Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/7BABB4BE884C11EE81C71A38C4F9AE02.roa
File: 7BABB4BE884C11EE81C71A38C4F9AE02.roa (raw, json)
Hash identifier: ONoGfJ+gJpijxRUK1rQsHqqAlvkJVzOCgYW99Mw+yNg=
Subject key identifier: E6:38:11:01:03:F3:B7:E0:CE:9B:31:A1:79:94:06:E8:BD:17:86:AF
Certificate issuer: /CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D
Certificate serial: D9
Authority key identifier: 84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/7BABB4BE884C11EE81C71A38C4F9AE02.roa
Signing time: Wed 15 Jan 2025 04:26:42 +0000
ROA not before: Wed 15 Jan 2025 04:26:42 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 133126
IP address blocks: 180.94.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217 (0xd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D
Validity
Not Before: Jan 15 04:26:42 2025 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=67873902-1735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:76:4a:28:47:8a:91:26:20:d5:aa:ac:08:f0:
81:33:1b:00:ac:f3:48:17:0c:1b:20:d1:9a:9d:06:
00:aa:2d:0b:3b:8f:45:b2:be:47:04:9f:52:af:59:
a7:2e:38:83:79:3b:f7:5a:f6:90:df:3a:3f:aa:59:
06:af:d5:f3:d2:88:45:46:d2:36:44:fc:b0:5c:d7:
3e:47:39:01:aa:be:75:7b:74:c3:6b:9d:0a:1c:32:
71:8b:f4:0c:e8:f8:89:45:f3:57:7b:c7:67:3b:21:
13:90:5d:64:fe:31:63:ec:a7:6e:88:1d:fd:09:1d:
8d:08:de:de:a3:79:25:59:f6:fc:1a:7e:c0:5c:ca:
90:72:bc:74:7f:47:77:13:c9:0f:33:4a:8c:7a:54:
3c:7a:bb:4c:14:4f:0f:f3:da:f2:0a:63:1d:05:51:
41:60:c6:66:9c:4c:5b:ce:0e:10:d1:1e:97:d2:33:
74:b7:4c:4c:00:44:8d:94:95:02:6f:b6:07:5c:0e:
63:8d:14:c3:41:07:35:ff:a9:bf:40:e2:d5:93:2b:
bc:ac:e5:91:0a:b9:ea:3b:5d:bc:30:68:7a:2c:19:
ab:cc:a5:c6:7f:81:60:f4:7e:e8:2b:d6:2c:53:eb:
f6:42:f2:9f:eb:89:e7:99:e6:bf:a8:61:30:a8:d9:
37:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:38:11:01:03:F3:B7:E0:CE:9B:31:A1:79:94:06:E8:BD:17:86:AF
X509v3 Authority Key Identifier:
keyid:84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/7BABB4BE884C11EE81C71A38C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
180.94.0.0/24
Signature Algorithm: sha256WithRSAEncryption
21:1f:15:71:6f:bf:b2:4f:da:3b:9b:30:a2:22:15:80:3f:b7:
a5:6a:a3:bb:05:19:92:f0:1c:36:29:c1:d0:4b:54:14:9f:83:
63:47:4c:1e:82:8a:2d:bf:c1:bf:bc:61:38:5e:6f:c6:29:ae:
8e:ef:cb:85:5f:e8:33:3d:e7:27:cc:c7:a8:1b:0f:4e:bd:a1:
e9:8b:06:ef:51:5c:7d:27:36:d3:79:57:de:75:eb:4a:8b:c0:
af:85:1a:d5:e4:5c:d0:1a:cf:12:78:b6:2e:69:e6:ee:fb:88:
74:41:de:34:0c:12:ec:89:80:03:11:25:d5:e4:57:c4:6a:7b:
5b:d8:6d:ee:66:40:4c:73:97:e6:2b:b5:ed:51:c1:19:1f:eb:
03:58:a1:ee:ca:96:db:cd:93:78:89:4e:70:22:99:87:20:48:
2c:41:92:50:a3:43:13:8f:34:ce:08:49:f5:f4:0a:26:01:a4:
dd:dc:17:73:c4:65:ad:6c:56:33:9a:af:cb:8e:fa:bf:c2:0f:
57:e8:be:ce:79:e5:48:26:7e:f0:25:05:fd:e1:24:49:14:f9:
a1:04:dd:0d:f8:95:a1:ef:eb:58:cf:8e:e4:e4:3a:26:ea:c0:
34:cb:58:92:0e:40:1a:af:e4:91:5e:81:a3:d2:f0:20:a1:2f:
c4:f5:00:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 10:26:11 2025 by rpki-client