Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7ED94E1CDB2F11EF8C68334DC4F9AE02.roa
File: 7ED94E1CDB2F11EF8C68334DC4F9AE02.roa (raw, json)
Hash identifier: C8Gj0awN04mb9XBsZvcvzZ3jbb8xRnoL3KuuPR7u9Xw=
Subject key identifier: F6:24:F8:16:C1:76:67:8A:FA:46:4C:FD:A8:B9:BB:C8:85:51:47:00
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4977
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7ED94E1CDB2F11EF8C68334DC4F9AE02.roa
Signing time: Sat 25 Jan 2025 15:17:31 +0000
ROA not before: Sat 25 Jan 2025 15:17:31 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 153536
IP address blocks: 2001:df4:e8c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18807 (0x4977)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Jan 25 15:17:31 2025 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=6795008b-e615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:01:b8:e8:64:25:1d:3e:61:e5:f8:a9:40:17:
c9:af:c6:27:cf:74:69:b9:e6:7e:70:93:4b:c2:14:
50:a3:7d:c7:fa:9d:6c:96:8a:00:0b:05:c0:2a:0d:
9c:f5:d6:04:2e:b6:8b:e2:9c:b4:b6:fe:d4:2f:fb:
aa:a4:e6:87:e5:26:b1:2d:df:60:56:87:cf:80:47:
69:d1:af:79:64:70:b8:5c:b2:b5:46:f1:44:15:c8:
a4:43:b7:25:7a:3c:ff:44:4b:ec:c3:0f:b9:e0:a3:
46:98:43:9e:34:a1:91:b0:f6:cc:f4:fb:9d:6d:2f:
41:09:50:e9:6c:0a:80:85:fc:66:eb:41:36:dc:eb:
d3:a4:45:59:a9:fb:ff:e6:d4:86:da:35:0c:7a:b8:
3d:af:f7:da:28:50:88:39:cb:b3:89:3e:6b:92:97:
dd:62:fa:62:68:e8:d0:ea:61:b8:09:03:2e:5c:84:
93:02:8b:98:12:66:66:23:61:60:90:c3:f3:2f:7b:
46:74:c4:6e:f0:15:b8:dd:19:b8:5b:e9:40:4e:ed:
57:96:13:78:3e:9b:46:62:0c:bf:1a:de:13:c5:8d:
40:ad:8a:51:0e:61:c9:bc:16:ac:e3:a2:30:4b:9d:
9a:26:17:48:75:c4:23:06:93:e0:12:ac:64:bf:79:
fd:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:24:F8:16:C1:76:67:8A:FA:46:4C:FD:A8:B9:BB:C8:85:51:47:00
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7ED94E1CDB2F11EF8C68334DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:e8c0::/48
Signature Algorithm: sha256WithRSAEncryption
14:da:a5:99:6a:90:72:15:bc:c3:18:65:d1:b2:72:fc:62:5e:
d1:27:a5:0f:ba:b9:29:fb:6d:09:62:10:6f:a0:a3:9c:db:a2:
63:78:fa:14:cd:a7:b4:97:80:60:40:cd:ef:dc:7d:32:a6:a1:
5f:37:2b:fd:97:ce:f2:c5:c0:af:0d:0b:5f:ef:37:54:e7:7c:
a1:4d:04:ca:e2:18:7c:06:37:e3:c6:e6:ad:e8:b2:7e:ed:f4:
f4:33:54:30:88:a9:db:2b:eb:1a:4c:90:47:1c:d5:2e:0b:c4:
6a:35:44:fb:68:5b:0b:6f:ea:78:5b:e1:8c:94:4b:51:0d:61:
49:c3:d6:ac:ed:20:cf:c0:6f:d8:f3:83:5b:47:da:61:a8:25:
a1:18:05:30:5c:fb:ed:37:fb:d5:ce:ec:6a:f6:13:e3:8f:23:
e6:58:03:6c:ea:f0:62:6a:f6:9c:ef:79:83:48:42:39:a0:e8:
bb:0e:94:b4:6b:f6:dd:58:97:f7:4a:04:30:b8:11:3b:f4:7e:
a3:1d:18:79:55:12:e8:3f:a4:7f:15:12:44:70:9a:cf:b1:48:
c0:8e:33:d6:04:4d:e8:c4:ae:f8:a0:df:d4:1d:d1:53:4d:41:
58:43:0a:7b:7b:46:db:ae:59:b7:51:fd:70:d5:ad:33:70:53:
be:ac:95:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:27:55 2025 by rpki-client