Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/F26A29E8604E11EFBEBCBA78C4F9AE02.roa
File: F26A29E8604E11EFBEBCBA78C4F9AE02.roa (raw, json)
Hash identifier: 0LNRH/U5GDwOtNWracIRpR4XjwoT80BHcK0lSKjg+Uk=
Subject key identifier: 42:45:B1:B6:18:83:28:6A:9B:68:4C:A4:9E:10:F3:08:03:27:1C:8C
Certificate issuer: /CN=A916B8B3/serialNumber=F2C052E0C573AB0580EB06F3F90025646E6F32CF
Certificate serial: 0F6A
Authority key identifier: F2:C0:52:E0:C5:73:AB:05:80:EB:06:F3:F9:00:25:64:6E:6F:32:CF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8sBS4MVzqwWA6wbz-QAlZG5vMs8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/F26A29E8604E11EFBEBCBA78C4F9AE02.roa
Signing time: Sat 30 Nov 2024 18:06:26 +0000
ROA not before: Sat 30 Nov 2024 18:06:25 +0000
ROA not after: Sun 30 Mar 2025 00:00:00 +0000
asID: 38047
IP address blocks: 2403:a040::/32 maxlen: 32
2403:a040:1::/48 maxlen: 48
2403:a040:852::/48 maxlen: 48
2403:a040:886::/48 maxlen: 48
2403:a040:1688::/48 maxlen: 48
2403:a040:3368::/48 maxlen: 48
2403:a040:6611::/48 maxlen: 48
2403:a040:8001::/48 maxlen: 48
2403:a040:8002::/48 maxlen: 48
2403:a040:8003::/48 maxlen: 48
2403:a040:8004::/48 maxlen: 48
2403:a040:8188::/48 maxlen: 48
2403:a040:a001::/48 maxlen: 48
2403:a040:b001::/48 maxlen: 48
2403:a040:cdef::/48 maxlen: 48
2403:a040:ce01::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3946 (0xf6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916B8B3
Validity
Not Before: Nov 30 18:06:25 2024 GMT
Not After : Mar 30 00:00:00 2025 GMT
Subject: CN=674b5421-bea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:3d:f2:01:d3:02:ee:b9:f7:37:4b:a1:2c:d2:
a3:13:7b:05:4a:28:59:8a:04:61:fe:da:77:0d:34:
b6:b3:65:ef:0a:de:53:a6:f5:95:3f:87:15:ff:89:
37:ca:51:d8:6f:0b:c2:49:5c:46:68:bd:64:7e:6b:
ce:cd:fa:33:6a:73:ab:79:1c:e8:1a:97:e9:0a:75:
f9:e5:16:8e:4e:9c:6f:64:4d:68:ee:44:b6:27:59:
7f:91:5e:7d:6e:91:f3:a0:65:d4:d1:fe:83:c7:f2:
b6:38:74:75:f0:40:e7:08:aa:11:d5:2f:9e:76:a7:
d0:93:bb:c4:e4:6e:4a:87:8f:9b:d4:de:5f:00:40:
7d:3f:12:f7:d8:6e:4c:02:d8:1e:db:25:d6:44:53:
e9:11:b1:f3:81:a5:99:4a:34:0c:6c:73:1f:71:de:
f8:cf:fd:85:7d:b3:44:a5:85:f5:af:93:c7:d4:55:
80:af:c4:94:f1:99:cb:c9:d8:ff:7d:7c:45:b3:be:
c2:69:db:28:5b:61:cb:9f:80:db:c3:60:fe:a8:1b:
fd:56:6e:4c:6d:fd:32:c9:72:43:a2:34:cf:79:40:
d1:78:7e:ef:b9:97:01:26:c0:cc:3f:76:2d:74:0e:
a3:1e:38:78:45:ca:75:c1:17:e4:d7:b4:4f:c3:d2:
af:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:45:B1:B6:18:83:28:6A:9B:68:4C:A4:9E:10:F3:08:03:27:1C:8C
X509v3 Authority Key Identifier:
keyid:F2:C0:52:E0:C5:73:AB:05:80:EB:06:F3:F9:00:25:64:6E:6F:32:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8sBS4MVzqwWA6wbz-QAlZG5vMs8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/F26A29E8604E11EFBEBCBA78C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:a040::/32
Signature Algorithm: sha256WithRSAEncryption
8f:a1:5b:59:a6:1d:fc:c6:79:e2:e3:f5:de:e7:1d:bc:b9:38:
ea:90:65:15:11:7e:45:31:73:56:0f:76:c8:f2:95:dc:93:9a:
d8:39:30:c3:97:21:8f:2c:44:b9:97:73:91:6d:ae:80:90:8e:
24:c0:35:22:30:ce:15:61:12:6e:87:4a:57:a6:78:e0:c7:4a:
d6:3b:f7:15:a6:15:b4:c5:a8:15:a0:1f:70:b4:a5:f5:23:91:
f3:61:5e:4b:cf:05:8e:e9:ac:48:ea:a8:0b:6a:33:cc:53:6f:
09:12:29:5e:a0:4c:3a:98:ee:1f:b4:89:2c:a5:80:8d:44:d2:
6c:fa:87:bf:80:71:67:2f:8d:c9:7a:ef:a2:b4:a4:0f:d9:c2:
48:ce:bb:47:b5:57:73:7f:fb:5a:38:fc:bd:82:6c:0c:39:a5:
05:5c:e3:bd:bd:bd:d2:e3:df:06:9a:a7:52:0c:21:7c:86:cd:
bc:10:f2:45:b2:70:90:dc:c9:87:3a:da:c7:a7:0d:75:cc:41:
6e:52:a4:69:84:8e:29:c4:f0:c2:96:ff:31:cc:46:79:5a:e4:
7f:a5:85:9b:dd:e4:71:54:0a:5e:a2:9a:53:3e:32:9a:fb:f6:
ae:09:98:8d:ab:9a:6b:25:91:4e:92:7d:14:d5:0f:29:92:38:
f6:28:48:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:12:30 2025 by rpki-client