Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5105/DD720B8630F111EBA201424DC4F9AE02/539B27DEF87611EF8366B718C4F9AE02.roa
File: 539B27DEF87611EF8366B718C4F9AE02.roa (raw, json)
Hash identifier: dW0WGopRgwgQ87idBdN0CexlkxreA2maAF6RZOSz5mg=
Subject key identifier: 73:0F:4D:31:F9:50:71:E4:9A:36:3D:04:30:BC:6D:96:9A:96:8C:DD
Certificate issuer: /CN=A91C5105/serialNumber=08E08BA022A39DB4AB3F3BD8D05EE97194B17682
Certificate serial: 0711
Authority key identifier: 08:E0:8B:A0:22:A3:9D:B4:AB:3F:3B:D8:D0:5E:E9:71:94:B1:76:82
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/COCLoCKjnbSrPzvY0F7pcZSxdoI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C5105/DD720B8630F111EBA201424DC4F9AE02/539B27DEF87611EF8366B718C4F9AE02.roa
Signing time: Mon 03 Mar 2025 21:27:37 +0000
ROA not before: Mon 03 Mar 2025 21:27:37 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 26042
IP address blocks: 36.255.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1809 (0x711)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C5105
Validity
Not Before: Mar 3 21:27:37 2025 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=67c61ec8-344f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f6:46:05:5b:43:ea:10:44:7e:c6:62:a1:00:
31:6b:ac:06:bf:73:c1:83:50:d1:40:fd:26:c7:f2:
ec:39:1b:2d:83:05:ff:02:f5:e2:2f:88:96:a4:2e:
f8:fb:21:25:9b:13:cb:69:1e:2d:38:5e:8d:54:d3:
8c:c7:7e:7c:e3:aa:d7:58:e7:42:04:88:2e:ad:5a:
33:ab:27:0e:22:37:be:2e:ca:fa:56:eb:92:55:9d:
98:77:38:a0:92:b4:d1:ad:14:9f:ce:67:a9:e2:30:
59:00:b9:6b:41:fd:16:91:a2:2f:21:78:a0:89:d7:
d6:c9:51:90:2e:6b:0a:59:cd:23:53:cd:ba:59:97:
9b:3d:15:3f:bd:41:85:f5:77:71:2e:18:12:2d:90:
bc:c4:a1:6c:34:16:04:a6:cc:b5:0e:af:f9:f0:80:
80:3c:12:df:05:e3:f9:b9:ab:02:e1:4f:b0:06:11:
13:fd:6a:16:f9:4b:57:69:2b:0e:46:0b:8e:6e:ea:
80:0b:72:ec:54:78:a1:2a:94:6e:05:12:be:38:8d:
d9:c7:50:1c:b8:a6:86:6b:91:2a:5b:19:9c:5c:67:
a8:96:dc:bf:16:30:d3:07:3f:11:38:61:11:8e:63:
59:be:5e:66:34:d0:77:b6:32:c1:97:ff:4c:d8:89:
de:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:0F:4D:31:F9:50:71:E4:9A:36:3D:04:30:BC:6D:96:9A:96:8C:DD
X509v3 Authority Key Identifier:
keyid:08:E0:8B:A0:22:A3:9D:B4:AB:3F:3B:D8:D0:5E:E9:71:94:B1:76:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C5105/DD720B8630F111EBA201424DC4F9AE02/COCLoCKjnbSrPzvY0F7pcZSxdoI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/COCLoCKjnbSrPzvY0F7pcZSxdoI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5105/DD720B8630F111EBA201424DC4F9AE02/539B27DEF87611EF8366B718C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.255.77.0/24
Signature Algorithm: sha256WithRSAEncryption
44:c6:e7:66:16:1e:e8:42:6c:2f:dc:84:53:9e:df:f9:e1:d0:
91:8a:62:37:46:82:b4:dd:18:24:5d:af:a6:42:e0:78:f2:02:
a3:2c:8b:69:f0:6b:32:16:06:04:5c:a0:7c:b3:1e:71:e6:fa:
f7:6e:62:3a:1b:9f:c7:8f:a9:dc:a6:af:32:4d:49:13:35:bc:
38:79:da:b3:b3:79:0c:69:a8:e2:83:51:0a:f7:57:bc:1f:67:
03:3c:ba:ee:65:2a:6e:bf:d2:43:ef:84:fe:73:fe:d8:3f:12:
1c:91:a8:9e:e3:a5:68:69:0b:06:50:a9:b9:f4:bc:73:15:9f:
43:45:ec:ad:36:82:aa:81:3b:7c:ee:58:5e:46:f2:70:62:8b:
07:d0:5a:84:f7:74:e6:29:72:9d:7d:f8:da:75:32:88:30:4c:
7b:81:d5:1a:d1:1c:16:ac:32:b9:d6:af:3f:00:ce:27:33:d3:
dc:bc:7c:e1:5d:ba:d6:8f:e6:c0:b9:71:ed:06:8f:59:0d:86:
be:b6:e6:96:1f:67:85:d5:0f:bc:59:f1:ca:be:22:de:32:93:
95:83:05:c6:7b:93:c2:9a:19:26:c8:e3:8e:74:5d:f6:03:00:
0a:a5:0f:58:73:a4:8e:02:29:fe:89:65:7d:11:40:72:29:42:
8f:fc:44:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 17:26:15 2025 by rpki-client