Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E2CDF1C0E50211EFB6F78B2DC4F9AE02.roa
File: E2CDF1C0E50211EFB6F78B2DC4F9AE02.roa (raw, json)
Hash identifier: gF4/WZkJzR7giS8b0EnnhG5xtwtpzv8tgRqoLQizEu8=
Subject key identifier: 67:AF:64:3C:31:55:9C:3C:04:64:5C:AE:A8:3B:AF:CA:ED:09:21:6E
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 498A
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E2CDF1C0E50211EFB6F78B2DC4F9AE02.roa
Signing time: Fri 07 Feb 2025 03:23:23 +0000
ROA not before: Fri 07 Feb 2025 03:23:23 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 152955
IP address blocks: 2001:df4:1240::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18826 (0x498a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A
Validity
Not Before: Feb 7 03:23:23 2025 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=67a57cab-bcf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ea:72:d6:0f:96:5a:01:e0:29:51:a4:6e:0c:
ba:c7:b0:25:56:3b:85:a9:a7:68:dd:96:4d:b4:a7:
e3:e7:08:48:83:ac:fd:a3:a1:8a:af:f6:8a:a3:69:
62:f0:be:79:c8:9a:86:20:f4:48:fe:46:ef:dc:7f:
04:59:da:d9:25:83:c8:87:63:06:b7:c5:f7:48:55:
3c:36:4c:09:20:de:1c:d8:d6:a3:d9:58:80:8a:d5:
01:cc:f3:7b:d6:38:af:9f:5e:bb:58:16:ca:e9:09:
e7:46:3b:83:04:ad:d7:86:84:b9:06:45:80:46:a2:
f9:fe:00:1c:5b:bd:2d:70:42:65:64:76:ad:bc:e2:
c4:99:0d:e9:93:53:05:4a:3d:24:57:ea:ae:8e:b1:
75:37:c4:14:ff:a7:73:43:63:41:1e:c4:4b:01:16:
7e:94:54:6b:d1:46:07:c6:f1:d4:c1:07:85:ff:f5:
3c:25:aa:61:c9:39:32:10:16:59:00:64:9d:e6:01:
6b:9c:8a:99:27:4b:79:bf:89:0c:a1:fc:8e:36:4b:
82:65:6c:af:ee:43:38:ea:70:0e:9a:11:24:c0:dd:
3c:41:e1:42:b8:87:85:f0:9c:68:ec:31:0f:dd:b9:
c5:c0:82:c8:e6:ca:00:31:f9:21:ad:50:d6:aa:2d:
9d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:AF:64:3C:31:55:9C:3C:04:64:5C:AE:A8:3B:AF:CA:ED:09:21:6E
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E2CDF1C0E50211EFB6F78B2DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:1240::/48
Signature Algorithm: sha256WithRSAEncryption
49:6d:86:ff:2a:f5:b4:e6:cc:55:69:af:67:89:c8:cf:89:ab:
87:2b:9f:ee:b2:0c:c9:c3:31:20:21:9e:66:4c:fb:a6:aa:78:
b9:ed:00:cc:27:ae:1c:81:c0:9a:ae:2f:f1:b0:61:a5:0e:65:
41:bd:b2:80:aa:6c:8d:11:57:fd:9a:e5:99:e8:a5:1a:b4:a2:
2e:22:27:a4:99:14:e4:83:c7:15:49:fd:6a:7d:14:c5:8e:67:
f2:3a:bf:4f:8f:ce:15:94:af:1a:70:d4:d6:78:b1:a5:9f:28:
d4:e6:4e:0b:55:7d:aa:eb:1a:dc:f6:b7:af:19:27:02:8f:06:
f5:90:46:82:47:74:12:c2:83:f2:44:ec:5e:14:35:8c:5e:cd:
80:42:4a:c6:2e:38:04:f5:ff:fc:77:34:4a:ef:82:1f:1c:41:
a5:6c:c3:ba:6a:1b:83:f4:fe:8e:d9:41:c4:95:f4:ae:61:7c:
eb:4b:d4:93:b9:40:cf:3c:db:d4:cb:e6:09:5d:8c:7b:7b:1a:
5d:c5:cf:60:ce:2f:52:ea:8e:c0:38:42:27:5f:a3:a7:27:7a:
aa:f4:ba:ca:d2:0b:ce:ee:38:20:fe:f2:44:44:bb:6c:db:9e:
2f:61:0d:25:9d:d8:61:69:c6:cb:b6:b3:db:52:03:09:9a:f4:
20:c0:4d:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:22:07 2025 by rpki-client