Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa
File: BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa (raw, json)
Hash identifier: Pysow4ghhE6bNtWAkyi1inOqPNBVAlZxtG0k9FkRDpM=
Subject key identifier: 7D:3A:99:BB:2E:71:FF:F5:EA:BD:DD:48:A6:6E:B2:08:3E:D2:D0:FF
Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54
Certificate serial: 36C4
Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa
Signing time: Sat 22 Mar 2025 15:01:13 +0000
ROA not before: Sat 22 Mar 2025 15:01:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 149844
IP address blocks: 182.189.92.0/24 maxlen: 24
182.189.93.0/24 maxlen: 24
182.189.94.0/24 maxlen: 24
182.189.95.0/24 maxlen: 24
182.189.96.0/24 maxlen: 24
182.189.97.0/24 maxlen: 24
182.189.98.0/24 maxlen: 24
182.189.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14020 (0x36c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A0832
Validity
Not Before: Mar 22 15:01:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=67ded0b9-e8b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:34:55:a7:bb:83:d1:94:1f:27:8e:89:d9:5e:
38:ac:fc:1e:bb:5d:c1:09:53:c0:f1:3f:ac:a2:ec:
72:c5:a9:d8:4c:61:7b:3f:26:6b:2a:77:e1:f9:e1:
17:21:3f:b3:5d:f6:58:4d:38:b6:2d:eb:56:2a:71:
e5:43:52:2a:6b:bf:d5:e8:ac:98:1c:55:36:b7:f8:
27:61:50:fc:dc:03:26:7c:70:7c:33:8f:3e:0f:02:
95:2e:63:2b:87:b0:bc:07:be:aa:87:73:77:1e:1b:
23:4a:2a:dd:9b:fb:6e:c4:f9:80:3f:97:66:c6:09:
18:ea:17:1a:05:ad:c3:55:9d:08:bf:66:70:2f:14:
95:a7:d0:e2:ca:fe:06:ca:cd:93:b3:64:51:c1:88:
c5:15:dc:0d:04:10:ab:19:ee:65:74:86:c7:e9:95:
a6:c5:cd:dd:3a:8d:5a:ad:32:ef:de:70:82:e9:55:
73:04:92:f2:e5:c8:79:43:27:9b:26:0b:bb:b6:de:
a1:72:32:03:00:6f:cb:e9:fa:3c:d2:8d:85:c7:ea:
3d:01:19:c2:81:d3:24:93:45:44:81:e8:60:0e:c1:
3f:a1:fd:7d:72:ac:90:1b:1e:38:7d:2a:dd:c0:9a:
6f:a0:78:c8:f6:da:2a:fa:7b:98:c8:69:90:d8:b4:
df:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:3A:99:BB:2E:71:FF:F5:EA:BD:DD:48:A6:6E:B2:08:3E:D2:D0:FF
X509v3 Authority Key Identifier:
keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
182.189.92.0-182.189.99.255
Signature Algorithm: sha256WithRSAEncryption
08:e4:50:fa:9e:c1:c6:71:0d:af:8e:a0:3b:29:df:7f:f5:0e:
05:73:c7:b6:3c:33:ba:58:20:3c:e2:9e:54:b1:24:d0:b7:9e:
00:64:ed:b4:65:4f:65:7c:8b:c6:8a:cc:b5:bb:df:8b:19:7d:
8f:4c:40:96:c1:c4:8d:75:3d:26:a5:19:93:84:58:c5:4c:ff:
43:5e:8a:37:05:93:82:07:8a:55:dd:60:09:09:54:71:3f:4b:
6f:ff:c7:c8:bc:c4:18:99:b4:8d:56:57:36:9d:12:50:eb:61:
13:70:b4:d9:30:e7:9a:1b:25:77:51:8a:25:a9:dd:f3:db:cb:
9c:36:80:52:ed:d4:b7:37:22:91:28:58:ff:5d:25:31:45:ad:
88:c9:2d:d6:d6:f3:b1:4c:8b:de:df:92:c6:0e:3f:21:6c:da:
af:fb:b1:ef:20:97:0b:c2:80:10:4a:a9:b6:18:6d:1e:7d:f8:
6e:54:fd:81:ac:16:b1:5e:0d:63:eb:cd:53:a1:91:53:be:4d:
34:2a:de:a3:d6:7f:41:ed:bf:13:77:f0:2b:55:e7:df:02:dd:
01:22:b1:55:89:74:1e:60:db:4e:0d:39:d6:35:44:f9:17:fe:
2e:45:85:f2:f7:d0:7c:a8:10:4f:53:18:ab:98:eb:f7:2c:50:
c2:f1:2a:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 06:01:52 2025 by rpki-client