Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/0099AE56536911EE8594503BC4F9AE02.roa
File: 0099AE56536911EE8594503BC4F9AE02.roa (raw, json)
Hash identifier: AOPC9WbNcZUf3rw4IBXy2gFnwozs8jTrPTS3eOn6dJw=
Subject key identifier: B2:35:C3:38:29:1A:56:FD:83:8F:5C:AA:3C:D0:38:74:ED:22:41:17
Certificate issuer: /CN=A91C0D37/serialNumber=E4200D44AD9D6ECB6872F653A95843FB27D847A4
Certificate serial: FD
Authority key identifier: E4:20:0D:44:AD:9D:6E:CB:68:72:F6:53:A9:58:43:FB:27:D8:47:A4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/0099AE56536911EE8594503BC4F9AE02.roa
Signing time: Tue 07 Jan 2025 03:57:15 +0000
ROA not before: Tue 07 Jan 2025 03:57:15 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 4768
IP address blocks: 192.107.113.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253 (0xfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C0D37
Validity
Not Before: Jan 7 03:57:15 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=677ca61b-73b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:60:e8:64:ad:cf:d5:e3:3c:a3:75:53:34:a9:
b1:d2:a0:31:2e:78:fd:c9:9e:c4:70:d5:fe:2d:6e:
92:06:89:18:c5:76:ce:3a:c6:3e:fa:13:9f:17:54:
b7:7a:37:aa:06:35:36:17:8a:7d:52:94:b3:69:d1:
dc:23:18:00:2f:8e:c9:35:7e:79:dc:66:b9:25:97:
a4:5f:5c:9f:e6:57:4b:55:8a:1c:12:15:ec:69:dc:
11:76:d7:42:69:31:8e:7d:c6:d4:13:ec:32:fc:82:
54:53:f0:b2:7d:3b:13:43:05:d2:c6:58:da:0f:95:
8a:70:75:30:35:10:22:2d:00:35:70:95:f3:86:04:
b5:e8:e4:df:02:79:80:17:6c:d4:01:23:42:60:d4:
68:8f:4d:b7:50:6a:8f:c5:92:24:68:14:98:c6:45:
7b:1c:75:2f:4c:e6:e5:84:49:7a:31:de:0c:19:06:
d5:8e:c1:10:52:89:8a:ff:9d:50:48:8d:82:ea:19:
9c:80:18:91:c1:4b:71:18:6a:8b:6c:82:db:5e:6a:
85:7c:8d:31:29:33:8e:3b:a4:5c:75:86:88:bd:2c:
dc:c4:30:02:cb:f2:04:ef:cf:0d:24:1e:29:d5:dd:
50:a1:ba:58:99:f4:51:1c:f4:70:ee:10:83:e4:88:
13:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:35:C3:38:29:1A:56:FD:83:8F:5C:AA:3C:D0:38:74:ED:22:41:17
X509v3 Authority Key Identifier:
keyid:E4:20:0D:44:AD:9D:6E:CB:68:72:F6:53:A9:58:43:FB:27:D8:47:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/0099AE56536911EE8594503BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.107.113.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:2f:36:72:42:ce:ea:03:0f:14:18:45:4a:8c:31:8f:30:94:
be:dd:48:26:31:bb:80:05:50:fa:6f:86:b4:e0:a6:38:b4:29:
49:eb:42:ed:57:c6:ce:2a:ef:5d:c6:91:af:22:02:6b:2e:15:
2e:3a:cf:0b:08:9f:f3:55:29:d4:af:f1:45:58:6b:a6:7f:c5:
ec:a9:8e:22:31:0c:08:1d:c0:dd:15:82:22:0e:9e:a0:09:53:
ee:c2:5b:17:f3:df:6c:35:96:99:15:12:b9:b9:fc:79:15:fc:
21:8b:c8:98:4c:8d:2b:7d:ca:86:5c:8a:50:86:fb:9a:43:4e:
e6:48:1e:31:0c:55:37:37:5d:73:87:3a:8f:35:a5:72:95:eb:
1f:95:bc:53:3d:56:97:8b:01:a7:da:8e:d4:cc:53:da:9b:d7:
e0:45:c2:e4:78:84:c9:8e:d4:14:37:bd:0a:c6:5e:10:70:74:
73:28:85:a0:28:c4:54:36:30:b6:a8:87:9c:75:1e:fc:69:78:
40:ef:1e:b9:44:45:ac:d1:87:63:0d:f7:9e:47:8e:84:39:3c:
ed:3c:b6:66:dd:d6:d8:b9:76:fe:f6:b6:e9:e9:39:41:59:ce:
95:12:c9:86:2b:a5:62:bd:7f:95:39:44:09:00:0e:45:3f:73:
73:1c:9b:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:49:45 2025 by rpki-client