Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/AB251844D3C211EF8ACCE481C4F9AE02.roa
File: AB251844D3C211EF8ACCE481C4F9AE02.roa (raw, json)
Hash identifier: um1BBV2sXJv+c/T4lw036YRyTEbQBI29YZXMQq1CgZY=
Subject key identifier: 4C:8E:86:E8:DE:A5:BB:DD:F5:B9:F2:90:ED:C4:2B:FD:87:DE:D1:32
Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12
Certificate serial: 04ED
Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/AB251844D3C211EF8ACCE481C4F9AE02.roa
Signing time: Thu 16 Jan 2025 04:30:52 +0000
ROA not before: Thu 16 Jan 2025 04:30:52 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 153505
IP address blocks: 161.248.98.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1261 (0x4ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Jan 16 04:30:52 2025 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=67888b7c-8f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:cf:35:63:6d:f6:6d:67:32:3b:49:1a:34:ec:
45:d1:d1:cd:97:26:ea:95:a6:98:64:fa:8f:ed:57:
2e:6c:86:8f:92:47:5a:5d:d4:e0:50:40:6c:df:57:
bc:18:78:2c:2f:a6:38:4c:b3:00:68:b3:4b:d3:b1:
19:eb:d2:b8:6d:be:75:96:9d:01:3a:88:23:3f:b9:
4a:e8:5c:79:2d:11:b7:c4:e0:d0:71:98:7f:19:4c:
20:74:d6:a7:2b:05:9b:1a:ee:67:ad:06:f3:ce:e2:
8f:6b:a0:1c:92:3f:c0:ba:58:88:bb:64:6a:7c:7d:
39:6f:e7:84:8c:bd:b8:91:08:05:7a:c1:c2:32:c1:
23:c7:5b:4b:11:e2:da:ba:a3:92:5f:58:1f:16:52:
c2:4d:e0:13:0b:43:99:1f:c0:f9:78:33:29:59:ab:
3d:ad:0f:0f:ba:8e:65:bd:e2:42:d8:0d:45:68:06:
8d:2f:28:1a:e9:68:41:25:03:e6:ab:e9:4a:9b:bc:
bd:b3:93:24:02:60:96:46:06:94:11:31:2b:0f:a4:
c0:f1:fd:b5:ef:0a:07:40:8e:45:15:82:6d:98:5e:
ca:d7:00:7a:2f:bd:35:11:38:1a:27:ff:22:c7:23:
89:07:51:51:e9:54:fb:f0:5d:42:02:b8:fb:b3:9c:
02:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:8E:86:E8:DE:A5:BB:DD:F5:B9:F2:90:ED:C4:2B:FD:87:DE:D1:32
X509v3 Authority Key Identifier:
keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/AB251844D3C211EF8ACCE481C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.98.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:5d:6f:ce:22:52:2e:4e:f0:19:00:5f:24:ac:76:28:9a:41:
e2:89:7c:87:a0:d6:97:a0:bd:ee:77:93:f5:22:48:b9:a5:a1:
0f:f2:e1:19:0a:c0:4d:4c:1c:56:3c:4c:38:49:e1:ef:90:55:
1b:45:07:c5:f7:52:6b:44:aa:a1:87:c6:9a:b2:4d:bf:5a:4a:
16:41:77:c0:00:d3:8b:88:93:2f:ba:4b:97:25:f9:eb:ce:c7:
8d:f9:8c:97:68:24:c7:3e:7e:ca:b9:63:10:11:c1:ee:e6:43:
d6:83:53:89:75:fd:77:c5:6c:3c:b2:3a:5b:82:4c:86:57:37:
6a:fe:a4:40:a2:09:34:90:f8:b9:2c:00:6a:d9:6a:9e:50:32:
1c:6e:a9:b2:40:2c:ec:6d:80:20:09:74:9e:6d:0b:fb:b7:de:
79:83:1f:6f:ca:31:41:35:30:42:d1:8a:94:0c:dc:db:be:2b:
15:c5:3c:d4:71:85:51:54:b7:1d:4f:10:3b:ee:37:61:11:91:
ca:a6:73:d9:63:5c:c8:c1:d7:e8:31:47:8c:11:88:4c:b5:b1:
99:a0:7c:40:94:bd:2b:db:bf:40:7a:17:cd:f2:03:52:60:6f:
19:10:e0:2f:c7:c5:d1:ac:82:8f:da:79:51:67:c3:a1:02:14:
7e:ae:73:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:42:29 2025 by rpki-client