Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/AB6989BCEADF11ECADC46036C4F9AE02.roa
File: AB6989BCEADF11ECADC46036C4F9AE02.roa (raw, json)
Hash identifier: yhsDMBW1yOy0Jq2CHVI1ejI5EG1pZPsxlabs6cbZ8HE=
Subject key identifier: CA:89:1F:5D:49:51:55:EA:AC:00:B9:EC:44:D5:5F:FF:60:B4:72:4F
Certificate issuer: /CN=A917C4E7/serialNumber=A5C4A0AB0E5EE13B14845439B1AE4FB34468C7B9
Certificate serial: 02B3
Authority key identifier: A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/AB6989BCEADF11ECADC46036C4F9AE02.roa
Signing time: Thu 13 Mar 2025 01:27:06 +0000
ROA not before: Thu 13 Mar 2025 01:27:06 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 212238
IP address blocks: 36.255.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 691 (0x2b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C4E7
Validity
Not Before: Mar 13 01:27:06 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67d2346a-c934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:58:73:93:09:1f:28:a8:25:76:41:1a:9a:78:
b5:ea:4e:a0:87:a8:b3:04:16:d5:2a:e0:0f:39:59:
8d:f5:e9:89:e3:ee:71:1f:10:0b:a1:46:a1:f1:96:
e2:d4:52:bd:b2:bf:52:73:40:d8:fd:6b:d8:a9:9e:
df:8f:d4:76:40:90:8e:43:9e:8e:c8:7e:22:7c:e9:
f5:88:18:c0:47:ff:12:c3:b7:0c:2f:ca:14:4e:6d:
a5:cd:27:21:f9:21:f8:04:94:8e:8b:2a:07:7d:d6:
f7:af:47:71:35:86:67:04:ca:21:2e:48:88:66:9b:
f2:93:7f:56:4e:11:ae:aa:e7:71:db:aa:3e:9c:b3:
9b:c9:c6:5b:82:7a:c1:da:0c:4b:c5:cb:ed:8f:fb:
83:91:6f:04:3a:2e:dd:84:26:9f:1e:c8:ca:05:40:
16:be:52:bb:8e:2f:27:1a:00:16:34:f6:00:b1:4d:
66:11:ec:a6:e8:41:f7:00:d8:cb:c8:7c:da:95:e3:
a2:b1:40:9d:29:f8:66:d0:1b:79:38:94:c6:2c:cb:
1f:e6:47:2a:99:90:89:56:36:ee:a0:27:c0:c8:18:
76:fa:c4:8e:da:4b:41:64:11:8c:ac:7b:3f:19:92:
f2:6f:5f:8d:ff:22:89:83:75:91:70:73:1c:2d:5b:
97:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:89:1F:5D:49:51:55:EA:AC:00:B9:EC:44:D5:5F:FF:60:B4:72:4F
X509v3 Authority Key Identifier:
keyid:A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/AB6989BCEADF11ECADC46036C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.255.99.0/24
Signature Algorithm: sha256WithRSAEncryption
06:92:37:87:56:72:13:b0:d5:a5:75:5f:7e:7f:81:eb:c2:a1:
91:92:9e:63:87:5e:80:8e:3b:1a:87:c3:a0:aa:8e:a4:66:8b:
ae:78:be:93:95:6b:a3:b5:ff:6e:62:25:ba:d5:2b:6c:74:40:
a9:8d:87:01:58:32:5f:90:c4:c5:c2:87:5a:d9:2b:83:a0:41:
04:71:f8:ab:3c:04:5d:20:ff:83:e6:1b:14:bb:5c:e0:3f:f7:
d0:16:8f:49:92:b6:34:25:91:b8:70:00:53:f8:17:f1:aa:5b:
06:3d:ea:97:77:ac:6d:48:ba:3c:59:2d:98:89:07:b3:a8:a8:
01:4d:b4:42:b7:c8:b4:ce:91:40:cd:7e:9e:f1:1e:48:72:80:
3d:6d:0d:85:c0:06:c8:6a:09:59:90:74:e9:58:1f:17:a9:41:
c7:b7:19:03:df:19:a9:2d:c6:d6:7b:43:53:a7:1d:61:63:8c:
9d:55:f0:e0:e5:48:b2:ae:5c:94:73:67:ab:75:34:fb:05:ea:
73:d9:40:ff:9f:f5:21:ae:17:23:7d:44:62:ed:d4:98:9c:cc:
3e:ad:5f:ed:b5:c9:30:62:90:48:78:64:bb:80:23:0f:d1:47:
70:fc:e3:4b:56:13:92:7b:1e:34:55:5c:d8:73:a4:26:3f:c9:
81:6b:b3:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:55:33 2025 by rpki-client