Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/13461F60ABDC11EDAE837666C4F9AE02.roa
File: 13461F60ABDC11EDAE837666C4F9AE02.roa (raw, json)
Hash identifier: cw0PqwBBK0RHpksVvzPS62Y/XzIKpQmwvX5oJ3Ga1Uc=
Subject key identifier: E8:A6:F5:24:13:98:6E:A3:2B:C9:D4:9F:6E:B7:47:8C:B3:FA:7D:2C
Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32
Certificate serial: 2B71
Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/13461F60ABDC11EDAE837666C4F9AE02.roa
Signing time: Thu 06 Jun 2024 16:03:55 +0000
ROA not before: Thu 06 Jun 2024 16:03:55 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 45671
IP address blocks: 2400:7180::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11121 (0x2b71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C128
Validity
Not Before: Jun 6 16:03:55 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6661ddeb-8b6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:8c:f5:97:2a:a4:b3:16:f8:cd:2d:bf:e8:95:
9a:21:15:05:88:f1:9e:94:20:d2:57:d2:3d:42:41:
ef:28:b8:7f:06:83:de:21:62:df:87:93:fa:77:ea:
c3:10:6e:d0:16:78:2f:96:eb:e6:48:4d:fe:73:d7:
52:d7:9c:bd:c7:18:ac:df:33:b9:09:18:00:1b:db:
f7:85:13:32:31:54:2c:90:e2:75:80:98:c1:9f:93:
d0:21:e2:38:f2:31:9c:fc:6a:07:a8:76:21:e2:93:
15:f0:1d:1d:3b:9e:4c:75:b1:2f:86:da:43:45:e2:
18:a0:88:03:1c:08:5e:16:05:5c:41:a9:16:30:8e:
65:62:45:12:b6:38:38:50:0e:e5:76:3b:0e:46:0a:
db:5e:a9:49:79:97:5d:49:1d:15:ba:41:d6:25:9d:
ec:3e:d3:10:a8:6f:35:80:fa:0c:c4:5f:5d:62:7f:
92:e0:0f:0f:76:8f:cf:62:4a:e2:b8:b6:05:2a:b2:
9f:6b:19:27:64:56:76:9d:d4:18:a9:67:83:53:ef:
c8:2c:8e:97:a5:b7:da:49:b5:c8:e8:f8:47:4f:b9:
b2:a5:3a:2e:ec:67:d1:9d:0d:38:45:1c:f5:62:b1:
f5:c9:bc:fa:5a:30:e3:a9:8e:52:9d:81:8e:96:c2:
6b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A6:F5:24:13:98:6E:A3:2B:C9:D4:9F:6E:B7:47:8C:B3:FA:7D:2C
X509v3 Authority Key Identifier:
keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/13461F60ABDC11EDAE837666C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:7180::/32
Signature Algorithm: sha256WithRSAEncryption
c2:1f:c6:95:21:4e:6f:96:0c:2c:57:4f:29:55:aa:99:4a:66:
c9:18:19:73:2d:bd:78:9b:ef:83:9c:b5:92:90:a6:81:4d:23:
4e:ca:62:da:db:f4:29:a7:dd:96:f0:52:be:d7:c4:b6:2f:a1:
82:77:fe:87:0a:00:65:b5:86:43:76:15:e5:2b:01:2e:0f:aa:
a7:09:cf:a1:27:53:4d:45:92:57:c0:7a:13:7b:48:bb:c1:f5:
68:2c:4b:a3:a3:13:9b:03:6d:c1:7e:b3:11:13:e3:3f:6e:28:
c6:42:4b:79:1f:7c:33:dd:85:4f:1c:99:44:c4:0e:aa:0f:fe:
84:65:67:68:1d:b2:21:31:1c:63:79:1a:27:2d:88:81:b8:27:
8a:4c:03:68:a8:b0:af:23:13:81:98:5a:ce:34:a8:e7:70:6a:
c5:75:ad:38:7f:b3:6a:32:98:13:88:b2:9f:dd:5a:76:c6:87:
76:a1:e6:f2:1d:d8:a3:c8:73:8b:61:9e:b9:cb:9d:bb:b2:b3:
1b:18:12:09:aa:d4:cf:ae:e2:d3:7e:1c:11:5c:87:40:f7:53:
c1:cd:a3:a2:08:40:80:89:66:9a:60:01:d6:db:1f:92:fe:a0:
e8:56:f6:85:d1:b1:9a:7f:0b:47:82:fa:94:2c:55:90:d0:43:
dd:e1:50:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:49:42 2025 by rpki-client