Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/DCAF30B6E4AC11EF86681673C4F9AE02.roa
File: DCAF30B6E4AC11EF86681673C4F9AE02.roa (raw, json)
Hash identifier: RJ8QbeHeO//H3km4CF8dlyUAxuujjhRV0yZE0/kTgK4=
Subject key identifier: 07:A9:68:E1:0C:9A:17:BC:0C:D2:FF:BD:C6:CA:71:F0:73:74:E6:F4
Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Certificate serial: 35F7
Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/DCAF30B6E4AC11EF86681673C4F9AE02.roa
Signing time: Thu 06 Feb 2025 17:07:36 +0000
ROA not before: Thu 06 Feb 2025 17:07:36 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 4637
IP address blocks: 175.29.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13815 (0x35f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91510AD
Validity
Not Before: Feb 6 17:07:36 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=67a4ec58-ce72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9a:6b:7a:52:ed:0f:c6:55:8e:a4:46:3a:32:
e3:b3:3c:2e:99:8f:ee:4a:85:9b:6c:49:2a:b0:a9:
d5:e6:1e:e7:c9:82:34:8a:31:7b:7f:6c:30:cf:14:
5b:0d:3b:91:df:06:05:40:77:88:97:a5:af:10:c0:
01:96:15:96:f7:f0:59:a7:1e:32:df:89:b9:36:bb:
be:34:04:ce:a0:42:3c:82:9e:00:25:64:c8:d8:7d:
a3:e1:17:ce:8e:88:42:50:a9:7a:6e:d5:6c:7e:7d:
14:d1:3b:79:98:f8:05:50:1f:da:cc:48:4a:df:cc:
eb:a9:22:83:8b:8e:b0:4e:30:2e:1f:02:26:06:27:
d2:0f:2f:3f:41:8d:2a:f7:e8:76:a0:ad:f4:cd:a9:
45:33:b5:32:32:2c:cd:ca:bd:93:72:6b:0e:e3:83:
5f:9c:64:33:c1:d6:4c:08:f1:43:6b:f5:2d:79:cd:
ef:7b:62:54:a2:9e:af:13:bf:09:2e:2c:9a:e3:b3:
91:5c:46:dd:90:27:73:40:43:d4:90:cd:b5:2d:b7:
5e:15:a6:1f:cc:c4:c7:12:b0:d6:e2:aa:21:ea:48:
2e:5e:b4:2d:9e:01:6f:86:a0:aa:a2:f8:91:9a:d0:
e0:d3:c2:39:3b:0d:1e:3e:dc:2b:7f:87:91:e2:3a:
23:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A9:68:E1:0C:9A:17:BC:0C:D2:FF:BD:C6:CA:71:F0:73:74:E6:F4
X509v3 Authority Key Identifier:
keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/DCAF30B6E4AC11EF86681673C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
175.29.28.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:01:84:dc:2e:2c:a0:5d:b8:9d:06:aa:46:f4:74:8f:d3:55:
7b:47:90:c6:0c:38:40:81:36:9e:30:a5:c5:34:86:2a:94:41:
4e:75:a4:5a:46:f1:9f:4d:65:66:29:f3:c7:d3:09:5f:d4:50:
e7:66:c9:e7:a7:9a:0e:0e:0c:a6:8c:60:1c:1e:80:85:ba:b2:
fe:be:b7:83:8f:72:c4:2b:f9:71:23:d4:7a:30:7c:dc:da:4a:
3d:87:b6:89:6d:43:96:e4:d3:24:e0:37:8b:ce:27:90:0e:6a:
3b:ba:0a:d6:a4:a9:86:44:ee:5c:02:6a:5c:16:60:52:a2:79:
ca:c5:ac:56:73:98:59:d3:ef:07:c5:0b:a3:23:3d:4a:09:5f:
05:64:ce:b3:f2:9f:8e:0d:10:96:c9:f2:43:00:68:e9:af:07:
88:80:fc:2a:72:cd:2d:ad:40:5f:41:db:49:32:2e:39:78:77:
9f:5c:0d:b0:c1:34:e8:12:5f:ee:78:12:14:91:a0:38:00:50:
33:af:97:74:66:f8:fe:f4:25:cc:39:0b:46:63:24:7a:91:ce:
84:c1:46:9c:b3:70:1f:5f:ba:aa:c8:61:90:53:79:0c:c5:cd:
33:6d:c1:e0:40:86:ea:73:65:5b:f9:37:a0:f1:61:23:5f:31:
a7:a7:82:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:52:38 2025 by rpki-client