Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/9AADC284366311EEB376DC3AC4F9AE02.roa
File: 9AADC284366311EEB376DC3AC4F9AE02.roa (raw, json)
Hash identifier: 7n+dP3DomtnmMtbxA80Fq/rZrQRw0nuu83uCWiKsr0A=
Subject key identifier: 01:61:0F:7B:2B:3E:39:A3:81:C9:95:01:6E:A6:30:59:C8:DE:5F:F1
Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934
Certificate serial: D7
Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/9AADC284366311EEB376DC3AC4F9AE02.roa
Signing time: Tue 25 Jun 2024 06:21:51 +0000
ROA not before: Tue 25 Jun 2024 06:21:51 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 23154
IP address blocks: 83.118.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 215 (0xd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919536C
Validity
Not Before: Jun 25 06:21:51 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=667a61fe-e40c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:78:98:f9:6b:56:fb:bf:dd:fe:2a:de:9f:ab:
29:52:83:e8:c1:df:40:8b:0a:59:6c:d7:91:c0:c9:
23:bf:c3:42:f2:5b:d5:82:cb:7f:f5:d1:fa:75:8f:
05:79:b7:85:55:ff:7b:c0:82:bc:4a:e9:b9:ac:ec:
5c:0c:0a:b7:63:a6:7d:a8:4c:aa:2f:2b:5e:62:82:
2e:95:08:6d:16:f5:b9:45:01:68:7c:6e:00:e4:55:
72:cd:60:df:93:db:cb:44:92:d8:76:2b:c7:9f:09:
13:b7:b8:c7:a9:85:2c:8b:39:b4:99:ca:cc:ec:73:
aa:ec:33:96:fe:16:71:1d:c6:49:50:07:24:2d:f6:
1c:0a:bc:ff:86:0f:ff:17:b0:39:12:c1:97:fd:20:
57:c7:19:e8:e9:73:35:1f:5a:38:be:d6:46:63:3e:
65:24:41:9f:49:d7:53:44:c2:b5:e3:ce:9d:24:28:
df:21:ca:20:7e:2d:4e:05:7e:4f:82:e1:c0:b8:2a:
26:2b:d4:4c:85:84:f1:68:b4:cb:70:94:70:b8:0d:
00:14:91:f6:2c:6b:4d:7d:33:25:c4:6b:4a:38:0a:
1d:2e:a7:93:e4:51:9d:b2:c6:46:a4:96:18:14:d0:
57:fb:2b:65:17:24:dc:bf:6f:ee:59:bc:97:a7:c1:
eb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:61:0F:7B:2B:3E:39:A3:81:C9:95:01:6E:A6:30:59:C8:DE:5F:F1
X509v3 Authority Key Identifier:
keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/9AADC284366311EEB376DC3AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
83.118.42.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:f8:41:9a:95:fa:1c:96:36:80:c3:37:90:fa:19:1b:fa:47:
37:77:8d:51:5a:21:a4:f6:89:de:cc:45:70:4e:be:85:db:4c:
a9:f3:40:ea:dc:f7:59:f0:37:b8:71:1d:19:08:b4:c5:69:1c:
95:a8:fe:43:29:9b:7e:86:7b:66:1b:30:23:61:f5:91:a6:df:
b2:1d:5d:eb:86:46:c6:f3:3e:d8:54:ad:9c:a7:8c:c6:51:e7:
7c:3c:a0:9d:54:16:9d:21:f3:5d:22:a3:26:64:55:33:76:b7:
92:9f:b4:7f:7e:55:50:72:54:09:11:65:d6:10:4b:f4:b0:8b:
a9:cd:58:fb:b7:6d:bb:36:0d:2e:43:ff:76:eb:16:85:85:8d:
1a:14:bd:19:02:bf:1f:7d:2b:2b:40:b7:b1:e6:7e:4d:7e:3e:
c1:13:b1:99:03:86:ae:ea:c7:31:72:2d:8c:e7:b2:0f:b6:35:
e1:47:fc:2b:fb:b8:23:64:c4:44:6a:9b:67:90:c0:21:8b:06:
2f:d5:ce:fa:69:fe:02:22:6c:01:47:83:10:d0:b4:e2:36:b9:
c5:7e:d5:59:7b:0e:a3:15:fd:f0:40:5a:b0:8d:25:71:27:69:
6d:87:96:cf:86:47:35:13:02:ab:cd:08:59:4e:e0:56:01:9a:
95:bd:e0:8d
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTUzNkMxMTAvBgNVBAUTKDcxRjQwMjE4QzFBRjQ3QzVFOTkzQTIxQTJCMjkyODRF
NEMzMkM5MzQwHhcNMjQwNjI1MDYyMTUxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjdhNjFmZS1lNDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA+3iY+WtW+7/d/iren6spUoPowd9AiwpZbNeRwMkjv8NC8lvVgst/9dH6dY8F
ebeFVf97wIK8Sum5rOxcDAq3Y6Z9qEyqLyteYoIulQhtFvW5RQFofG4A5FVyzWDf
k9vLRJLYdivHnwkTt7jHqYUsizm0mcrM7HOq7DOW/hZxHcZJUAckLfYcCrz/hg//
F7A5EsGX/SBXxxno6XM1H1o4vtZGYz5lJEGfSddTRMK1486dJCjfIcogfi1OBX5P
guHAuComK9RMhYTxaLTLcJRwuA0AFJH2LGtNfTMlxGtKOAodLqeT5FGdssZGpJYY
FNBX+ytlFyTcv2/uWbyXp8HrCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAFhD3sr
PjmjgcmVAW6mMFnI3l/xMB8GA1UdIwQYMBaAFHH0AhjBr0fF6ZOiGispKE5MMsk0
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy82REUzQ0U3QzM2
NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9jZlFDR01HdlI4WHBrNklhS3lrb1Rrd3l5
VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy
RkQxRkYyL2NmUUNHTUd2UjhYcGs2SWFLeWtvVGt3eXlUUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTUzNkMvNkRFM0NFN0MzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvOUFBREMyODQz
NjYzMTFFRUIzNzZEQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABTdiowDQYJKoZIhvcNAQELBQADggEBAF34QZqV+hyWNoDD
N5D6GRv6Rzd3jVFaIaT2id7MRXBOvoXbTKnzQOrc91nwN7hxHRkItMVpHJWo/kMp
m36Ge2YbMCNh9ZGm37IdXeuGRsbzPthUrZynjMZR53w8oJ1UFp0h810ioyZkVTN2
t5KftH9+VVByVAkRZdYQS/Swi6nNWPu3bbs2DS5D/3brFoWFjRoUvRkCvx99KytA
t7Hmfk1+PsETsZkDhq7qxzFyLYznsg+2NeFH/Cv7uCNkxERqm2eQwCGLBi/Vzvpp
/gIibAFHgxDQtOI2ucV+1Vl7DqMV/fBAWrCNJXEnaW2Hls+GRzUTAqvNCFlO4FYB
mpW94I0=
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:47:00 2025 by rpki-client