Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/2605BA6A267D11ECAF7F166DC4F9AE02.roa
File: 2605BA6A267D11ECAF7F166DC4F9AE02.roa (raw, json)
Hash identifier: hyIj/oH1UbDGdOUj+NMHphg7x96naMtPuDiIW9PmlFc=
Subject key identifier: 0A:27:DF:E1:31:64:30:1B:D1:22:80:9C:32:84:16:01:56:9C:C9:C2
Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9
Certificate serial: 06F9
Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/2605BA6A267D11ECAF7F166DC4F9AE02.roa
Signing time: Tue 18 Jun 2024 23:52:12 +0000
ROA not before: Tue 18 Jun 2024 23:52:12 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 45.114.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1785 (0x6f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916D0D2
Validity
Not Before: Jun 18 23:52:12 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66721dac-0ee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:33:9a:54:70:69:48:f6:42:a4:13:fb:de:22:
80:52:18:aa:a2:c3:2a:83:37:24:4f:b4:a4:50:c0:
40:2c:4d:d4:c8:1e:09:41:56:cd:f0:ef:61:32:19:
e3:c7:50:14:cb:42:5b:0f:c2:13:37:4b:cd:c3:e2:
4b:db:12:f3:62:39:2b:6f:ba:36:06:3b:1d:1b:15:
74:24:d0:3e:cb:c2:8b:21:ca:2b:2d:d7:9b:08:db:
81:d0:60:9b:b0:2b:e7:4b:b3:4e:74:b4:f3:94:d6:
39:92:24:29:61:f4:9f:e8:b2:02:54:19:d5:2c:33:
b2:63:7b:64:d7:6c:d0:00:6e:ca:52:78:a1:12:c5:
2f:ca:ad:ca:1b:16:6d:85:b1:04:fc:3e:09:7c:a6:
ce:92:28:26:0e:8f:f1:2f:1b:62:aa:10:83:c6:17:
f8:d7:bf:38:0d:dd:a5:31:06:a3:7d:61:ba:18:99:
24:f6:aa:cf:ea:0a:56:26:4b:13:cb:ca:cc:1b:42:
da:08:c4:61:9d:f5:b1:11:59:ee:e4:d7:54:ae:7b:
1e:26:99:19:95:60:f3:0d:a5:79:2f:8a:40:a3:ce:
62:e9:c9:d8:07:d0:7b:6a:0a:88:ed:d9:21:cb:b8:
13:0f:30:e7:79:eb:0d:88:f9:54:ea:8f:d5:4f:69:
79:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:27:DF:E1:31:64:30:1B:D1:22:80:9C:32:84:16:01:56:9C:C9:C2
X509v3 Authority Key Identifier:
keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/2605BA6A267D11ECAF7F166DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.114.190.0/24
Signature Algorithm: sha256WithRSAEncryption
10:8f:a3:97:7e:6c:5d:3c:dd:b1:80:ff:b1:0e:59:36:ce:87:
95:3c:25:de:a6:33:77:02:fb:c3:08:4f:aa:42:93:3e:82:e8:
90:8d:cf:1a:79:5f:17:af:23:74:8e:b7:ac:35:a9:8a:22:df:
08:07:09:1a:b7:11:aa:00:c7:cf:ea:46:ef:a6:82:24:d7:76:
e1:06:d0:23:30:b4:f4:35:e8:dd:07:18:fa:ea:90:ab:7c:d1:
3d:e8:da:75:69:fc:ff:8f:a6:ef:5b:7e:c9:b3:1d:a9:81:2d:
64:e9:f6:77:2b:fa:08:57:5e:d8:54:0d:05:db:a0:28:0b:f5:
87:03:be:2d:3e:93:dc:aa:d9:24:e6:85:c2:39:30:a9:87:6c:
cd:37:42:05:c4:ca:6b:99:34:28:d1:fe:38:4f:99:6b:75:32:
c5:31:5c:ff:78:2e:53:92:6f:90:3a:90:af:2f:8f:f8:28:0a:
cb:bd:72:14:67:9d:c1:03:af:74:03:17:55:aa:ed:13:9f:8e:
46:e4:59:02:b7:7f:46:0c:9d:69:f7:f6:5c:93:a9:b5:d5:03:
b0:65:1d:96:ee:cd:4e:ae:ef:68:ed:c8:59:d1:b4:9e:b5:ce:
f8:f5:ff:07:b2:77:2c:04:b0:e4:8f:85:d3:1a:f0:77:8b:b7:
4a:5e:b5:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:32:06 2025 by rpki-client