Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/F2DC6FDA590111EE965F2E48C4F9AE02.roa
File: F2DC6FDA590111EE965F2E48C4F9AE02.roa (raw, json)
Hash identifier: HTzMC3WZ8k53yDwolEQylT+rsJaJEkKsbwZpfv/Evks=
Subject key identifier: A8:0E:94:52:A0:A4:DB:21:0D:C6:6B:FE:D4:20:32:84:66:26:31:70
Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Certificate serial: 18A0
Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/F2DC6FDA590111EE965F2E48C4F9AE02.roa
Signing time: Tue 18 Feb 2025 17:35:41 +0000
ROA not before: Tue 18 Feb 2025 17:35:41 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 9787
IP address blocks: 218.100.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6304 (0x18a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAE3D
Validity
Not Before: Feb 18 17:35:41 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67b4c4ec-65a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:78:13:10:78:92:fd:e2:d1:df:02:87:e7:c1:
d5:3e:10:7a:23:76:43:ff:0b:8a:b5:0c:62:74:73:
87:e7:2f:b6:d0:08:8b:66:47:56:e1:5e:52:63:93:
67:82:03:d3:45:d0:50:c3:53:54:89:93:a9:94:ad:
15:9d:77:0e:f6:89:bc:8f:c8:5c:0d:eb:05:ed:3e:
24:97:f7:7b:80:9d:d4:c6:0a:29:6d:3f:ce:ce:12:
99:49:a7:64:9e:93:a9:30:a7:85:44:c4:00:b5:6a:
6e:63:e5:54:6e:29:15:4e:e1:07:52:c3:ad:8a:ad:
1c:d2:d1:29:04:f8:6a:4f:21:cd:fe:be:ea:91:4a:
6b:70:54:d4:9a:2a:d2:6c:7c:cc:28:aa:5d:de:dc:
e2:1c:d6:9b:2b:c9:5b:e5:f3:a8:90:b6:d2:91:2e:
85:0a:5c:ee:0c:f2:b2:cd:84:42:7c:88:7c:21:4a:
df:34:5b:b7:d2:a7:75:06:6f:07:9a:90:4a:86:11:
1b:e2:ee:f3:ca:7e:cb:22:d5:18:f3:97:be:2f:26:
07:05:7c:4e:63:1a:74:dc:5e:0e:ac:93:3e:01:c8:
25:1f:6e:bd:da:1c:89:41:d5:38:1d:ad:2f:38:aa:
19:61:93:7e:98:e5:a1:30:17:30:02:66:e5:a0:20:
42:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:0E:94:52:A0:A4:DB:21:0D:C6:6B:FE:D4:20:32:84:66:26:31:70
X509v3 Authority Key Identifier:
keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/F2DC6FDA590111EE965F2E48C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
218.100.80.0/24
Signature Algorithm: sha256WithRSAEncryption
32:b3:16:68:78:cf:ea:87:45:1d:57:7f:47:ab:94:99:c2:0f:
0f:e7:a6:96:14:2e:d0:b7:8b:78:3a:d0:fe:be:71:14:1b:65:
51:8f:1c:2d:6d:47:97:d8:a6:d9:d2:23:69:9a:5e:41:58:f1:
0a:39:fc:df:f6:26:c0:8d:18:75:a8:f9:90:c3:c8:84:c7:ac:
d6:35:73:ea:23:8b:68:12:74:46:e7:91:94:60:92:76:34:84:
8b:c0:6a:c7:3e:e9:99:02:26:ae:9d:a5:5b:ad:24:d7:b2:6d:
fb:8b:8d:43:18:1b:4e:a7:df:fb:66:21:c2:8a:16:d9:5d:77:
51:2b:35:33:fa:ff:4f:c1:37:03:38:5c:2c:97:86:2f:74:73:
27:cc:ba:13:3c:d2:51:22:c1:13:cf:9d:83:64:9d:54:58:e2:
4a:ea:f7:2a:55:30:38:89:0e:ae:3f:e8:b6:c9:93:e8:af:e8:
d9:c3:53:67:0e:1f:7d:31:ae:cf:da:34:5a:eb:36:f5:e2:4a:
6e:ec:a9:18:88:27:62:2a:8f:a2:96:25:af:53:10:27:36:64:
34:ef:a6:ec:fc:5e:31:06:68:5a:87:68:7e:9c:3a:38:43:22:
b8:26:b3:fd:0b:54:cf:37:c0:13:db:be:53:17:92:0d:39:e9:
a3:d3:4a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 22:19:54 2025 by rpki-client