Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EA40/4906F2A880F011EDAAE48F7BC4F9AE02/1627927480FB11ED9B35954DC4F9AE02.roa
File: 1627927480FB11ED9B35954DC4F9AE02.roa (raw, json)
Hash identifier: +CsA0CDqSBwMJvpMmI/eW+RyBWeqQP2KL9IRV7AipG4=
Subject key identifier: 68:1C:26:BD:BD:EF:C3:29:3D:90:24:44:22:88:82:D8:79:9E:51:3D
Certificate issuer: /CN=A919EA40/serialNumber=B6CA74E0175D67E1AEBE86BFE38C5C898F262B8C
Certificate serial: 0171
Authority key identifier: B6:CA:74:E0:17:5D:67:E1:AE:BE:86:BF:E3:8C:5C:89:8F:26:2B:8C
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tsp04BddZ-Guvoa_44xciY8mK4w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919EA40/4906F2A880F011EDAAE48F7BC4F9AE02/1627927480FB11ED9B35954DC4F9AE02.roa
Signing time: Fri 29 Nov 2024 02:35:57 +0000
ROA not before: Fri 29 Nov 2024 02:35:57 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 7575
IP address blocks: 192.94.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 369 (0x171)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919EA40
Validity
Not Before: Nov 29 02:35:57 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=6749288d-8171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b1:0b:4a:8a:7b:35:ff:b1:ea:e8:26:fe:66:
3b:3f:78:9c:7b:49:82:14:b5:9c:d4:61:45:fd:d9:
ce:cf:ee:f9:53:9b:ee:ad:22:97:af:dd:20:84:9e:
4b:43:97:e5:4a:2d:eb:d9:aa:d5:c7:12:14:d1:6b:
f3:e5:4d:64:d5:24:18:d7:a3:6d:9b:12:b2:58:82:
50:e8:aa:06:57:8c:91:6b:51:58:80:63:56:48:4a:
5a:de:99:43:77:68:ab:31:05:b4:e2:f3:7e:17:a3:
b1:58:e9:51:c5:80:37:40:12:bb:36:ec:79:e5:7d:
9d:9b:21:34:40:da:92:d5:28:4d:6e:eb:0b:90:32:
fd:6b:d1:4d:da:d6:61:11:3b:fc:38:c5:82:a6:fc:
dc:85:a7:53:3a:fe:69:9f:aa:cc:1f:50:23:a5:66:
46:91:04:fd:ae:bd:d2:bf:a5:88:8a:02:7f:92:a8:
bd:37:70:3c:4a:20:fd:e8:f5:4c:ba:7e:e4:42:5c:
86:c3:74:5a:08:99:a9:7f:3b:8f:a4:7d:be:af:ca:
9f:44:51:84:5d:78:95:41:63:93:39:7f:86:40:a7:
60:73:37:ed:de:7b:6d:70:e8:fb:32:d5:e1:ef:3d:
4a:55:06:61:49:5a:fd:0a:05:37:45:96:ed:9d:f7:
00:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:1C:26:BD:BD:EF:C3:29:3D:90:24:44:22:88:82:D8:79:9E:51:3D
X509v3 Authority Key Identifier:
keyid:B6:CA:74:E0:17:5D:67:E1:AE:BE:86:BF:E3:8C:5C:89:8F:26:2B:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919EA40/4906F2A880F011EDAAE48F7BC4F9AE02/tsp04BddZ-Guvoa_44xciY8mK4w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tsp04BddZ-Guvoa_44xciY8mK4w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EA40/4906F2A880F011EDAAE48F7BC4F9AE02/1627927480FB11ED9B35954DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.94.208.0/24
Signature Algorithm: sha256WithRSAEncryption
78:8e:31:6c:a6:b8:21:0d:81:e1:89:bb:be:a5:06:08:0b:91:
4f:b2:6d:ea:11:7b:d0:d6:69:a5:bc:11:58:6c:60:62:9e:0c:
6b:46:c4:ab:20:33:97:1c:57:c5:14:9f:3e:aa:86:9d:6c:bf:
5d:ed:93:e0:34:bf:d4:14:07:dd:42:aa:d3:cf:f6:cc:28:77:
42:64:1b:2a:32:00:be:51:b8:95:6d:ec:09:32:22:4b:7e:2d:
76:00:63:2d:b3:4a:15:df:bc:d7:6e:bf:1a:52:09:0c:27:09:
a1:8e:65:1a:f1:81:8c:af:da:3d:d8:5f:f9:d4:8d:6e:21:ca:
1a:c6:ee:7c:06:d2:93:fa:8b:e9:71:7a:66:f7:d1:09:b9:26:
03:3c:b1:38:38:eb:df:2e:7a:f8:6f:40:9a:2d:bb:6e:e1:e0:
3d:59:5e:29:a8:f4:9a:85:73:f5:89:2a:4d:51:0a:54:ec:90:
46:ac:16:8b:ab:62:cb:56:62:83:63:da:93:e2:7a:b7:8f:d8:
ab:3a:e6:a2:cb:f2:02:2c:4c:f3:e7:72:97:7c:07:1c:18:64:
50:cb:cf:66:c4:2b:a6:ba:23:87:70:14:26:a6:74:0c:45:f4:
5d:c3:b0:77:37:22:7c:ab:ea:8c:f1:1b:70:e1:31:d8:ad:84:
d8:69:c3:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:51:45 2025 by rpki-client