Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/E830A74E71ED11EF9D592D1AC4F9AE02.roa
File: E830A74E71ED11EF9D592D1AC4F9AE02.roa (raw, json)
Hash identifier: tag8qRB5tEUFx1QNVuAqpyg8ujg0HPWl8zfOULOO91k=
Subject key identifier: 62:8A:BD:EE:F5:F6:B5:3D:2D:02:68:37:71:30:39:29:6A:24:43:9A
Certificate issuer: /CN=A9194C67/serialNumber=22D021488AE1317FC95C74A38825254AB7926137
Certificate serial: F0
Authority key identifier: 22:D0:21:48:8A:E1:31:7F:C9:5C:74:A3:88:25:25:4A:B7:92:61:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItAhSIrhMX_JXHSjiCUlSreSYTc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/E830A74E71ED11EF9D592D1AC4F9AE02.roa
Signing time: Wed 25 Dec 2024 04:17:37 +0000
ROA not before: Wed 25 Dec 2024 04:17:37 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 149311
IP address blocks: 2001:df3:2fc0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240 (0xf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9194C67
Validity
Not Before: Dec 25 04:17:37 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=676b8761-2200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:10:18:f2:4f:1d:b5:78:73:02:a8:b3:7a:30:
d7:3a:1f:ea:78:fd:d7:4b:bf:e1:3f:a3:38:3a:8c:
b6:25:29:79:07:f9:fd:90:18:23:34:29:d4:b6:c7:
b4:2b:4f:ef:42:52:5f:f7:0f:73:ee:10:48:79:0d:
7a:fe:bd:1f:bc:f5:ef:7d:d4:a4:5f:d1:15:e2:f1:
bc:78:69:8f:9f:2c:c0:67:f4:3a:2b:8d:e1:b1:27:
35:1c:07:fc:11:ea:cb:e7:cb:75:85:2b:e4:af:81:
64:c1:2d:59:46:46:81:e4:34:3f:08:a0:82:9d:1e:
9d:c4:9a:79:e4:2d:e7:16:ba:93:4f:02:17:ae:b9:
e3:f5:7b:d4:2c:b0:8d:1c:57:1e:68:03:df:4e:e1:
b8:e1:36:49:6d:84:57:f3:5c:26:c7:9d:a9:86:66:
54:49:e2:21:64:01:ba:17:77:f5:2a:cf:c9:4a:97:
b9:f1:09:8b:54:48:74:6a:fb:01:62:4d:05:ce:2e:
0e:c2:8e:43:1b:8a:79:ef:95:39:3f:a4:6b:35:e5:
f2:03:d9:19:9f:af:99:c0:03:32:ea:20:c3:36:78:
d9:a7:3a:8d:7f:ef:2b:ef:9f:7a:0e:a1:af:6f:c6:
46:e1:b5:3c:df:bb:fd:5e:93:f2:12:4c:56:87:ee:
73:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:8A:BD:EE:F5:F6:B5:3D:2D:02:68:37:71:30:39:29:6A:24:43:9A
X509v3 Authority Key Identifier:
keyid:22:D0:21:48:8A:E1:31:7F:C9:5C:74:A3:88:25:25:4A:B7:92:61:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/ItAhSIrhMX_JXHSjiCUlSreSYTc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItAhSIrhMX_JXHSjiCUlSreSYTc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C67/C2A761908E8911EEBC286358C4F9AE02/E830A74E71ED11EF9D592D1AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:2fc0::/48
Signature Algorithm: sha256WithRSAEncryption
62:ff:77:68:a7:e9:36:2b:c6:b3:13:95:c4:7d:cc:1f:c6:ff:
d4:ee:c8:b1:0e:7a:2d:ed:81:c5:62:68:09:bc:9f:46:c9:63:
d8:40:57:47:52:45:01:53:7d:72:bf:b0:46:ad:1d:22:45:42:
b6:03:10:9c:98:bd:38:76:d6:e1:22:92:1a:0c:db:cb:a9:42:
c3:89:11:98:3e:17:d2:b7:e1:06:5b:38:46:51:a8:b3:4f:27:
b6:31:d5:2e:91:d0:05:7b:04:ec:0c:f5:61:f9:68:75:7a:00:
9c:fb:3a:58:37:55:30:67:df:56:0a:7d:20:ae:50:62:0d:5e:
6c:fa:37:4e:b3:1d:d4:59:e5:20:ea:98:84:c3:98:d1:f4:7d:
00:ab:21:9a:fe:01:0e:cf:10:47:cf:83:ae:0d:09:4e:60:f9:
e8:c3:af:55:aa:d7:b5:ec:c3:a4:6c:5d:c9:16:5e:4b:53:16:
de:c6:96:b1:e5:8f:af:8f:3d:15:c6:43:9b:fa:74:bb:e4:1c:
b1:72:bb:8e:df:ea:b4:f1:e7:dd:a8:a7:0a:eb:48:6c:a5:f5:
ed:29:22:1c:fb:3d:22:71:d8:c5:df:9e:0c:4d:67:9b:18:73:
b1:53:85:8c:e0:d4:13:7d:21:f2:c3:cf:0a:c4:45:c0:9a:25:
13:92:97:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:00:07 2025 by rpki-client