Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/678B44F28B9F11EA97BB8046C4F9AE02.roa
File: 678B44F28B9F11EA97BB8046C4F9AE02.roa (raw, json)
Hash identifier: Y1ZDcwtp4WpP7AO3uuMh550NrbR6Z6/rzhbDD2cnMZ8=
Subject key identifier: 20:FA:85:F0:FA:A5:0D:3C:3F:12:56:2C:E8:D9:37:C7:81:D9:A7:23
Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Certificate serial: 189B
Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/678B44F28B9F11EA97BB8046C4F9AE02.roa
Signing time: Tue 18 Feb 2025 17:35:35 +0000
ROA not before: Tue 18 Feb 2025 17:35:35 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 53813
IP address blocks: 175.45.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6299 (0x189b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAE3D
Validity
Not Before: Feb 18 17:35:35 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67b4c4e7-7329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cc:2c:5f:ba:c9:64:14:dc:e5:01:36:1e:e9:
50:50:21:df:83:5b:74:20:e7:4b:a7:8a:e1:7f:6c:
c8:ab:38:61:3f:ae:c5:74:5e:e1:06:20:0e:8d:81:
8e:c0:47:9e:0b:69:b0:fb:56:1d:29:05:72:b7:af:
6e:bc:d8:c6:9e:a6:9e:d0:e9:6b:b5:4f:70:95:e8:
26:d5:65:bc:8b:af:a3:db:cf:9b:01:1e:4b:34:0a:
bc:67:56:ca:c0:16:2e:2e:8a:f0:aa:f2:d3:2c:5c:
a4:81:f3:4b:11:80:96:4c:93:17:b6:e6:6f:ca:3a:
73:3e:a3:ad:6f:06:6e:53:0e:3e:cf:d9:b6:c9:90:
58:77:2c:54:47:31:da:3f:ed:85:fd:b3:03:7f:2c:
b2:fb:ac:29:1f:28:ac:22:a6:ab:8e:b7:3c:c3:fe:
ae:82:cd:15:24:64:5c:a3:a2:00:4f:48:b0:ed:e1:
ea:24:17:d1:4c:c2:2a:79:ff:ed:4a:1d:31:df:05:
59:7f:c9:d0:16:d0:39:8d:10:c6:a7:6d:1b:81:8c:
5e:6c:89:42:fe:c5:62:0d:28:9a:e2:69:3e:f5:a5:
fa:84:45:2b:39:fe:50:5f:81:02:0d:30:f8:46:ca:
61:7d:eb:e3:db:f8:4b:25:f2:ef:0d:2e:2a:41:3e:
57:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:FA:85:F0:FA:A5:0D:3C:3F:12:56:2C:E8:D9:37:C7:81:D9:A7:23
X509v3 Authority Key Identifier:
keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/678B44F28B9F11EA97BB8046C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
175.45.116.0/24
Signature Algorithm: sha256WithRSAEncryption
77:39:47:f7:fa:76:fc:7c:87:05:58:d3:15:9e:3d:85:22:70:
84:6f:fb:9b:b7:aa:ce:18:fe:74:b8:e9:26:d7:3b:3a:c5:30:
b2:c3:36:46:5d:9f:ee:b0:a7:59:29:76:e4:bb:a5:50:77:a4:
a2:65:c2:dd:dc:fe:ee:b6:e9:34:5e:b7:e0:4c:a9:69:83:9a:
40:0e:0e:d6:81:92:b5:7b:b3:ef:22:e9:88:f8:12:b4:dc:15:
f1:a6:1f:72:3c:ab:45:6a:bb:ee:f0:25:86:c1:b7:b1:a0:7e:
7a:f4:a4:8e:a6:fd:59:6b:e0:03:f6:2b:1d:be:6c:21:d4:24:
a4:26:7b:83:ac:11:d1:87:f4:50:8b:4c:6d:20:1c:3c:c9:d8:
7b:d8:2d:16:9b:44:6c:66:10:d5:5f:14:44:70:47:2b:7f:ca:
51:0d:7c:d3:c0:2b:48:cb:12:9c:a7:00:a3:6d:4f:61:a5:3a:
50:37:a0:7b:7b:a1:f3:65:f4:41:b0:61:b4:5c:c1:a5:50:90:
c0:07:ed:d9:ac:fd:7e:b9:e9:1d:e2:e1:a1:f5:cc:40:b2:ba:
79:e8:2f:4b:b7:90:7e:d5:2c:66:ed:ae:2a:51:c1:5a:4d:0b:
80:74:c2:70:25:37:f6:16:0c:7d:c7:6b:7b:ff:d7:32:33:b3:
45:77:64:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:48:21 2025 by rpki-client