Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa
File: 09182D38084E11EF89D29620C4F9AE02.roa (raw, json)
Hash identifier: bcXSyaSt5GFuvXt37iS12rNWnp//huiE39lT66O1G3Q=
Subject key identifier: 46:D8:2C:A3:D6:B5:9F:D6:76:6D:06:D6:77:8E:46:F8:50:41:6E:2D
Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C
Certificate serial: 0541
Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa
Signing time: Tue 04 Feb 2025 23:13:23 +0000
ROA not before: Tue 04 Feb 2025 23:13:23 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 45577
IP address blocks: 223.25.224.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1345 (0x541)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FF5E4
Validity
Not Before: Feb 4 23:13:23 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67a29f13-ab7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:54:f0:0a:4c:a1:e2:52:e0:7f:ee:27:39:cb:
b3:93:a9:77:29:0c:ac:2d:84:91:5a:7a:29:4b:58:
2a:fa:93:09:24:7a:e8:3a:fc:65:91:82:62:af:cc:
39:53:c8:5d:6f:1e:d4:b3:c3:45:eb:83:2a:73:64:
39:79:b9:9f:f2:e3:3b:7e:94:8e:1e:d0:b9:0c:c7:
43:40:7c:27:3b:5f:65:47:57:51:3d:8e:45:3c:36:
fb:f5:bd:33:0e:61:8a:cb:f6:50:27:a9:e6:10:aa:
df:08:4f:0f:df:95:87:7c:63:6f:c9:d8:d2:38:98:
e6:d5:69:47:a5:34:52:5b:94:c2:6d:73:0c:26:ea:
4b:77:dd:a5:f1:a5:fb:08:08:8b:7c:50:39:f5:8b:
45:99:4d:35:b8:6a:8b:37:ef:07:01:9a:82:89:c3:
80:8f:62:86:59:b6:e7:02:1f:33:d2:f2:79:2d:8e:
a3:12:7e:72:22:ec:08:25:25:2d:cf:b2:66:25:a4:
5a:a0:0b:db:e2:9a:20:69:89:cc:c7:b3:0e:e7:12:
f2:41:de:ee:51:2c:ee:97:fd:52:02:82:5d:af:09:
19:99:7b:c2:f0:65:43:fa:6a:78:01:32:27:93:2e:
9f:bb:7b:7e:90:47:d7:72:29:dc:46:4c:c8:fa:ab:
9a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D8:2C:A3:D6:B5:9F:D6:76:6D:06:D6:77:8E:46:F8:50:41:6E:2D
X509v3 Authority Key Identifier:
keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
223.25.224.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:2d:5a:15:92:95:99:e7:d4:2e:09:6c:12:4f:2b:bb:34:e2:
81:2c:17:20:a8:62:90:6c:1e:ea:dc:f7:04:28:3e:96:0f:81:
60:de:1b:b6:82:51:7a:ea:35:98:7d:1e:f1:f0:e0:4d:61:06:
df:cd:f8:bd:0b:07:f5:7b:6d:c4:5e:34:fe:26:48:5d:91:5b:
e8:57:7c:65:d4:73:16:ee:56:97:c0:c6:fe:ee:5b:5d:0b:c2:
48:5c:94:0f:1c:4c:26:14:d4:6c:99:ad:7a:a4:d3:b7:63:83:
08:ee:a3:d8:f5:92:7c:89:ea:73:e3:de:3d:55:17:6a:dc:c5:
56:bd:ce:84:58:c4:d0:2a:f5:7f:64:ab:2f:f9:c0:a9:cd:f9:
c4:d1:03:38:6e:6e:6f:6f:25:4c:1a:14:f0:c4:d7:7e:4c:46:
8b:f4:e1:6b:f1:0a:34:1c:04:aa:a3:04:1d:74:dc:f8:2b:94:
11:e0:bd:0d:54:8a:fa:0e:d9:b3:e3:49:41:f7:26:5f:cf:99:
41:b5:1e:b5:a5:ad:40:07:a2:de:17:86:03:b3:be:df:77:04:
1c:f0:b4:b1:0e:bd:38:1e:ab:90:2c:94:73:e2:d0:bd:70:3b:
c4:aa:e3:89:55:d0:a2:45:96:f5:4d:12:b4:58:ef:9b:35:d0:
bf:9a:93:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:48 2025 by rpki-client