Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1033/378FDDAE554211EBA3CC727EC4F9AE02/F87F8298554311EBAAB65382C4F9AE02.roa
File: F87F8298554311EBAAB65382C4F9AE02.roa (raw, json)
Hash identifier: MAjBjHq25tUzReWQ1rF0NI56VYERQs/LZrZBQC23acU=
Subject key identifier: 72:E0:6A:52:7A:E7:7D:0E:26:84:DF:05:BC:35:A6:B0:EE:BB:2E:E3
Certificate issuer: /CN=A91B1033/serialNumber=D86114972E30CE9C16058AD59FDBF6988D083919
Certificate serial: 0619
Authority key identifier: D8:61:14:97:2E:30:CE:9C:16:05:8A:D5:9F:DB:F6:98:8D:08:39:19
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2GEUly4wzpwWBYrVn9v2mI0IORk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B1033/378FDDAE554211EBA3CC727EC4F9AE02/F87F8298554311EBAAB65382C4F9AE02.roa
Signing time: Thu 23 May 2024 00:03:23 +0000
ROA not before: Thu 23 May 2024 00:03:23 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 1221
IP address blocks: 202.74.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1561 (0x619)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B1033
Validity
Not Before: May 23 00:03:23 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=664e87ca-1c1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f6:78:a2:f5:72:5a:04:40:8c:0f:06:31:8a:
a9:63:2f:f9:d2:99:21:8f:e5:20:77:d9:fb:1a:d9:
a0:79:17:39:17:9a:92:c2:29:ec:b8:80:dc:ab:c2:
f9:32:5b:b4:cf:a7:94:2b:a7:44:a0:5c:a5:41:c1:
3c:b4:3b:42:59:46:a2:cd:60:7b:c3:ac:be:1d:f6:
22:41:9d:11:c0:45:73:e1:c7:3f:60:21:0f:8f:fc:
db:6a:16:a5:d6:da:81:f3:2d:f2:d5:d9:82:1b:4f:
d5:c6:44:d0:d3:c3:22:3b:fc:99:30:26:9c:46:b2:
6b:c7:bc:f3:d1:94:80:ce:21:b8:2d:9d:97:fa:f9:
54:e6:cb:79:63:90:32:fc:74:a3:f2:cd:4d:5f:34:
10:14:da:ef:28:9e:d1:fe:80:26:f3:fc:c3:77:98:
7d:ad:bb:da:e6:6b:79:2b:5d:97:82:52:1e:f8:92:
d8:7a:10:b2:2c:29:56:f9:7f:61:5d:57:d5:69:8c:
c6:bc:9e:94:8a:1e:11:1c:23:fa:ee:3a:8b:c8:f8:
5b:2b:7b:e0:94:9a:e9:1d:10:f1:6b:78:ce:7b:3d:
6f:87:61:4d:17:ea:1c:a8:5d:d6:9b:4a:60:06:1b:
5c:85:53:6a:75:05:3f:42:68:14:f0:96:f7:a9:9a:
d9:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:E0:6A:52:7A:E7:7D:0E:26:84:DF:05:BC:35:A6:B0:EE:BB:2E:E3
X509v3 Authority Key Identifier:
keyid:D8:61:14:97:2E:30:CE:9C:16:05:8A:D5:9F:DB:F6:98:8D:08:39:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B1033/378FDDAE554211EBA3CC727EC4F9AE02/2GEUly4wzpwWBYrVn9v2mI0IORk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2GEUly4wzpwWBYrVn9v2mI0IORk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1033/378FDDAE554211EBA3CC727EC4F9AE02/F87F8298554311EBAAB65382C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.74.252.0/24
Signature Algorithm: sha256WithRSAEncryption
18:23:5f:5f:2d:5e:08:2e:1c:75:70:73:2b:0a:6d:26:73:ba:
f3:39:79:bc:14:2b:c3:d6:ec:5c:c1:2a:46:e0:29:b1:55:31:
b8:de:d7:95:74:62:72:5a:c0:8d:07:78:8c:13:08:5f:af:b9:
ee:50:2f:25:2f:3e:22:29:34:94:19:b6:de:7c:03:89:6d:35:
ce:c7:d1:fe:3d:13:5b:70:51:c6:98:7d:5a:68:55:7d:51:73:
76:52:ab:7a:ce:d7:92:0c:12:38:ac:08:f0:74:59:3e:94:e0:
57:aa:13:40:58:06:46:0e:40:a1:c8:d1:53:c5:d0:50:9e:98:
eb:52:e9:35:61:86:30:2a:f6:66:4f:1e:40:04:8e:b0:40:91:
b3:73:6a:a9:cc:f8:bf:eb:22:09:21:f3:6b:d6:70:48:1c:0b:
6f:95:fa:6e:65:82:3b:f2:e4:20:20:ef:fb:2d:72:c7:a9:f4:
03:86:04:a5:31:93:96:44:bc:76:5c:7e:69:2f:e7:ba:c4:e7:
96:6b:24:87:5f:a7:97:fe:01:a6:b4:cc:6e:3d:7f:49:47:be:
84:7b:e7:0b:cf:36:55:bc:eb:80:10:c7:2d:a6:6f:a9:9c:42:
e3:bd:35:4f:ad:ee:a2:21:94:d8:9d:cb:e1:bf:7f:02:8d:45:
9a:5a:63:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:45:21 2025 by rpki-client