Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/A08711E2366311EEB376DC3AC4F9AE02.roa
File: A08711E2366311EEB376DC3AC4F9AE02.roa (raw, json)
Hash identifier: ekGkDDIKWLiqVV7h6ESwSg8vnFxwfp+WHxsTHsOalhs=
Subject key identifier: 1E:19:C4:A4:42:F2:72:C2:F3:60:A2:60:BD:4D:EA:D8:84:31:0E:46
Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D
Certificate serial: CB
Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/A08711E2366311EEB376DC3AC4F9AE02.roa
Signing time: Tue 25 Jun 2024 06:22:00 +0000
ROA not before: Tue 25 Jun 2024 06:22:00 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 138003
IP address blocks: 161.82.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203 (0xcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919536C
Validity
Not Before: Jun 25 06:22:00 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=667a6208-1bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a9:9c:15:39:65:f9:8c:ae:46:3b:c3:c3:94:
42:39:bc:75:ff:07:1a:20:2e:e9:66:12:cd:40:1e:
6c:77:2d:fd:3a:11:e1:48:3d:c4:2e:7a:4d:7c:74:
e9:f0:7f:7d:6a:a2:00:70:4a:1f:7c:57:e7:73:40:
e5:13:21:fb:eb:d1:77:3a:99:37:59:ec:36:6c:99:
ee:c5:d2:87:ef:10:28:65:0f:c8:a2:41:59:8d:0c:
82:67:91:27:e5:e7:19:c8:b7:65:69:35:95:db:72:
7b:a6:6a:2f:f9:25:a3:2b:e8:5d:8f:91:65:fb:96:
49:fe:cb:52:58:f6:18:ec:79:06:cc:5a:b9:c9:3f:
c4:45:8b:0e:a4:9a:f4:9f:41:f2:cc:bd:bf:65:75:
72:f7:de:02:7d:a8:d5:9f:d6:60:9c:5a:1d:8c:c8:
a9:48:0c:a9:63:a2:f8:a2:39:44:50:05:87:0c:c3:
84:3a:91:86:d2:c4:7c:0b:b9:3a:b2:f6:41:1b:b2:
e7:97:17:b0:19:16:5d:c2:57:7b:8a:e2:97:99:a0:
4c:a0:fd:dc:4c:30:2d:89:92:ac:50:77:86:eb:4d:
aa:64:1e:cb:79:ee:bf:89:86:2a:e0:0e:7e:12:f6:
31:a4:8f:a6:4f:45:9c:44:f2:32:b0:f1:bd:08:57:
3b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:19:C4:A4:42:F2:72:C2:F3:60:A2:60:BD:4D:EA:D8:84:31:0E:46
X509v3 Authority Key Identifier:
keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/A08711E2366311EEB376DC3AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.82.148.0/24
Signature Algorithm: sha256WithRSAEncryption
24:25:29:34:ff:b3:fb:3e:f0:d4:3d:b6:d3:7f:23:2d:a9:b9:
d6:bf:49:2a:f4:5e:cd:d6:94:13:6c:3f:57:8d:21:94:6f:01:
b8:f2:0c:f2:0f:93:fe:9c:9d:a1:10:ad:6a:d9:51:75:9a:cd:
16:93:3c:64:5a:3e:fe:26:68:8a:d7:80:5d:90:14:44:0c:7e:
e0:ff:9b:89:34:04:82:a1:97:e7:f8:5a:51:2a:9e:38:bc:49:
4a:b9:ee:40:b0:27:20:44:a8:58:9f:95:3b:8c:79:44:e9:61:
c3:bb:a5:79:c2:ea:49:e0:9c:76:78:62:69:d2:f1:f5:97:b6:
fe:41:83:66:c7:1d:88:31:0c:f9:29:7d:80:70:76:97:b0:11:
c4:3b:27:8d:2d:6f:70:9d:35:1b:80:6d:5f:93:0e:c7:7e:79:
fd:06:af:89:18:64:fc:a5:77:89:4c:6f:4d:e6:db:db:32:40:
b9:fe:dc:44:bd:c9:7c:32:60:33:d2:43:64:fc:63:c4:4f:b5:
c4:d0:ac:e5:d3:4d:03:94:c9:b8:a7:c6:d7:47:19:2d:30:bd:
a1:e8:8f:7d:7d:d8:16:02:5a:da:1a:49:34:b3:1f:13:09:3a:
98:c1:51:2e:56:79:cd:2c:db:6d:54:04:44:ed:a5:41:22:bd:
37:3f:2f:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:18:26 2025 by rpki-client