Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/78F04E46857211EF98169381C4F9AE02.roa
File: 78F04E46857211EF98169381C4F9AE02.roa (raw, json)
Hash identifier: b9f4zZHpT/fUrl9cIYeEjKueyIZjbJNFweI24XLjW0o=
Subject key identifier: C0:F0:99:7D:D5:0F:5D:86:BC:1A:6C:CD:C1:EC:3C:E2:23:A9:28:65
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 181D
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/78F04E46857211EF98169381C4F9AE02.roa
Signing time: Thu 17 Oct 2024 13:47:52 +0000
ROA not before: Thu 17 Oct 2024 13:47:52 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 131275
IP address blocks: 223.29.232.0/24 maxlen: 24
223.29.233.0/24 maxlen: 24
223.29.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6173 (0x181d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Oct 17 13:47:52 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67111588-2e13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:20:3b:fb:8a:16:48:87:41:74:b8:6a:c9:dd:
68:c7:9f:11:af:74:8f:08:61:8b:bd:68:72:94:d2:
3b:22:70:13:28:54:71:98:27:ba:6b:f9:c0:e5:4a:
37:17:84:99:7e:33:b7:ae:6d:84:9a:22:c2:c8:68:
1e:e9:a3:9a:95:73:8f:cb:3b:6d:48:7b:43:fb:79:
22:11:45:a8:6a:e0:08:ff:47:9c:b7:4b:4c:61:cf:
25:5a:b9:4f:e4:eb:8d:38:77:81:9f:f2:5e:e9:dd:
04:5a:7b:e2:7f:76:69:5b:13:70:bc:8a:4d:42:86:
7d:22:e1:c2:a1:a4:77:dd:46:df:f2:33:01:f2:b1:
99:c9:44:10:77:68:72:85:4f:d9:a3:b7:fa:bd:46:
01:1a:36:5b:9d:4c:1e:50:3e:67:9b:0f:32:a7:ee:
cd:fd:1c:8e:ff:86:ce:dd:4c:36:3e:40:d2:37:61:
a4:85:ae:50:bc:13:9b:45:a1:4b:73:ef:d2:eb:5b:
bc:e7:e4:07:45:5d:98:51:7f:92:70:41:05:c3:cb:
a5:01:be:f3:59:45:f3:8b:26:51:e8:5c:99:fe:33:
e1:7d:66:9a:fa:34:f3:ef:58:5a:1d:28:ff:b2:19:
8f:31:c0:e4:19:29:de:02:e0:ee:ed:fc:ab:34:89:
c2:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:F0:99:7D:D5:0F:5D:86:BC:1A:6C:CD:C1:EC:3C:E2:23:A9:28:65
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/78F04E46857211EF98169381C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
223.29.232.0-223.29.234.255
Signature Algorithm: sha256WithRSAEncryption
bb:2f:1a:1e:9b:50:7a:48:a8:ca:05:17:7c:8c:68:fe:45:ab:
e3:3a:5c:8a:03:a4:34:7f:33:45:c1:9e:29:23:9a:80:ef:58:
de:94:ea:f1:05:81:cc:82:d1:0b:18:92:47:94:01:bc:49:8c:
a2:dd:7e:fc:b3:67:7e:61:55:25:29:5d:b7:cc:60:3d:aa:33:
69:f6:f5:55:e9:13:30:d6:46:6e:04:f8:21:12:55:be:17:ae:
06:02:04:60:87:0f:5e:80:69:29:c1:1a:69:cf:47:9b:df:ec:
02:ef:1c:98:31:68:32:de:b8:bd:33:1d:e7:ac:d7:d7:db:e2:
05:95:a7:9b:2d:43:7f:04:49:33:dc:d1:b1:55:8b:e7:f5:d7:
ff:84:0d:36:fe:df:3b:29:37:9e:ae:3c:a9:bc:9b:53:34:60:
1a:45:27:42:1e:75:2f:f0:b7:26:5d:33:4b:e1:e3:d3:0a:ed:
f9:d5:ab:80:37:71:10:41:50:f5:30:d1:58:01:59:64:ab:06:
bc:03:2f:4b:a6:bd:6d:a5:b4:4b:18:d8:b0:17:e3:f4:58:22:
01:38:0e:0f:ee:fc:ff:94:69:5a:a2:08:2c:cb:a6:10:40:ef:
89:5c:19:da:c6:7e:bf:19:1b:3d:82:61:7d:28:cd:aa:ac:db:
da:d7:86:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:06:38 2025 by rpki-client