Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/A99BC9D64CAC11EDA3BF485AC4F9AE02.roa
File: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (raw, json)
Hash identifier: M0LQ0bOgsXho1IONj8CXX3n4kpo/nKJprHxKVrxONpQ=
Subject key identifier: 41:E4:14:4E:6A:BC:AB:15:58:4C:BB:73:60:6A:F9:72:5B:ED:C7:0F
Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688
Certificate serial: 01C3
Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/A99BC9D64CAC11EDA3BF485AC4F9AE02.roa
Signing time: Thu 13 Feb 2025 02:13:45 +0000
ROA not before: Thu 13 Feb 2025 02:13:45 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 149440
IP address blocks: 193.57.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451 (0x1c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FDAD4
Validity
Not Before: Feb 13 02:13:45 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67ad5559-795c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c8:4b:c9:d1:91:2f:8c:48:fa:e6:43:57:3d:
b4:27:5f:7f:f7:88:0a:a5:34:2f:49:71:73:04:47:
ba:9b:d2:d9:6f:fc:7c:e0:4e:5e:e5:21:12:9a:48:
59:c5:40:e1:fd:89:d2:89:3f:6d:73:01:c3:f9:46:
f3:6c:ae:b9:50:a4:de:ce:62:67:76:72:46:8d:d5:
cd:5f:6d:11:8d:a3:25:9b:56:5b:82:b8:9f:40:84:
89:76:d9:88:d9:28:d6:48:88:39:17:b0:79:9c:6f:
90:a9:27:a9:71:0e:2d:64:45:45:d7:b1:01:f9:e8:
e0:58:fc:5e:8c:e4:1f:98:8d:6f:47:eb:c3:66:5d:
12:e8:6e:a8:67:42:f6:b3:21:f5:28:99:7e:d6:cf:
95:cf:24:f6:af:98:47:88:06:22:34:3b:07:d3:fa:
48:06:57:14:27:82:10:8b:1f:cb:25:d5:03:72:a4:
9e:4a:7c:cd:74:47:a3:df:35:57:ac:96:e1:29:bc:
41:dd:c8:00:4d:47:95:1e:6c:a7:64:2a:bc:1f:01:
41:b2:a1:11:c5:c6:03:4a:c6:a9:e3:ae:b7:ea:f0:
05:03:6b:c1:5a:84:05:6f:e9:f9:77:a5:f4:6f:10:
ca:5c:4b:02:ce:4f:3b:9d:33:bd:eb:c6:cc:f2:50:
b2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E4:14:4E:6A:BC:AB:15:58:4C:BB:73:60:6A:F9:72:5B:ED:C7:0F
X509v3 Authority Key Identifier:
keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/A99BC9D64CAC11EDA3BF485AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
193.57.57.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:c8:f7:1c:a3:2a:09:41:71:f4:e7:f4:99:14:f3:ae:30:cc:
66:f2:d8:10:6a:cd:bc:12:fb:0e:36:4c:0e:40:2a:12:72:5f:
ed:88:9a:2c:1a:65:2d:aa:2c:d0:a2:44:ec:27:98:6b:d3:23:
c5:b1:a5:a4:20:c7:69:54:1a:be:a9:84:a0:12:53:8c:e3:ba:
58:4a:20:13:13:b2:1c:b7:38:62:04:c8:f8:6f:db:12:20:5c:
93:aa:ef:41:23:18:50:00:09:eb:0b:19:02:df:e8:60:6b:c6:
06:25:34:e3:a2:0f:5b:d0:38:be:49:e7:d4:8e:a5:89:0d:27:
0d:e8:9f:83:0b:8e:c4:ed:cc:0b:3f:89:b8:9a:0b:16:2b:7c:
9b:81:18:df:36:e8:a9:9c:c6:4a:f3:a9:1b:8f:5b:e5:91:82:
04:df:60:47:cf:e0:d4:bd:ad:e9:49:9b:99:8f:96:55:c1:96:
a8:35:e7:af:be:9b:0c:e5:3c:26:ef:71:5a:32:57:16:23:41:
1e:dc:7e:e8:3d:72:56:ea:ff:4a:40:a3:d5:12:57:19:dd:6a:
43:35:8f:66:cc:bd:df:49:d0:46:e3:bb:ce:a0:4e:4a:9b:46:
90:1d:c3:98:a9:f0:04:7d:39:92:3f:ce:7b:59:b9:75:f2:99:
17:e6:bd:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:27:23 2025 by rpki-client