Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91542DD/93979746E64D11E98A18857BC4F9AE02/1C09DC824EA511EF8F5C1133C4F9AE02.roa
File: 1C09DC824EA511EF8F5C1133C4F9AE02.roa (raw, json)
Hash identifier: oEE8VEVGzDnvJ3tF4Z/8sNjZL49wh8fnv/svx393kKk=
Subject key identifier: F9:17:27:40:DE:17:BE:8E:75:58:2D:13:4C:18:89:92:82:A9:CB:45
Certificate issuer: /CN=A91542DD/serialNumber=1C80F9D577EDC4603520314A17A45CB6A7C5C160
Certificate serial: 0C96
Authority key identifier: 1C:80:F9:D5:77:ED:C4:60:35:20:31:4A:17:A4:5C:B6:A7:C5:C1:60
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HID51XftxGA1IDFKF6RctqfFwWA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91542DD/93979746E64D11E98A18857BC4F9AE02/1C09DC824EA511EF8F5C1133C4F9AE02.roa
Signing time: Mon 30 Dec 2024 04:17:58 +0000
ROA not before: Mon 30 Dec 2024 04:17:58 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 7018
IP address blocks: 36.255.212.0/24 maxlen: 24
36.255.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3222 (0xc96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91542DD
Validity
Not Before: Dec 30 04:17:58 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=67721ef6-1337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f7:c8:27:f9:66:33:c8:84:27:36:63:15:c4:
0b:df:cd:1d:cc:00:2e:bc:0b:dd:97:f1:bd:c2:52:
02:71:21:d1:05:84:7b:e4:4e:39:c3:14:6c:15:0c:
6e:7f:9f:57:db:91:1b:d1:f8:c1:7f:14:e6:f4:73:
dc:0c:59:71:a7:c7:d7:60:ef:ee:e8:84:94:c2:6e:
cf:38:0e:07:ee:41:ed:77:2a:aa:3d:f0:6a:c6:9c:
8a:8d:8b:40:cc:f7:55:fd:43:28:65:2a:bb:24:95:
99:56:11:cc:86:64:3a:e3:7f:86:56:61:29:f7:90:
8f:c3:2d:8f:08:f7:42:63:bd:af:04:c9:75:68:96:
22:46:da:2b:7f:80:8c:50:ea:e2:65:b2:57:ab:33:
e6:ee:23:df:7d:17:bb:fc:18:6f:5a:91:c4:2a:69:
b7:98:3d:7d:cf:da:de:44:15:6a:d1:5c:99:f5:b6:
28:d6:99:9a:c7:26:15:5f:13:71:a9:a1:46:be:32:
ae:79:24:e3:db:4b:78:52:81:e3:3c:8a:94:ac:78:
de:f5:b4:d3:cf:80:da:f1:09:06:89:2c:db:b0:3e:
d5:3e:a1:a9:ad:b5:72:d1:8b:40:13:7f:27:e9:07:
07:96:d5:34:a7:c7:ed:bd:33:2d:df:3f:7d:b6:5b:
0e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:17:27:40:DE:17:BE:8E:75:58:2D:13:4C:18:89:92:82:A9:CB:45
X509v3 Authority Key Identifier:
keyid:1C:80:F9:D5:77:ED:C4:60:35:20:31:4A:17:A4:5C:B6:A7:C5:C1:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91542DD/93979746E64D11E98A18857BC4F9AE02/HID51XftxGA1IDFKF6RctqfFwWA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HID51XftxGA1IDFKF6RctqfFwWA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91542DD/93979746E64D11E98A18857BC4F9AE02/1C09DC824EA511EF8F5C1133C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.255.212.0/24
36.255.214.0/24
Signature Algorithm: sha256WithRSAEncryption
80:ee:0e:cf:79:e7:43:e8:f6:46:9f:63:94:ce:e7:a1:e9:b0:
fd:4a:dd:a4:a5:79:2f:7b:87:e6:a0:79:db:4e:11:63:df:04:
b8:9b:e2:f1:41:40:49:6d:67:01:cd:98:30:00:1c:4f:22:f0:
f8:84:f3:fb:68:09:f3:42:50:be:07:6e:eb:6f:be:eb:95:05:
f1:06:51:14:88:b2:d2:a2:2c:05:f1:f6:90:03:d8:38:4a:e7:
59:f9:5c:38:e8:79:fd:36:90:43:57:f5:1b:9e:7b:73:4f:04:
e0:ca:b8:66:7a:63:ed:dd:64:c2:ba:4d:d3:00:12:2f:6d:8b:
5f:78:9b:1c:01:da:6f:7e:63:c1:d1:e7:44:48:61:fd:ee:34:
49:02:7d:a4:3e:ea:8d:54:94:26:7e:34:10:37:00:34:41:96:
70:b2:8d:5e:d1:d8:a2:e2:2e:a9:0c:5f:50:b3:eb:20:b6:5f:
06:a0:d1:a4:63:91:50:ed:45:86:79:2c:c0:5c:47:b2:83:0b:
47:ae:db:04:56:e6:be:f3:15:65:24:bd:38:7e:bf:6f:09:29:
3e:f3:f1:7c:ff:6b:9d:ed:90:96:a0:96:cb:d4:f8:b5:12:17:
65:7b:0f:77:94:17:83:c4:46:f0:9b:5a:2e:c1:13:84:63:bb:
02:43:a5:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:37:38 2025 by rpki-client