Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4C9159E069E211EFB237DF77C4F9AE02.roa
File: 4C9159E069E211EFB237DF77C4F9AE02.roa (raw, json)
Hash identifier: fSfhdrKJcWadMBdCbF485Qsb3cVfPKzBXZnvLcnui8Q=
Subject key identifier: 77:64:AD:76:E2:C8:B5:CA:67:C0:C4:68:60:2F:29:96:32:1A:6F:B1
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 14F1
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4C9159E069E211EFB237DF77C4F9AE02.roa
Signing time: Tue 03 Sep 2024 10:50:14 +0000
ROA not before: Tue 03 Sep 2024 10:50:14 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 38547
IP address blocks: 115.167.72.0/24 maxlen: 24
115.167.74.0/24 maxlen: 24
115.167.75.0/24 maxlen: 24
202.92.16.0/24 maxlen: 24
202.92.17.0/24 maxlen: 24
202.92.23.0/24 maxlen: 24
202.92.24.0/24 maxlen: 24
202.92.24.32/27 maxlen: 27
202.92.25.0/24 maxlen: 24
202.92.27.0/24 maxlen: 24
202.92.28.0/24 maxlen: 24
202.92.29.0/24 maxlen: 24
202.92.30.0/24 maxlen: 24
202.92.31.0/24 maxlen: 24
2400:9560:1::/48 maxlen: 48
2400:9560:5::/48 maxlen: 48
2400:9560:9::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5361 (0x14f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Sep 3 10:50:14 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66d6e9e6-768d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2a:54:bd:2c:d3:3d:7f:da:c1:c8:6d:0d:93:
5b:aa:14:ba:02:c0:42:cd:48:81:1e:f3:43:1e:e8:
3a:a1:79:f5:f1:4d:0a:ac:75:76:b9:58:f3:00:6a:
5f:b7:09:b9:89:95:77:e2:63:3a:49:7e:e4:06:86:
4d:e0:cd:57:8f:38:9a:bf:9f:50:b1:c2:ec:4a:63:
d6:72:ef:f9:a9:aa:5f:c0:6b:50:9c:58:d2:70:25:
9a:b6:85:20:cf:08:02:c1:ba:e4:73:21:18:93:bb:
53:e6:00:0c:e9:3a:ca:fb:00:2f:b1:71:16:a9:c1:
51:51:93:e6:19:76:e8:17:f4:4e:f2:4d:e4:72:7e:
cb:f7:e1:78:7c:69:d4:3c:a1:36:84:a0:94:52:62:
b2:79:33:32:3c:14:7a:a0:23:7d:8b:ac:55:b6:a8:
f7:a6:4b:df:18:be:ee:67:af:e6:72:e8:50:15:e1:
1b:34:b5:87:8d:ea:04:79:61:fd:8a:6f:79:db:94:
66:9d:ff:26:15:c3:14:66:45:8f:e3:7b:5a:c5:80:
b9:82:6b:68:6c:93:29:5a:6f:92:49:4a:b0:ad:73:
3b:78:84:a0:a2:e3:d1:c5:b8:4f:b1:00:c0:9f:1d:
14:e1:43:00:bc:b8:d9:c5:c9:94:d0:34:99:c2:09:
52:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:64:AD:76:E2:C8:B5:CA:67:C0:C4:68:60:2F:29:96:32:1A:6F:B1
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4C9159E069E211EFB237DF77C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.72.0/24
115.167.74.0/23
202.92.16.0/23
202.92.23.0-202.92.25.255
202.92.27.0-202.92.31.255
IPv6:
2400:9560:1::/48
2400:9560:5::/48
2400:9560:9::/48
Signature Algorithm: sha256WithRSAEncryption
65:dd:ad:ef:4f:65:6f:f3:fb:2a:73:55:08:96:30:e1:23:0f:
f4:05:cb:34:2e:15:f9:53:47:5b:a7:0b:e2:e6:c5:15:e8:6a:
86:2f:3b:84:b2:f0:cf:42:7c:3a:d6:7c:24:08:ab:f7:ef:4e:
77:ec:78:36:fc:e3:ac:e5:6a:6a:95:72:60:b9:05:a7:37:56:
39:ce:93:9b:54:67:9d:d9:12:08:43:3d:ca:a7:29:32:67:35:
0b:07:c2:9d:ab:c0:6a:ad:16:4a:eb:66:6f:b0:51:66:d3:d8:
ba:72:7e:d6:eb:72:d4:9d:31:62:f0:c6:ba:6c:44:6a:6d:92:
8e:c5:cb:00:51:51:62:d4:59:4b:6e:8b:12:d9:b4:04:a4:33:
89:06:aa:38:68:9b:13:15:7f:a0:2c:e4:a9:92:c2:7c:86:0a:
f6:43:5f:aa:7c:35:d0:b7:0d:78:50:6c:ee:7a:a6:70:28:85:
31:52:ee:b9:78:6a:29:1c:87:71:50:0a:2c:ac:d1:a8:8e:0a:
3f:cb:5e:3e:2a:b0:c5:28:f5:64:ef:ce:55:9c:89:b0:66:1e:
98:29:38:fb:0c:02:e0:84:31:8b:cc:03:eb:0c:1f:21:8a:04:
bf:91:8b:7d:e4:15:d7:d0:db:de:9a:79:fb:f4:8f:17:b9:dc:
46:b7:d6:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 00:04:31 2025 by rpki-client