Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/FBCDF210490B11EC8E4D1136C4F9AE02.roa
File: FBCDF210490B11EC8E4D1136C4F9AE02.roa (raw, json)
Hash identifier: Qoz5g9368HMZWctAVVNXY9CZ9LyOlyI2/eGHTTT7kQw=
Subject key identifier: F7:97:BC:2F:A9:DB:89:9D:01:6B:29:F7:7E:DF:1D:89:AE:6E:77:3C
Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54
Certificate serial: 36C1
Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/FBCDF210490B11EC8E4D1136C4F9AE02.roa
Signing time: Sat 22 Mar 2025 15:01:09 +0000
ROA not before: Sat 22 Mar 2025 15:01:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 141450
IP address blocks: 39.34.160.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14017 (0x36c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A0832
Validity
Not Before: Mar 22 15:01:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=67ded0b5-adcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e5:2e:a2:e1:5f:a2:20:bc:bd:6d:c6:dc:30:
8d:b7:83:50:4d:09:73:df:f0:7f:d1:51:ca:d6:71:
c6:18:de:a7:be:5e:9e:51:c9:30:4a:53:c0:ac:e9:
69:54:e9:43:e5:b7:c6:85:b7:75:a6:bb:49:82:46:
4c:f6:fd:52:7d:87:20:18:d5:ee:3c:55:2b:ce:5d:
a7:eb:7b:c7:9c:22:b4:0b:e7:be:36:fa:54:90:92:
92:04:ac:dd:03:2f:22:6e:42:d1:6c:e9:0c:51:2d:
27:08:8a:0a:5f:01:0a:4e:87:0d:43:d8:b7:22:b8:
85:6d:2d:70:2e:e1:15:0a:23:a0:91:6d:c6:a0:e2:
40:8d:c5:d3:8b:ad:3b:f7:d0:54:e0:e5:8b:7b:58:
68:b4:72:62:a9:c7:a2:39:a3:20:77:ba:dc:e8:2c:
6f:6b:77:c6:35:26:b6:8f:a3:8e:18:e6:42:d3:81:
b9:0d:b4:a9:a7:2f:34:d6:53:17:10:ef:98:2b:f9:
48:26:78:27:d9:3e:01:7b:d7:69:24:58:2b:c2:36:
a1:68:75:7a:50:f1:ad:35:47:c8:78:8a:e7:ad:48:
78:eb:04:15:ed:46:cd:46:81:e2:9a:6e:d6:28:8a:
54:6f:d2:3c:33:67:1f:85:8a:0d:58:02:53:5c:6b:
07:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:97:BC:2F:A9:DB:89:9D:01:6B:29:F7:7E:DF:1D:89:AE:6E:77:3C
X509v3 Authority Key Identifier:
keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/FBCDF210490B11EC8E4D1136C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
39.34.160.0/20
Signature Algorithm: sha256WithRSAEncryption
3d:bd:6a:eb:ef:a0:c1:4c:d0:17:1d:4e:0b:58:09:24:25:04:
2b:3b:da:17:50:a8:33:4b:2c:06:41:ff:d3:b9:7b:43:ca:24:
4e:b8:cf:ea:6c:a0:38:58:db:22:e1:f1:6a:40:36:3b:ca:37:
5a:6f:a7:6a:b6:4b:19:f1:b8:ea:d0:3a:05:57:7a:46:e8:67:
32:5d:7e:6c:48:9b:49:2b:47:4f:ca:df:91:1f:64:74:79:6e:
4f:89:9c:40:e1:cb:10:6a:9d:c5:5a:58:37:97:62:67:42:0b:
03:d2:75:84:58:ff:ca:80:39:25:93:d3:68:04:38:ec:46:81:
8d:66:fa:b8:99:93:5a:bb:95:de:2b:22:5e:0d:4b:5d:04:a3:
aa:39:84:9e:3a:38:44:83:5b:08:5a:69:4f:3f:90:9d:7c:96:
a4:3b:f1:fd:87:6c:50:b9:15:8e:80:b4:06:7d:22:07:32:cd:
1e:b7:56:dc:bd:b5:2c:c4:87:7e:da:56:ee:1e:14:47:c1:e0:
97:bc:7e:81:81:84:00:f0:2a:43:df:0f:2c:60:fb:d7:40:15:
82:a8:d0:54:bb:a5:a8:fd:33:ba:91:77:c1:a6:2b:23:5e:23:
b3:4c:a5:11:8e:33:cd:2d:9e:53:de:c6:24:f7:01:3b:8c:aa:
7c:9f:0e:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 07:06:35 2025 by rpki-client