Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/1FD94540C98111EEB0FF0E1CC4F9AE02.roa
File: 1FD94540C98111EEB0FF0E1CC4F9AE02.roa (raw, json)
Hash identifier: lIFyxj9aC+iXtbhSkjDwBiYtiotkp3LnBhX8Lz9S9NA=
Subject key identifier: A1:93:F9:70:AA:7A:79:EA:60:AB:4F:4A:61:9E:B1:C7:35:19:4E:6F
Certificate issuer: /CN=A91B0BAB/serialNumber=81F467ADC317D16348AF43304B0441443A1FE32C
Certificate serial: 060B
Authority key identifier: 81:F4:67:AD:C3:17:D1:63:48:AF:43:30:4B:04:41:44:3A:1F:E3:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gfRnrcMX0WNIr0MwSwRBRDof4yw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/1FD94540C98111EEB0FF0E1CC4F9AE02.roa
Signing time: Mon 12 Feb 2024 08:31:32 +0000
ROA not before: Mon 12 Feb 2024 08:31:32 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 138185
IP address blocks: 2403:7e40::/32 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1547 (0x60b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B0BAB
Validity
Not Before: Feb 12 08:31:32 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=65c9d764-91c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8a:67:5a:59:1b:75:71:57:b6:51:70:0c:57:
28:1d:83:14:85:a6:44:f7:f5:ab:e7:33:41:1f:7a:
ed:23:d8:9f:44:aa:06:60:12:65:c8:7f:4e:5c:62:
69:3b:e8:bd:01:a0:8d:b3:17:bf:e0:0f:73:b0:63:
2b:c1:5e:d4:55:00:42:98:b5:b0:2e:57:87:a6:38:
be:4f:73:e4:07:8b:4b:43:05:86:81:a1:a8:81:01:
ef:c9:12:1f:4c:34:81:b2:b8:59:9e:84:1a:c2:50:
f7:93:00:62:90:e9:37:cb:65:ef:a0:b3:12:d3:36:
51:5b:2b:c4:8d:ab:b8:76:03:fe:32:09:59:26:32:
85:4e:20:96:15:10:b5:52:d6:f2:f1:76:b0:9c:89:
df:76:7a:ba:1a:7a:85:cc:4f:e1:5b:3e:41:ec:be:
a2:3f:52:48:7a:12:f9:d8:59:73:d3:60:40:0c:73:
76:58:5c:a9:25:72:77:16:13:0c:8f:12:a0:bf:bc:
10:09:fd:87:bc:84:41:64:e6:91:25:bf:ba:dd:37:
a2:0c:ec:97:02:a2:65:7c:bc:44:f8:79:92:b9:a5:
25:94:f4:8d:ba:a7:51:38:af:7f:03:f7:f2:8b:63:
50:50:7d:00:69:9c:55:60:19:7a:b5:f4:69:cb:8c:
37:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:93:F9:70:AA:7A:79:EA:60:AB:4F:4A:61:9E:B1:C7:35:19:4E:6F
X509v3 Authority Key Identifier:
keyid:81:F4:67:AD:C3:17:D1:63:48:AF:43:30:4B:04:41:44:3A:1F:E3:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/gfRnrcMX0WNIr0MwSwRBRDof4yw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gfRnrcMX0WNIr0MwSwRBRDof4yw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/1FD94540C98111EEB0FF0E1CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:7e40::/32
Signature Algorithm: sha256WithRSAEncryption
11:68:b5:7a:be:b5:23:4e:7f:36:e0:9b:f0:e1:c8:86:23:66:
7b:91:64:c0:a5:48:a7:cc:4f:c7:5f:5c:87:e5:59:ad:b1:67:
5c:b7:d1:2b:af:bb:12:27:27:cf:1d:ea:57:76:1b:76:54:66:
40:aa:7f:c1:26:49:85:46:00:b0:ee:ed:ef:9d:e5:8d:20:93:
c6:03:a7:12:19:3a:37:91:51:09:4c:bb:6c:d5:c4:ae:4d:ea:
76:b0:63:68:bf:d0:4d:35:c7:1b:de:69:db:e4:14:16:e8:8d:
e1:da:8e:72:e3:14:ca:7c:f1:2d:eb:61:0e:01:58:c7:77:09:
9a:b9:2a:42:ad:8a:b9:2d:50:1d:80:3b:b4:f8:6a:a2:06:00:
3d:83:ed:55:c9:d0:ad:0a:a5:f3:40:46:b2:de:ad:eb:75:83:
3b:69:23:6e:dc:48:be:6b:61:03:5b:29:24:1d:0b:15:c3:4b:
31:50:7c:6f:d1:89:fb:0b:ea:a1:15:49:4c:1a:34:63:e0:75:
c8:b1:81:09:81:47:03:a1:48:d8:87:15:fd:f7:62:ca:17:7c:
44:80:6a:ff:e6:b0:17:5e:b7:4b:aa:50:c0:a9:e4:60:c9:79:
75:80:aa:3b:9e:1d:58:b3:74:74:33:0d:cb:99:7f:63:96:22:
6d:18:de:bc
-----BEGIN CERTIFICATE-----
MIIFcjCCBFqgAwIBAgICBgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjBCQUIxMTAvBgNVBAUTKDgxRjQ2N0FEQzMxN0QxNjM0OEFGNDMzMDRCMDQ0MTQ0
M0ExRkUzMkMwHhcNMjQwMjEyMDgzMTMyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NWM5ZDc2NC05MWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyIpnWlkbdXFXtlFwDFcoHYMUhaZE9/Wr5zNBH3rtI9ifRKoGYBJlyH9OXGJp
O+i9AaCNsxe/4A9zsGMrwV7UVQBCmLWwLleHpji+T3PkB4tLQwWGgaGogQHvyRIf
TDSBsrhZnoQawlD3kwBikOk3y2XvoLMS0zZRWyvEjau4dgP+MglZJjKFTiCWFRC1
Utby8XawnInfdnq6GnqFzE/hWz5B7L6iP1JIehL52Flz02BADHN2WFypJXJ3FhMM
jxKgv7wQCf2HvIRBZOaRJb+63TeiDOyXAqJlfLxE+HmSuaUllPSNuqdROK9/A/fy
i2NQUH0AaZxVYBl6tfRpy4w3uQIDAQABo4ICljCCApIwHQYDVR0OBBYEFKGT+XCq
ennqYKtPSmGescc1GU5vMB8GA1UdIwQYMBaAFIH0Z63DF9FjSK9DMEsEQUQ6H+Ms
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEJBQi82MDJDNjY1NDdC
MTUxMUVBQTVBNEE4NjlDNEY5QUUwMi9nZlJucmNNWDBXTklyME13U3dSQlJEb2Y0
eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2dmUm5yY01YMFdOSXIwTXdTd1JCUkRvZjR5dy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QjBCQUIvNjAyQzY2NTQ3QjE1MTFFQUE1QTRBODY5QzRGOUFFMDIvMUZEOTQ1NDBD
OTgxMTFFRUIwRkYwRTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E
ETAPMA0EAgACMAcDBQAkA35AMA0GCSqGSIb3DQEBCwUAA4IBAQARaLV6vrUjTn82
4Jvw4ciGI2Z7kWTApUinzE/HX1yH5VmtsWdct9Err7sSJyfPHepXdht2VGZAqn/B
JkmFRgCw7u3vneWNIJPGA6cSGTo3kVEJTLts1cSuTep2sGNov9BNNccb3mnb5BQW
6I3h2o5y4xTKfPEt62EOAVjHdwmauSpCrYq5LVAdgDu0+GqiBgA9g+1VydCtCqXz
QEay3q3rdYM7aSNu3Ei+a2EDWykkHQsVw0sxUHxv0Yn7C+qhFUlMGjRj4HXIsYEJ
gUcDoUjYhxX992LKF3xEgGr/5rAXXrdLqlDAqeRgyXl1gKo7nh1Ys3R0Mw3LmX9j
liJtGN68
-----END CERTIFICATE-----
Generated at Wed Apr 9 01:13:41 2025 by rpki-client