01:17:4C:9E:BB:88:D5:5F:76:B3
Certificate issuer: /CN=A9175648/serialNumber=2C1C07D151271969E13E1CFD161B1F60770E290D
Certificate serial: 3D
Authority key identifier: 2C:1C:07:D1:51:27:19:69:E1:3E:1C:FD:16:1B:1F:60:77:0E:29:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/0B8725CCF78311EF91B13914C4F9AE02.roa
Signing time: Wed 05 Mar 2025 17:48:11 +0000
ROA not before: Wed 05 Mar 2025 17:48:11 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 141385
IP address blocks: 163.61.16.0/23 maxlen: 23
163.61.16.0/24 maxlen: 24
2001:df5:c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61 (0x3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9175648
Validity
Not Before: Mar 5 17:48:11 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67c88e5b-8875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b4:18:fb:a3:60:f1:59:82:54:32:93:27:31:
00:76:c1:d2:d6:af:7a:3d:3f:1b:dd:e2:4f:47:c5:
18:ed:67:00:4b:29:68:d2:f9:f9:17:14:6a:da:ed:
5f:f6:10:cc:29:e5:6f:a0:8a:03:a2:6c:90:86:f6:
e4:c0:80:f4:54:ec:7b:72:f8:19:53:57:fb:89:bb:
d2:57:38:ad:dc:8b:ea:a1:44:92:99:47:12:88:0b:
b7:4e:aa:82:16:93:77:f4:bb:89:85:44:c5:8b:81:
39:c4:14:e7:d8:cc:96:15:9f:10:cf:38:4c:d0:d0:
a2:b8:41:3f:f6:2c:25:50:a8:c2:a3:dd:91:28:6c:
7a:d2:9f:f1:d7:47:7d:06:d5:fb:8c:e2:33:19:94:
bd:b8:b2:32:b9:ca:37:27:8d:27:d4:b0:01:e8:48:
a1:f7:db:e1:7c:be:54:51:c3:99:03:e5:fc:c5:39:
a3:5e:0a:66:ef:55:8e:c1:37:62:1e:09:20:0a:e2:
30:bd:55:95:3f:55:3c:33:f8:a1:46:f3:f7:ec:fc:
59:5d:ed:cf:99:26:1d:9f:93:1a:b2:9a:a7:0e:6e:
55:bd:29:14:82:21:c0:a7:37:09:06:91:0c:21:ea:
4d:82:bb:72:ca:ec:0d:d4:1a:78:9e:73:37:f8:a1:
8c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C5:06:03:09:C3:12:B5:4C:CB:01:17:4C:9E:BB:88:D5:5F:76:B3
X509v3 Authority Key Identifier:
keyid:2C:1C:07:D1:51:27:19:69:E1:3E:1C:FD:16:1B:1F:60:77:0E:29:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/0B8725CCF78311EF91B13914C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.61.16.0/23
IPv6:
2001:df5:c0::/48
Signature Algorithm: sha256WithRSAEncryption
8c:b0:e8:b8:c0:c8:d5:7c:a9:ac:67:a3:96:53:ba:90:8d:a2:
b8:ad:bc:f2:4a:b5:ae:35:32:fb:1f:8b:54:1a:f5:aa:bc:80:
54:17:74:dd:7c:5e:f1:6b:5c:c3:36:e8:cb:7c:73:2a:9f:40:
6e:30:3c:05:01:e0:ad:50:82:ad:4b:de:e3:cc:4d:2b:cc:f4:
a7:10:32:eb:d8:eb:83:29:8e:31:0a:d5:71:43:1d:64:90:87:
ec:63:b0:02:5b:bd:1a:f2:2a:b1:8b:06:63:6c:bd:66:72:54:
b3:8d:0f:4c:95:e0:42:fc:43:2d:69:6d:a0:b7:8b:41:3c:93:
93:bb:15:d1:67:32:76:9b:57:a9:ef:72:6e:6b:81:2f:f0:22:
1a:e5:f0:6e:4c:94:8c:a8:1d:5e:56:9b:d5:99:8a:1a:77:66:
f4:de:83:84:f6:9c:6c:66:f5:83:95:45:82:3d:6b:34:ea:cc:
ff:10:a3:52:33:55:20:20:9a:bb:8b:af:96:da:11:a8:7e:21:
ff:6b:08:18:6c:2a:15:52:54:a7:25:05:6c:7d:70:8e:a3:82:
93:1f:50:20:a2:41:ac:a0:a7:52:17:67:f1:94:27:7c:dd:66:
9e:13:cd:ef:98:48:f3:42:b7:83:7a:10:4e:2c:23:8f:2a:64:
0f:91:52:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:48:11 2025 by rpki-client