Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/03774914696211EC8A05D115C4F9AE02.roa
File: 03774914696211EC8A05D115C4F9AE02.roa (raw, json)
Hash identifier: /71jeZ/z/bjdOuocI7pJpODjcutgjWmyBXnbScV8x34=
Subject key identifier: FC:11:57:75:7A:92:40:A4:DE:4D:D0:5D:41:E9:F3:EC:EC:96:78:C5
Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099
Certificate serial: 0DBB
Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/03774914696211EC8A05D115C4F9AE02.roa
Signing time: Fri 06 Sep 2024 18:36:56 +0000
ROA not before: Fri 06 Sep 2024 18:36:56 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 147028
IP address blocks: 2405:84c0:fdfa::/47 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3515 (0xdbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4C60
Validity
Not Before: Sep 6 18:36:56 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66db4bc8-5ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e3:95:fc:c9:ff:a8:54:05:3e:33:26:17:86:
9f:6f:78:76:3c:3f:d2:c9:b9:d7:a2:4b:e9:f4:a1:
52:f2:71:13:d7:fc:f8:b6:f9:0f:c4:eb:56:25:c3:
b7:34:7f:c1:f6:3d:94:73:7c:a9:c9:25:3c:70:b0:
a1:e0:21:87:25:53:10:ad:7a:4f:45:c2:05:7c:f3:
58:01:38:72:65:72:89:f4:2d:64:4b:0f:15:f0:66:
87:0e:52:08:c9:35:48:5f:4d:8c:dc:6e:e3:72:de:
f6:da:e4:ef:a7:fe:7f:1c:e4:b8:87:ed:e7:62:1b:
b0:39:90:e5:c7:22:9b:4d:45:3a:f3:0b:b0:c9:fd:
97:47:62:64:c2:f0:da:df:42:9b:47:51:71:1e:30:
b3:45:79:04:e4:8d:f4:e1:d5:1d:2d:4f:ba:0d:9e:
c6:ac:19:24:b8:ae:37:52:6f:f3:9d:be:5a:02:f3:
82:91:eb:2d:eb:62:4f:b4:2b:d9:6c:73:9c:bb:39:
67:5f:20:06:7a:81:99:08:1c:de:b8:b6:bf:94:fd:
23:c0:e8:a6:fc:bb:c7:d6:36:9a:df:5d:41:26:77:
39:57:f3:90:41:31:3e:e9:b4:b2:68:28:eb:07:8a:
ac:50:56:54:1f:75:f9:62:f2:4d:f5:fd:8a:79:be:
90:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:11:57:75:7A:92:40:A4:DE:4D:D0:5D:41:E9:F3:EC:EC:96:78:C5
X509v3 Authority Key Identifier:
keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/03774914696211EC8A05D115C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:84c0:fdfa::/47
Signature Algorithm: sha256WithRSAEncryption
7c:37:bb:8a:e6:8d:b6:eb:5b:e0:7c:bd:af:b9:dc:ae:da:58:
62:69:07:b7:0d:03:88:bc:d2:31:35:9f:6f:0d:4e:1e:10:3e:
14:28:07:e6:ba:8f:a9:79:80:5d:22:87:cc:10:5b:79:26:81:
c0:90:82:75:18:2f:0e:30:db:e8:b9:f7:65:8d:9f:cb:0d:55:
d0:f3:da:b6:a2:a8:dd:ed:a3:06:80:20:9a:a1:54:d0:38:21:
8f:1e:dc:a1:68:6f:6e:dc:31:ef:0d:7c:35:77:6b:36:09:e6:
db:e3:0c:eb:c7:5d:94:1d:cc:a0:61:89:cb:37:40:5b:8a:29:
25:0c:ef:c0:47:ed:d8:67:b7:39:b2:5d:4e:65:c5:07:ca:2d:
f5:30:41:07:a1:7c:54:fa:f6:29:d4:ef:45:9c:ad:26:61:ed:
01:aa:34:ea:4f:4d:64:a6:f1:0b:81:c5:be:a6:09:42:36:d8:
ed:c5:0c:b6:41:a2:df:89:4a:cb:a2:c1:d3:0a:34:fa:a9:02:
37:05:e5:3f:7c:70:a7:b2:b0:28:43:a0:e3:7c:8d:5e:fc:22:
dc:eb:85:1f:93:f8:14:f0:00:06:ac:a2:b4:5d:f1:4f:50:73:
f8:5b:16:46:78:32:db:6f:c4:f2:23:77:79:31:2c:b3:49:99:
da:d1:a5:b1
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICDbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC
NzBBRjgwOTkwHhcNMjQwOTA2MTgzNjU2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmRiNGJjOC01YWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxOOV/Mn/qFQFPjMmF4afb3h2PD/SybnXokvp9KFS8nET1/z4tvkPxOtWJcO3
NH/B9j2Uc3ypySU8cLCh4CGHJVMQrXpPRcIFfPNYAThyZXKJ9C1kSw8V8GaHDlII
yTVIX02M3G7jct722uTvp/5/HOS4h+3nYhuwOZDlxyKbTUU68wuwyf2XR2JkwvDa
30KbR1FxHjCzRXkE5I304dUdLU+6DZ7GrBkkuK43Um/znb5aAvOCkest62JPtCvZ
bHOcuzlnXyAGeoGZCBzeuLa/lP0jwOim/LvH1jaa311BJnc5V/OQQTE+6bSyaCjr
B4qsUFZUH3X5YvJN9f2Keb6QtwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPwRV3V6
kkCk3k3QXUHp8+zslnjFMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4
NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn
SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvMDM3NzQ5MTQ2
OTYyMTFFQzhBMDVEMTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwEkBYTA/fowDQYJKoZIhvcNAQELBQADggEBAHw3u4rmjbbr
W+B8va+53K7aWGJpB7cNA4i80jE1n28NTh4QPhQoB+a6j6l5gF0ih8wQW3kmgcCQ
gnUYLw4w2+i592WNn8sNVdDz2raiqN3towaAIJqhVNA4IY8e3KFob27cMe8NfDV3
azYJ5tvjDOvHXZQdzKBhics3QFuKKSUM78BH7dhntzmyXU5lxQfKLfUwQQehfFT6
9inU70WcrSZh7QGqNOpPTWSm8QuBxb6mCUI22O3FDLZBot+JSsuiwdMKNPqpAjcF
5T98cKeysChDoON8jV78ItzrhR+T+BTwAAasorRd8U9Qc/hbFkZ4MttvxPIjd3kx
LLNJmdrRpbE=
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:17:11 2025 by rpki-client