Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/D59CCD02345411ED946BC817C4F9AE02.roa
File: D59CCD02345411ED946BC817C4F9AE02.roa (raw, json)
Hash identifier: UJ7//LRk1Wrb/HQHKkXx3x63vqsHTxnzMfgU14Eivf8=
Subject key identifier: 1D:82:DD:33:E5:6C:49:AF:3B:D0:D8:0C:89:BF:C9:5C:76:03:D5:98
Certificate issuer: /CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6
Certificate serial: 0224
Authority key identifier: D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/D59CCD02345411ED946BC817C4F9AE02.roa
Signing time: Wed 21 Dec 2022 03:43:40 +0000
ROA not before: Wed 21 Dec 2022 03:43:40 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 45458
IP address blocks: 147.50.192.0/19 maxlen: 19
147.50.192.0/24 maxlen: 24
147.50.195.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 548 (0x224)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6
Validity
Not Before: Dec 21 03:43:40 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=63a280ec-fa4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b1:1d:8d:05:e7:a3:61:49:fa:aa:1d:24:d3:
91:96:b7:ac:89:07:aa:73:c3:02:28:9c:d0:4a:e4:
32:d4:37:35:ee:7f:af:17:20:f0:2e:c7:84:cf:da:
83:23:2d:e4:f8:92:9a:15:c2:fa:a7:61:9d:1c:59:
51:64:a8:16:50:91:2f:5e:cc:f9:71:6f:b3:bc:a5:
98:4e:17:1d:27:30:ef:f1:ef:f5:c0:c3:4f:56:00:
0a:80:98:1d:08:6f:b7:9d:2a:1e:87:71:d9:f2:16:
c7:01:bd:0e:56:fe:e8:26:97:a5:a7:8f:83:5d:c2:
66:48:c8:f2:55:73:22:7e:5e:8a:b8:f3:5b:97:8e:
39:d9:9d:36:44:3b:db:1c:73:a2:28:30:da:11:61:
d6:15:29:08:15:61:b9:42:c7:2e:11:4b:69:bb:97:
13:ea:1f:01:66:7b:bd:87:c2:83:15:1c:fa:27:09:
81:fc:ae:7e:e3:16:3a:bc:ba:fe:0b:29:ec:ac:91:
8e:fb:05:5d:27:e0:bc:d2:3e:e0:b6:1c:48:85:d9:
ed:c2:81:de:5d:8a:20:ad:09:57:fd:4c:ae:b9:0f:
6a:c8:a5:cd:8b:40:23:87:f3:89:e8:44:70:d7:69:
9e:3c:4e:5c:32:42:ce:0f:87:f8:11:19:4a:e7:7b:
85:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:82:DD:33:E5:6C:49:AF:3B:D0:D8:0C:89:BF:C9:5C:76:03:D5:98
X509v3 Authority Key Identifier:
keyid:D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/D59CCD02345411ED946BC817C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
147.50.192.0/19
Signature Algorithm: sha256WithRSAEncryption
42:90:63:7c:30:86:d2:6a:b2:3b:74:a9:cd:e3:bc:1b:5e:63:
ef:9a:b4:96:b8:71:bd:49:b7:9c:4f:83:0f:62:46:07:75:c1:
d0:4e:35:63:f2:04:1e:0d:bd:3d:b7:f5:18:5d:04:3d:cc:1c:
d4:5a:6c:3e:4e:c7:9f:53:ae:1c:03:72:75:53:57:00:76:a4:
84:29:43:8e:bf:26:d3:be:69:ea:c4:d9:ee:55:22:27:ea:24:
cb:69:c2:ef:cf:6b:5f:b8:09:b8:4e:75:8f:79:92:c3:46:33:
11:4f:bd:85:b0:c6:fd:a4:82:15:a0:da:16:2d:1b:4a:d2:e3:
e2:3f:5e:0e:24:6f:8c:ad:a3:ae:74:55:9a:d4:95:ee:5c:12:
5f:44:ed:f9:60:c7:f8:79:f6:94:a0:25:a9:a2:96:17:8b:2c:
72:5e:48:c9:e1:33:ac:61:cb:bc:10:6e:a5:35:4e:4c:62:bc:
89:b2:61:20:cf:d4:c6:42:6f:ae:70:1f:fb:e6:30:0b:62:24:
1e:0a:a7:56:1f:df:81:32:e2:29:43:d8:f0:cc:dd:14:bb:9c:
86:12:5f:ad:5d:d6:cb:72:3d:02:d8:e1:07:c8:29:d5:3c:51:
f0:fe:de:5d:bb:a9:6b:71:fa:1e:c9:fe:33:8a:b8:e6:9e:29:
ec:35:15:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:35 2023 by rpki-client on console-ams.rpki-client.org