Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1076FF5EC69011EF9334B50FC4F9AE02.roa
File: 1076FF5EC69011EF9334B50FC4F9AE02.roa (raw, json)
Hash identifier: fqOhx9JOYOAwzf5j8nF/YB9qAyyfVLHM2FDCdvkKB1I=
Subject key identifier: 0D:AF:2D:04:DD:31:E5:02:0F:14:F8:E9:63:5C:EB:46:5F:99:76:9C
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4900
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1076FF5EC69011EF9334B50FC4F9AE02.roa
Signing time: Mon 30 Dec 2024 09:25:52 +0000
ROA not before: Mon 30 Dec 2024 09:25:52 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 152969
IP address blocks: 2001:df4:24c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18688 (0x4900)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Dec 30 09:25:52 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=67726720-7ee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e7:fd:9f:d0:ef:ee:cf:c9:7a:b6:cb:0a:aa:
48:30:e3:2a:4f:a0:bb:ea:8b:15:4a:ef:7d:12:49:
e0:1e:0e:c6:c0:2b:3a:35:d7:56:54:b8:ae:c9:ea:
22:8c:33:08:8a:80:65:a6:42:d7:6f:f9:f5:ce:6e:
fd:09:09:7a:8a:65:34:c0:1b:c7:16:a9:f5:4a:39:
e9:75:39:58:8f:b3:e1:e8:3f:e1:f4:1d:16:12:12:
cf:36:99:e9:a7:ad:f6:7e:e8:fa:bd:be:ce:83:4d:
55:ab:e4:68:e3:54:5e:a9:3b:36:68:5d:13:a3:11:
f4:26:14:72:5e:b9:01:bd:8c:08:37:22:e3:13:27:
9c:c6:76:bb:20:df:56:5e:db:e9:14:4c:a3:41:c6:
8b:b8:4e:a4:6d:cd:88:dc:dd:f3:bf:50:0b:75:b6:
2e:b5:01:d9:13:8d:13:6a:95:80:08:fe:e1:da:24:
f7:0e:ed:fd:fc:87:22:62:28:b5:09:ac:da:2c:4d:
c4:7a:85:4c:b8:c4:f7:6d:b2:a9:fe:77:da:ce:7a:
49:18:fb:a5:12:19:82:56:59:9b:72:3b:c8:d7:0b:
2c:1d:06:05:58:0e:a3:20:ea:be:d8:88:c7:c3:4d:
58:46:e9:1b:5e:e3:81:8b:14:e9:c8:e3:07:90:a9:
3c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:AF:2D:04:DD:31:E5:02:0F:14:F8:E9:63:5C:EB:46:5F:99:76:9C
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1076FF5EC69011EF9334B50FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:24c0::/48
Signature Algorithm: sha256WithRSAEncryption
60:98:03:f9:ba:88:d6:f9:9b:7d:8e:be:84:11:6a:57:1b:60:
9d:f1:ee:65:fb:7e:d9:56:24:01:a7:14:23:e0:ff:0e:59:94:
1e:aa:e0:a3:29:16:9f:4e:23:26:af:5b:c3:d0:01:05:55:fa:
fe:3f:1c:1d:9e:4f:1f:53:b4:3d:9c:22:2e:a5:5a:fe:7c:f3:
4e:3a:df:af:10:ac:f6:d1:25:95:94:e0:06:4a:f0:22:b8:29:
b6:b2:87:8d:62:bf:4d:ca:a5:21:c9:e8:33:f3:7c:3b:90:84:
7d:11:33:2c:72:e1:89:45:f3:34:75:af:83:b8:98:fe:16:fb:
b0:bb:8c:81:cf:9c:17:e3:31:c4:8f:05:91:37:fc:5a:f9:4c:
e9:ee:2d:59:55:3e:97:94:52:c7:af:cd:b5:b2:bf:e3:a5:6f:
01:e8:b5:bc:65:85:18:be:c0:8f:24:30:a2:6e:05:41:17:54:
5f:83:99:42:56:62:97:51:45:7d:ec:7b:5c:cc:32:e8:4e:d0:
b9:49:60:08:39:44:a1:ba:10:19:30:d4:2e:65:43:40:74:18:
83:b8:19:9b:a5:27:24:54:e4:c0:ff:39:11:ac:05:7a:7f:89:
69:76:7f:a8:6a:ec:94:1d:8d:a1:89:8e:01:6a:c3:b8:a4:10:
d7:1d:8c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:41:16 2025 by rpki-client