Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/0F106C42E9BF11EB9287F045C4F9AE02.roa
File: 0F106C42E9BF11EB9287F045C4F9AE02.roa (raw, json)
Hash identifier: RvNzl03JDVUp48sMZXLXZA1zzsN0lAMQGmHnXdeMUAw=
Subject key identifier: A6:0A:D5:F9:B5:EA:EE:4C:6A:6A:E5:77:3A:43:E3:C9:24:CA:08:5E
Certificate issuer: /CN=A9183B33/serialNumber=E3CD262607CB7434C9898F7AECF6E7C36A34F693
Certificate serial: 0541
Authority key identifier: E3:CD:26:26:07:CB:74:34:C9:89:8F:7A:EC:F6:E7:C3:6A:34:F6:93
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/480mJgfLdDTJiY967Pbnw2o09pM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/0F106C42E9BF11EB9287F045C4F9AE02.roa
Signing time: Tue 18 Mar 2025 22:43:59 +0000
ROA not before: Tue 18 Mar 2025 22:43:59 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 9408
IP address blocks: 192.69.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1345 (0x541)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9183B33
Validity
Not Before: Mar 18 22:43:59 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67d9f72e-7cfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c0:a8:a3:fb:e4:22:ec:f4:52:c1:c5:ed:bf:
92:97:79:69:30:32:ca:99:40:72:af:94:31:0e:b8:
09:ae:11:41:6a:12:ea:98:8d:1d:e2:60:db:e1:fa:
84:19:83:11:d7:d7:69:74:96:c1:be:9d:71:e4:d4:
fd:24:fd:ad:05:27:de:31:a6:d3:a7:71:61:9e:17:
b9:95:ca:d5:c1:1e:72:36:07:79:f8:18:84:e6:68:
7f:84:53:5e:02:3e:36:92:db:2a:61:53:62:68:10:
9d:2f:e4:14:50:ba:9d:7f:dc:a7:5f:cd:d7:8f:cb:
4e:50:fc:3b:69:00:10:45:b7:f9:af:72:f5:ff:6b:
af:de:13:4e:cb:e5:1a:c9:4e:4d:b7:1f:19:fc:e1:
1b:ce:cf:0d:c2:e1:83:43:ea:79:9b:ef:d5:f3:f0:
46:03:e0:d7:2f:3d:cb:63:86:21:2f:e7:28:46:55:
95:eb:e4:e6:46:5d:bb:dd:af:12:21:c6:fd:25:1f:
32:3e:c9:16:3d:35:1a:3f:8e:61:f6:ea:04:3f:a8:
4e:21:47:49:9c:e0:d6:4b:7b:fa:f7:64:af:61:02:
4a:5f:ee:45:a8:f9:49:78:5c:58:66:ed:50:5a:ac:
84:4d:02:e6:bb:61:1d:1a:50:4d:88:b5:64:6e:fb:
60:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:0A:D5:F9:B5:EA:EE:4C:6A:6A:E5:77:3A:43:E3:C9:24:CA:08:5E
X509v3 Authority Key Identifier:
keyid:E3:CD:26:26:07:CB:74:34:C9:89:8F:7A:EC:F6:E7:C3:6A:34:F6:93
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/480mJgfLdDTJiY967Pbnw2o09pM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/480mJgfLdDTJiY967Pbnw2o09pM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/0F106C42E9BF11EB9287F045C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.69.116.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:e6:b7:50:5e:18:12:ba:a4:c6:bd:1d:db:33:fb:37:b2:4c:
23:d9:0c:a1:08:cd:5a:5d:5a:cc:e6:c4:27:7b:ec:cf:04:a2:
24:39:98:57:80:c3:cb:fd:7c:73:e1:c0:f3:ca:15:1e:62:e5:
d6:b3:36:11:a7:54:7b:fd:d6:6d:fb:51:59:cf:15:dd:59:96:
a9:e5:ab:94:9d:de:3e:b3:8d:db:4b:39:08:f9:64:22:c9:27:
0d:27:85:6b:bb:cf:b0:6f:05:52:7b:55:02:06:2e:52:c1:fd:
f0:f2:e4:a9:b5:ae:26:93:ee:80:23:89:7f:c5:ce:81:6a:e8:
ab:17:b5:f4:6d:e7:99:bb:1f:e0:36:53:3f:9e:7d:28:2f:50:
50:22:4b:1c:4d:a3:32:1d:6f:c2:ba:10:ba:11:5e:de:93:42:
fd:60:20:ab:4c:ab:81:a5:9f:fd:bc:f4:3c:e7:df:b3:ac:8d:
6d:f0:9e:d1:85:17:db:e6:df:9e:6f:a9:59:2e:bf:d3:f2:7a:
21:3d:06:af:59:75:e7:cc:32:e1:47:aa:53:9d:bf:b1:97:1a:
5d:58:35:c8:fe:7d:49:fe:dc:25:d2:cb:32:51:12:4b:1f:8a:
77:e3:52:9e:86:94:9d:bc:22:bb:e2:0a:46:81:e3:fa:ed:78:
15:cc:35:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:24:26 2025 by rpki-client