Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/76CBE6E64EA911EC9C441B57C4F9AE02.roa
File: 76CBE6E64EA911EC9C441B57C4F9AE02.roa (raw, json)
Hash identifier: qDu3ckUf42T+K1h4hb8jskWrXz9aQrQsD4n3Jm13c1Q=
Subject key identifier: EF:64:39:C0:FD:FF:F6:D7:AF:0F:05:93:9F:5C:85:20:26:41:78:EF
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 465A
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/76CBE6E64EA911EC9C441B57C4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:36:03 +0000
ROA not before: Thu 05 Sep 2024 03:36:03 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 45554
IP address blocks: 202.47.142.0/24 maxlen: 24
2001:dc8:6000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18010 (0x465a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Sep 5 03:36:03 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d92723-b0b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:69:8d:25:52:7d:1a:64:55:85:35:60:f4:8a:
7e:d0:e0:d6:a2:7f:8a:e6:07:69:f2:2b:5d:1c:99:
b2:2a:ac:25:bc:ff:30:69:c6:3e:d0:58:65:4f:96:
06:c3:55:65:da:8e:2a:4d:43:fa:28:d4:d6:f3:f5:
b1:ef:c0:4f:c3:0d:2c:a0:ee:94:45:5b:a5:7e:05:
98:33:2b:d4:b1:1a:ff:35:82:bc:33:77:11:92:45:
cc:46:54:f8:93:a4:2a:9c:d3:41:b7:b9:d3:be:a7:
6b:dd:66:f7:d4:bf:64:6e:c0:6e:40:d2:fc:9d:97:
d2:db:b6:ea:4c:28:78:ce:44:87:ef:a1:c1:b8:e0:
0e:c3:62:c5:c2:c8:91:a7:2c:ee:e7:08:e3:a2:d0:
4e:37:da:2e:a3:39:25:0d:c3:45:cc:01:f9:68:fe:
9c:39:56:eb:72:7c:b3:1a:b1:59:e6:db:b6:74:c3:
19:b1:16:3c:86:12:f7:b4:32:06:8e:1a:54:9c:d9:
7b:5b:48:c7:c0:98:40:09:5b:bf:ae:06:07:1c:46:
56:b2:39:f0:91:6e:10:d3:69:65:d4:88:4c:40:96:
d9:37:66:03:e6:11:0e:b7:29:7f:05:4f:cd:45:56:
8e:85:3b:57:6e:0d:2e:5f:5b:d8:a3:ff:3a:01:3a:
88:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:64:39:C0:FD:FF:F6:D7:AF:0F:05:93:9F:5C:85:20:26:41:78:EF
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/76CBE6E64EA911EC9C441B57C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.47.142.0/24
IPv6:
2001:dc8:6000::/48
Signature Algorithm: sha256WithRSAEncryption
88:fd:7a:2c:89:ab:01:26:f0:64:21:ca:0b:dd:5e:77:5d:67:
98:a2:57:58:39:9d:37:5c:71:5e:d0:6c:28:82:28:2d:d2:04:
36:23:81:73:d8:a4:0e:f8:fb:f8:80:a5:88:59:4f:5d:2a:6b:
39:e1:1d:e0:20:2c:a5:3e:76:23:82:50:a3:e6:a9:11:20:7b:
43:4c:ea:ad:f0:2d:19:66:7c:f6:97:b9:35:eb:4c:ee:db:fc:
15:2e:ce:06:5b:b2:2a:a4:70:95:a1:77:3f:2a:a7:7e:0c:85:
32:d6:1d:da:d8:9f:a6:16:92:96:52:62:bd:24:c3:0a:36:dd:
8c:d4:25:04:e4:80:e3:f7:2b:fc:87:ae:aa:6d:0d:20:df:fc:
92:b2:60:98:e0:f4:e3:2f:30:43:23:bd:1b:b4:6d:dc:9d:e5:
ab:d5:8b:a8:bd:fd:20:c4:a0:3b:38:87:4d:dd:ba:83:94:5a:
a7:d0:1e:3e:d1:09:3f:fc:13:db:2f:be:b1:ac:95:d8:e8:ff:
e1:3b:65:d1:d8:5c:9d:dc:cf:ce:91:ee:f3:b4:19:7d:ea:ae:
b2:8c:0a:3f:02:93:d5:c1:0f:3b:ed:cd:d8:8a:f6:88:28:c4:
6a:ef:61:90:9a:b6:d3:b6:53:ea:7f:b7:9e:cb:54:fe:0f:32:
67:a8:d0:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:35:48 2025 by rpki-client