Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/97F664EC366311EEB376DC3AC4F9AE02.roa
File: 97F664EC366311EEB376DC3AC4F9AE02.roa (raw, json)
Hash identifier: jVgsFzrdDjMbKaPnRbnUFCbiiTiaCFys2RcAiFEFE1Y=
Subject key identifier: DC:98:01:CF:9A:63:8C:76:B7:2F:2B:7B:5D:18:0A:73:E7:80:E3:D8
Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934
Certificate serial: D2
Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/97F664EC366311EEB376DC3AC4F9AE02.roa
Signing time: Tue 25 Jun 2024 06:21:46 +0000
ROA not before: Tue 25 Jun 2024 06:21:46 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 138427
IP address blocks: 83.118.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210 (0xd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919536C
Validity
Not Before: Jun 25 06:21:46 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=667a61f9-6b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5c:b9:73:7f:29:3b:2c:93:59:09:93:e3:5f:
6e:77:d3:e7:4f:ea:b2:70:c8:c2:e0:4e:90:85:cc:
4a:84:7c:2b:38:6a:c7:7b:a1:10:02:bc:ae:71:e0:
78:f4:0e:f9:b8:d3:ba:12:bf:a8:43:bb:ec:9e:7a:
fd:9e:f1:e4:eb:69:24:ee:35:39:12:b2:68:ea:65:
34:b7:71:68:65:c3:76:c1:8b:79:dc:bc:c8:98:77:
56:0e:fd:21:d3:9b:65:2c:5d:f2:9d:4d:68:6a:96:
f8:17:74:5c:bc:6b:7d:6d:d5:31:22:2e:8f:a8:1f:
ab:ca:3b:9d:8b:c2:e5:c3:89:b4:09:6d:0f:3a:20:
de:67:44:0b:40:69:3e:bd:82:b4:e2:4e:71:4c:05:
af:61:85:23:3d:36:09:19:ce:08:aa:03:7d:b3:96:
8d:bd:2d:a1:ba:af:5e:7e:2b:20:c9:0b:f5:62:5d:
94:30:cb:52:5d:70:f7:76:5a:05:8d:f5:37:03:f2:
df:51:42:2a:c4:6e:14:82:70:cb:8e:62:aa:b4:d2:
39:6e:69:f4:06:4c:be:f9:a0:bc:ea:e0:13:17:97:
c8:13:91:54:8d:cf:6b:b4:ab:63:d5:96:32:60:cd:
f9:ff:ff:38:b4:73:27:58:e4:ff:b5:1c:4d:ef:51:
34:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:98:01:CF:9A:63:8C:76:B7:2F:2B:7B:5D:18:0A:73:E7:80:E3:D8
X509v3 Authority Key Identifier:
keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/97F664EC366311EEB376DC3AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
83.118.96.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:c4:f8:77:a6:58:68:9e:66:b3:cc:ad:e3:9d:6e:63:3a:47:
7e:88:7d:64:bc:9c:ca:6a:e3:5b:0e:52:e4:d1:99:ec:6b:e4:
36:83:e8:f7:ff:df:8f:67:32:95:34:e7:56:50:6b:11:2e:c4:
c1:13:31:d9:6b:b4:b5:c8:f5:f0:99:a2:b3:f7:c2:c1:a2:e8:
69:a9:06:8e:fd:63:49:b1:f2:c6:13:2f:5c:bb:60:4c:4e:e3:
4a:04:29:9d:dd:eb:5a:30:1c:28:28:e4:9f:2e:63:58:f5:65:
53:67:37:dd:97:f9:06:2d:cd:22:a3:59:c9:42:ab:e8:8c:2c:
cb:96:89:54:44:7c:b3:dd:c5:09:40:17:30:9d:ec:e0:a0:38:
95:21:37:d9:f5:9e:b9:33:a2:fb:3f:1e:60:21:3f:a5:7a:70:
45:35:f7:cb:2e:8e:ae:a9:42:85:e8:fc:11:ab:d6:08:9e:2b:
d0:d7:db:3b:2d:68:39:90:d3:fa:76:3a:8d:96:c1:88:55:33:
8e:a1:b7:bf:1a:47:55:ac:df:d1:7e:7e:20:36:a5:71:90:f5:
fa:4b:fc:0e:68:8f:1d:0a:a8:72:69:47:37:e6:dc:a5:71:3f:
bf:4f:42:35:13:2f:81:e9:5d:01:53:5c:bf:2f:45:6c:73:be:
56:3f:31:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:18:17 2025 by rpki-client