Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/D66D72562EAB11EF9B369566C4F9AE02.roa
File: D66D72562EAB11EF9B369566C4F9AE02.roa (raw, json)
Hash identifier: vgycUMJflkOKjlkv8zbw+R+KI7mdfPpws5+U5fcO9GA=
Subject key identifier: D7:69:1C:98:D8:88:16:DE:70:FC:42:3E:F1:95:59:7C:80:74:C1:76
Certificate issuer: /CN=A91B7BDC/serialNumber=EF25A925BFBD4CBAEF52456AB3B309B747040DFE
Certificate serial: 50
Authority key identifier: EF:25:A9:25:BF:BD:4C:BA:EF:52:45:6A:B3:B3:09:B7:47:04:0D:FE
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7yWpJb-9TLrvUkVqs7MJt0cEDf4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/D66D72562EAB11EF9B369566C4F9AE02.roa
Signing time: Wed 17 Jul 2024 02:12:26 +0000
ROA not before: Wed 17 Jul 2024 02:12:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 132139
IP address blocks: 185.81.70.0/24 maxlen: 24
185.81.70.236/31 maxlen: 31
185.81.70.238/31 maxlen: 31
185.81.70.240/29 maxlen: 29
185.81.70.248/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80 (0x50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B7BDC/serialNumber=EF25A925BFBD4CBAEF52456AB3B309B747040DFE
Validity
Not Before: Jul 17 02:12:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66972889-d11b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2e:08:04:c3:84:d8:7a:af:44:8f:50:4f:9c:
c8:05:c0:ad:1b:a7:96:91:4a:7d:ac:64:a0:b2:03:
50:f4:11:58:9e:16:4d:a1:0b:0f:c0:ea:24:5c:b9:
85:71:35:e0:d4:ba:6e:c1:5d:b3:a7:a4:4e:1d:a2:
ae:96:f6:82:2d:2f:9a:7a:64:22:27:f5:43:f0:f2:
04:40:c0:bf:1e:e8:5c:4e:d7:7d:42:a1:bf:06:d6:
5d:c3:5e:0d:4e:41:27:7e:3e:57:41:bf:42:a5:ff:
32:bd:1e:34:c6:e6:c8:32:d6:a3:70:ae:ad:c7:b3:
f4:e5:36:8e:7b:31:04:0a:61:50:25:3d:9f:12:68:
fa:90:94:6e:fb:10:dd:9a:dd:13:be:3f:ee:50:27:
51:aa:b5:61:9a:1b:4b:d5:b3:ba:29:af:64:6c:46:
ee:8e:d5:b5:da:8d:2a:18:b6:c4:6a:d3:53:88:7d:
61:55:e4:f5:fb:6b:cf:ec:95:b0:96:3a:fc:bb:b4:
35:a2:64:3a:10:99:d0:1b:a6:71:2f:dd:3f:0c:eb:
b6:2a:ea:06:ca:eb:e3:82:24:ea:ae:45:16:b0:9c:
04:05:f2:1b:7b:4d:03:ee:8e:94:73:51:94:aa:4c:
a7:f2:94:98:b1:75:c3:90:fe:09:eb:08:13:23:23:
58:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:69:1C:98:D8:88:16:DE:70:FC:42:3E:F1:95:59:7C:80:74:C1:76
X509v3 Authority Key Identifier:
keyid:EF:25:A9:25:BF:BD:4C:BA:EF:52:45:6A:B3:B3:09:B7:47:04:0D:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/7yWpJb-9TLrvUkVqs7MJt0cEDf4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7yWpJb-9TLrvUkVqs7MJt0cEDf4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/D66D72562EAB11EF9B369566C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
185.81.70.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:e0:69:af:24:52:2e:81:cd:2f:0d:1d:f7:cc:78:7c:b8:05:
4c:15:e9:fb:fc:1c:24:63:49:2c:02:68:3e:8b:72:e0:f8:b3:
2d:d0:ee:63:ba:48:82:3c:c1:43:69:ed:4b:8f:78:53:18:a1:
bb:2d:1c:76:42:32:e4:ef:af:68:1b:04:f6:a9:d9:44:9a:b1:
21:fa:8c:5a:76:33:a0:7d:10:81:19:c9:bf:45:fb:57:ff:7f:
6a:1d:e0:7e:47:ee:8c:7a:3b:aa:2d:c4:f7:76:85:98:92:c4:
d1:d5:a3:52:ad:d7:4e:ae:c4:b8:07:26:24:14:f0:52:76:74:
bf:bb:3b:c9:81:2a:1c:2c:88:94:3e:de:12:3e:0e:36:e3:44:
44:3f:85:3f:ff:9c:bd:03:b4:e5:2b:fe:8b:97:00:cc:69:a9:
f9:af:1a:49:5c:e8:77:b4:50:87:3b:13:9b:b6:ad:99:c8:f7:
0b:75:0f:dc:9d:5a:46:91:a2:f3:01:f0:73:bf:4c:4d:9a:5a:
28:40:7b:f3:a8:9b:73:ae:ee:62:a9:9a:36:11:be:71:42:1d:
b3:6c:a7:d1:80:78:fc:c8:46:9f:a1:f9:5f:0d:3c:2d:14:b1:
39:eb:91:8d:4e:fb:66:5d:b7:d8:17:e6:c2:3e:3a:d9:f8:f4:
bb:4a:1f:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 07:54:52 2025 by rpki-client