Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/88252000B55C11ECA9565039C4F9AE02.roa
File: 88252000B55C11ECA9565039C4F9AE02.roa (raw, json)
Hash identifier: ROM2aBA2uOLvGraWZ2OMfhtRxZ5DusfnSKSNI9N61E8=
Subject key identifier: E8:F4:94:79:09:8A:03:8D:2E:E6:5C:96:2A:85:07:82:98:5B:0A:FF
Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420
Certificate serial: 08BE
Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/88252000B55C11ECA9565039C4F9AE02.roa
Signing time: Sun 22 Dec 2024 20:28:35 +0000
ROA not before: Sun 22 Dec 2024 20:28:35 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 132070
IP address blocks: 101.234.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2238 (0x8be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A546E
Validity
Not Before: Dec 22 20:28:35 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67687673-72dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:00:77:68:46:c9:da:ad:c3:c3:38:b2:b8:bc:
75:3f:3a:29:1d:7e:a6:b9:93:ce:e1:ac:f4:b3:33:
d4:da:f8:7b:77:2a:cb:fc:97:bd:7c:87:22:70:3f:
eb:24:4e:e6:b5:df:a7:f4:c2:77:aa:d3:7e:af:90:
87:f5:e2:cd:9a:08:f4:71:69:5f:9f:68:ee:12:ac:
e9:92:8a:8f:eb:f3:f6:ae:62:c9:ff:77:df:6d:68:
44:83:72:4b:e9:2f:3e:95:82:8e:8f:49:9d:e6:b3:
f4:ff:25:c3:ae:2e:dc:73:0d:2c:fe:92:59:25:78:
ea:4a:e1:49:a8:63:a4:b9:ad:06:ae:5e:14:c0:e9:
7c:69:2d:fe:f7:e5:2f:9a:0c:02:fd:0a:30:80:db:
9c:bb:5b:69:23:6b:bb:2d:5a:26:dc:ad:5c:45:c8:
6f:dc:d8:43:79:54:d5:41:83:21:22:27:f5:e4:2f:
ed:29:11:84:56:aa:91:b1:d7:c2:60:b9:c6:96:0c:
35:27:e5:de:64:d0:d5:ba:f4:e8:ac:41:49:ec:ee:
5b:57:19:e2:b9:26:3d:1b:a9:35:ee:84:db:ee:86:
1c:5a:e2:71:2f:33:37:50:da:61:3f:5a:ec:81:de:
8a:9f:6c:c7:4a:b3:0e:16:46:e6:29:48:1c:96:b6:
67:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:F4:94:79:09:8A:03:8D:2E:E6:5C:96:2A:85:07:82:98:5B:0A:FF
X509v3 Authority Key Identifier:
keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/88252000B55C11ECA9565039C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
101.234.164.0/24
Signature Algorithm: sha256WithRSAEncryption
26:ca:d6:bf:da:0d:b5:36:d1:90:b5:7d:eb:b6:d2:b3:86:64:
4b:39:09:a1:49:3e:fb:24:79:07:fc:0e:3e:ec:24:2c:fa:b0:
5a:a0:ca:e0:63:c4:38:1c:2c:d8:d7:64:d6:6f:e8:c1:57:16:
dc:4f:d2:7e:85:45:df:4e:49:7a:9b:ed:c2:75:e7:07:55:82:
3a:f8:b0:18:b9:d5:02:ef:9c:ce:6a:f1:82:dc:52:84:ec:be:
63:8b:a9:e2:69:e6:15:45:53:81:b4:20:2c:40:28:3a:b9:54:
06:5a:bb:f5:54:2d:57:09:99:27:03:00:51:cd:37:0e:da:e4:
4b:25:7d:57:93:0c:03:cb:54:98:7c:9a:e5:f2:09:eb:a8:f1:
c9:52:6d:93:d7:1a:2c:13:14:36:3a:51:86:ff:4c:7c:9c:40:
d0:16:6c:2c:b1:5d:77:a2:98:11:7a:c1:6b:03:7a:a6:db:f6:
70:b6:66:a9:66:2a:40:10:8c:bf:e7:28:90:eb:27:3b:a4:f6:
ee:1a:36:6c:07:70:32:09:da:86:1d:38:04:64:f9:c6:20:1c:
4d:71:87:bc:69:b9:64:6f:83:55:f7:f0:c6:14:57:5a:65:9b:
12:64:af:56:63:58:05:b9:b7:7a:68:d4:83:24:70:45:26:29:
ac:91:ba:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:23:07 2025 by rpki-client