Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6E44CE88597B11EDB603273AC4F9AE02.roa
File: 6E44CE88597B11EDB603273AC4F9AE02.roa (raw, json)
Hash identifier: uSAHzBc+YHmREVNWY2QOkLWbks+7w1YPJ8vpHREo1FM=
Subject key identifier: 34:22:AC:14:A7:A7:DC:39:73:59:6B:38:56:2C:69:E9:94:B3:90:50
Certificate issuer: /CN=A91EB077/serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A
Certificate serial: 19EC
Authority key identifier: 38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6E44CE88597B11EDB603273AC4F9AE02.roa
Signing time: Tue 06 Aug 2024 16:53:53 +0000
ROA not before: Tue 06 Aug 2024 16:53:53 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2401:1d80:3000::/40 maxlen: 48
2401:1d80:3100::/40 maxlen: 46
2401:1d80:3200::/40 maxlen: 46
2401:1d80:3300::/40 maxlen: 46
2401:1d80:4000::/40 maxlen: 46
2401:1d80:4100::/40 maxlen: 46
2401:1d80:4200::/40 maxlen: 46
2401:1d80:4300::/40 maxlen: 46
2401:1d80:5000::/40 maxlen: 46
2401:1d80:5100::/40 maxlen: 46
2401:1d80:5200::/40 maxlen: 46
2401:1d80:5300::/40 maxlen: 46
2401:1d80:5800::/40 maxlen: 46
2401:1d80:5900::/40 maxlen: 46
2401:1d80:5a00::/40 maxlen: 46
2401:1d80:5b00::/40 maxlen: 46
2401:1d80:6000::/40 maxlen: 46
2401:1d80:6100::/40 maxlen: 46
2401:1d80:6200::/40 maxlen: 46
2401:1d80:6300::/40 maxlen: 46
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6636 (0x19ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EB077
Validity
Not Before: Aug 6 16:53:53 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66b25521-eb33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f7:83:3b:26:29:4b:10:c6:32:e3:af:06:f9:
e4:07:42:b4:09:75:ab:77:53:f0:8e:c3:f8:21:53:
1e:5c:d3:03:f7:7b:a2:04:02:83:46:ec:04:91:c6:
a2:2f:09:7e:c4:52:f0:00:90:38:eb:37:2a:52:26:
ec:b5:40:73:54:74:d7:e5:9d:15:ed:a0:8e:a0:08:
77:a5:4e:08:ee:0f:b1:38:f7:99:97:50:bd:fd:76:
17:fa:10:1e:32:14:83:f9:6a:ba:09:70:2c:6a:17:
35:ec:f6:ac:98:3c:20:74:9b:4e:0c:45:b1:a3:bd:
05:de:cd:05:28:d4:85:6a:e1:3e:de:8b:2c:31:05:
31:be:66:37:94:a4:d2:79:01:49:27:a1:fb:7c:a2:
46:f8:2c:c3:96:67:83:5c:ab:9f:41:10:d5:d7:7b:
59:01:84:6e:84:c0:45:2e:4f:9b:c0:f1:c3:fe:65:
a3:41:f6:6a:fc:04:18:9c:86:45:59:be:a0:17:e7:
42:bb:b0:f3:b8:85:e1:88:48:b0:21:47:a4:12:ba:
df:66:53:93:d3:52:b4:5e:ad:84:8e:38:25:ba:31:
bd:8e:45:6d:4f:98:ef:e0:6b:4d:60:b7:3c:1b:1c:
ff:ab:eb:2f:27:ec:2d:e9:82:79:80:2c:df:9a:b6:
cb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:22:AC:14:A7:A7:DC:39:73:59:6B:38:56:2C:69:E9:94:B3:90:50
X509v3 Authority Key Identifier:
keyid:38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6E44CE88597B11EDB603273AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:1d80:3000::/38
2401:1d80:4000::/38
2401:1d80:5000::/38
2401:1d80:5800::/38
2401:1d80:6000::/38
Signature Algorithm: sha256WithRSAEncryption
31:f8:5d:95:bb:ad:6d:33:c6:64:26:b1:91:68:12:43:ea:5b:
3c:89:fe:e1:5c:a1:f4:44:c6:62:e5:bf:4d:db:77:82:41:04:
6c:7b:08:3f:0b:3a:5f:95:fd:51:53:7d:a6:22:7f:1e:7b:64:
cd:63:8f:92:60:2c:5e:5c:0e:06:7d:fc:9e:e2:45:38:ea:41:
80:a8:7f:fb:3b:cd:a9:20:1b:82:33:1b:a1:dc:6e:8c:1d:45:
e3:77:d6:55:80:8e:3d:36:4f:6b:c6:a2:a4:5c:4a:86:f0:d7:
c9:af:37:c2:79:f9:2a:2c:18:ba:78:9c:e9:f8:ce:e6:50:29:
a6:73:a4:df:48:2f:b3:19:07:46:1e:13:19:4a:bc:07:58:59:
8b:32:ef:04:4a:e3:b5:58:17:0c:df:a9:95:f4:32:df:41:a3:
3e:13:45:82:2b:a8:10:8f:6f:6b:29:12:25:7c:13:82:9d:a1:
91:42:a0:00:cc:e7:42:d0:9d:df:57:c3:ff:91:dd:88:9c:73:
0f:6d:c3:91:9f:bf:77:55:8e:25:71:e3:1f:4b:d4:a4:de:e9:
b3:a7:3c:6c:ca:a3:bf:a4:8a:8c:85:66:ff:e2:26:bc:47:44:
5f:2d:7d:ed:3f:5f:0d:ae:51:fb:4e:0e:56:aa:64:4c:ea:53:
0e:3d:4b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:09:33 2025 by rpki-client