Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/297936B0088611F08C1DB151C4F9AE02.roa
File: 297936B0088611F08C1DB151C4F9AE02.roa (raw, json)
Hash identifier: sWdjYkkWrtGWB1Nl7uyPq1p0czfJ7qsVRPKrs4Csz4M=
Subject key identifier: 05:EE:E0:9D:69:9D:6C:00:E1:8A:6F:19:D2:A7:B9:A1:4A:22:59:9E
Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9
Certificate serial: 1CEE
Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/297936B0088611F08C1DB151C4F9AE02.roa
Signing time: Mon 24 Mar 2025 08:01:16 +0000
ROA not before: Mon 24 Mar 2025 08:01:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 133640
IP address blocks: 160.191.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7406 (0x1cee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Mar 24 08:01:16 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67e1114c-dd9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:11:9a:50:49:56:05:11:6a:e8:2b:28:ce:ba:
fc:87:98:eb:b6:61:c2:27:2d:83:cc:a3:78:51:e8:
82:12:22:e7:a5:06:71:ce:94:c2:66:c1:63:20:ec:
9a:eb:ea:d7:af:be:61:45:4b:7a:b6:61:83:ca:e9:
34:7f:6e:e4:54:db:99:41:5e:af:a9:c9:e3:5f:c5:
c4:96:88:11:d2:2b:fc:02:c0:b6:09:11:f3:3a:6b:
bf:bf:c3:61:2f:7e:4d:bc:3a:3a:11:b8:95:d9:9d:
d9:36:d2:fa:f1:67:42:90:35:ee:c0:8a:9e:7b:57:
41:0a:38:d8:68:14:7f:0e:44:80:59:b4:dc:65:5d:
2c:b9:b6:15:fe:f3:9a:62:77:86:97:1e:34:50:ef:
0d:6a:2a:9d:21:55:91:56:35:69:1e:e0:eb:14:4f:
bc:d1:3e:30:26:64:80:3b:b7:ca:74:ad:93:f4:5b:
d7:77:85:3d:1c:26:41:d0:97:95:76:15:ac:b2:42:
72:24:31:b3:94:03:07:ad:c4:f2:23:25:58:b5:5e:
97:2f:ab:64:be:76:80:d5:33:b8:94:b9:ce:76:86:
42:a9:96:7f:6a:b5:3f:6a:c7:1f:99:3d:31:52:db:
07:84:e6:15:a6:f7:83:ea:37:a4:50:b9:ba:ba:fe:
e3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:EE:E0:9D:69:9D:6C:00:E1:8A:6F:19:D2:A7:B9:A1:4A:22:59:9E
X509v3 Authority Key Identifier:
keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/297936B0088611F08C1DB151C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.144.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:92:80:de:87:f7:c1:b6:e7:da:98:74:09:7d:2c:6f:cb:da:
70:47:18:a2:a0:f8:a6:8b:21:1b:f7:1f:a3:57:25:30:0e:38:
ac:bd:92:d3:a4:93:57:52:51:ae:65:e3:e2:ae:ca:e2:2b:26:
2e:65:8a:b9:b4:56:2a:17:b7:aa:07:a2:cb:33:c5:0f:27:59:
2d:77:8e:17:43:19:4f:ef:11:90:b6:33:f8:97:94:53:e9:d7:
5d:9b:7b:17:5d:21:6f:63:36:fd:3c:39:2a:a4:97:69:6f:96:
8f:01:25:6e:db:d8:ef:34:bf:70:47:28:5c:e9:0f:94:9a:cb:
64:04:a8:87:6d:b8:e1:a3:2f:28:61:c3:a7:66:3e:96:85:1e:
1b:49:fa:89:c3:6e:84:6b:88:f1:50:16:7d:db:79:61:06:5e:
e3:4c:82:0b:5d:c7:15:d8:78:a1:18:ab:84:1f:12:72:09:9e:
f4:37:64:ef:93:49:02:f5:4f:17:49:bd:e3:76:64:21:6a:7c:
eb:eb:5f:9c:5e:48:87:ec:cd:f6:41:d2:7e:95:dd:5f:b3:42:
3b:f7:f1:2f:62:ea:69:3e:f4:00:ce:ec:eb:a4:a8:58:2f:31:
05:31:41:b7:89:df:c5:89:e9:86:c2:55:15:84:79:0f:d5:6d:
f8:43:a0:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 11:06:06 2025 by rpki-client