Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/6360524E03D311F0A6C64177C4F9AE02.roa
File: 6360524E03D311F0A6C64177C4F9AE02.roa (raw, json)
Hash identifier: aDdJ1zHHJM2Pp/llY4+TjUByw8VD+3beZi6B31AyTJ8=
Subject key identifier: 2A:01:92:64:FA:F2:CC:2A:20:A9:D5:23:4C:BB:45:2A:D7:7C:9A:FE
Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6
Certificate serial: EF
Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/6360524E03D311F0A6C64177C4F9AE02.roa
Signing time: Tue 18 Mar 2025 19:39:21 +0000
ROA not before: Tue 18 Mar 2025 19:39:21 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 14007
IP address blocks: 2405:cbc0::/32 maxlen: 32
2405:cbc0:2000::/35 maxlen: 35
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 239 (0xef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAF4B
Validity
Not Before: Mar 18 19:39:21 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67d9cbe9-111e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f6:c1:8e:01:95:14:ef:ed:8f:b0:bf:fd:62:
24:10:82:a1:64:18:a5:36:9f:95:e3:3d:d5:85:67:
46:b5:bc:ae:90:68:61:ac:f8:e3:89:2a:1d:ca:f8:
4a:65:70:40:b1:c4:0e:f3:0d:20:b5:f2:6b:e1:37:
47:6a:04:50:65:ee:8a:3e:67:51:54:9a:fe:b2:37:
15:ad:1e:4a:32:4e:8b:b2:1f:6e:1e:d7:3a:27:fa:
a0:e4:a0:09:db:ec:2a:1b:d8:99:f6:f7:29:54:17:
34:81:91:a9:07:4e:3a:0a:86:9f:dd:60:4e:d3:12:
d2:6e:92:49:16:43:0d:b0:01:44:43:79:80:42:70:
c1:ac:10:49:d7:95:69:df:92:27:93:e5:d4:61:65:
c4:77:19:ab:ff:27:6a:e0:bb:cf:e8:0b:46:f9:de:
e7:c7:52:10:ac:99:84:1e:61:94:de:fd:d7:ea:37:
c5:83:9d:cb:d9:8d:90:01:c6:87:3d:7f:2a:10:6c:
cf:6a:ef:56:95:46:c8:14:85:58:b0:6e:ed:d6:ad:
a4:dc:f1:43:68:87:09:67:02:fe:f3:8b:08:72:a9:
4d:6b:ad:de:84:ab:f2:e1:e4:2b:a6:68:f5:fe:46:
2d:f1:a8:95:bf:f0:6c:4e:8a:ca:50:20:72:14:1d:
42:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:01:92:64:FA:F2:CC:2A:20:A9:D5:23:4C:BB:45:2A:D7:7C:9A:FE
X509v3 Authority Key Identifier:
keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/6360524E03D311F0A6C64177C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:cbc0::/32
Signature Algorithm: sha256WithRSAEncryption
7c:30:b1:ce:ac:dc:bd:36:f2:ef:18:b8:2d:c1:4f:36:15:9f:
4e:9a:db:a3:cd:d1:b9:bc:bb:47:91:24:a4:10:28:14:9a:69:
20:a7:a9:2b:ee:03:21:7a:f2:7a:f3:89:19:17:65:58:b5:e2:
fc:42:1b:ff:ce:6b:4f:ba:52:8e:f3:13:71:66:c0:ba:a3:21:
92:57:b8:01:59:8a:7d:29:6d:9a:fc:ce:85:86:0a:e0:d6:3a:
61:af:79:d6:11:09:b6:a3:5a:76:c2:cd:0e:dc:0a:0e:c6:b5:
df:97:f5:66:5e:0b:3c:ab:1d:79:38:aa:f1:a7:89:6c:80:61:
cf:c9:3a:a2:3b:bd:e3:1b:a0:de:cb:00:9b:45:25:33:21:74:
aa:b3:ed:68:26:17:c5:94:79:28:2b:d0:3d:55:31:01:3a:e0:
ff:03:d6:7b:c7:ae:91:67:90:1a:f6:77:53:52:5c:fc:d2:d0:
d5:29:5d:b0:0f:28:2c:54:de:00:f9:8e:64:33:e6:e9:f7:1b:
d9:e0:7d:7c:7c:c2:28:3a:37:b5:e0:db:fc:3d:54:0d:14:a5:
16:55:f7:c8:32:45:33:4a:ad:ab:52:d5:7d:f4:e6:7e:dd:a8:
60:2f:7a:76:5b:05:64:3b:fe:9f:e3:9e:53:5a:70:66:48:56:
13:80:dc:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 09:18:24 2025 by rpki-client