Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9129AAC/DB9101D0391011E9A0E25B52C4F9AE02/A54F34E6391211E99E31F655C4F9AE02.roa
File: A54F34E6391211E99E31F655C4F9AE02.roa (raw, json)
Hash identifier: laxQbJ1xt5ClRhn+GPHp2Wge2FLZILqWBywor7mlyY4=
Subject key identifier: 94:AC:4D:98:46:EB:BB:DE:BD:1D:E8:29:92:59:EB:49:7E:7C:74:7B
Certificate issuer: /CN=A9129AAC/serialNumber=3380B4CFEE3AF81F8CFDB96025D51088A129640B
Certificate serial: 0ECA
Authority key identifier: 33:80:B4:CF:EE:3A:F8:1F:8C:FD:B9:60:25:D5:10:88:A1:29:64:0B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4C0z-46-B-M_blgJdUQiKEpZAs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9129AAC/DB9101D0391011E9A0E25B52C4F9AE02/A54F34E6391211E99E31F655C4F9AE02.roa
Signing time: Sat 01 Oct 2022 18:55:29 +0000
ROA not before: Sat 01 Oct 2022 18:55:29 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 43959
IP address blocks: 2403:5180:20::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3786 (0xeca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9129AAC/serialNumber=3380B4CFEE3AF81F8CFDB96025D51088A129640B
Validity
Not Before: Oct 1 18:55:29 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=63388d21-9d85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f4:c6:76:b5:46:6c:53:04:02:b5:5a:bd:ea:
22:d8:44:5d:2b:a6:a7:e7:b8:e7:56:6f:30:c3:ef:
e1:4f:6f:4a:8b:a2:35:d7:08:8a:74:a7:aa:13:7c:
53:ea:15:82:f2:10:23:c4:b7:54:23:7a:37:ae:3c:
0c:31:76:f1:40:4e:1c:f9:37:db:61:37:fd:aa:03:
d2:6b:b0:c6:9c:7c:69:c2:9c:33:e6:ea:ce:68:4c:
e0:c2:d5:a7:65:36:8f:da:6a:5a:8b:b6:cf:4c:6f:
72:69:5f:86:87:1f:6a:fe:42:3d:08:83:d5:76:4f:
d5:ce:f0:a6:fb:06:00:5b:88:0b:a1:77:3f:4b:5b:
f3:b4:04:2b:d0:c3:6b:7c:34:4f:cc:46:7d:4f:7e:
12:f4:6c:a3:6a:1e:e3:6f:f4:da:71:c7:a6:07:4f:
45:5a:d8:af:28:57:dc:33:21:d9:7d:a3:7f:0c:36:
6d:0a:5f:cf:69:a5:f4:90:03:e1:31:7b:18:c0:31:
67:83:ec:a0:4d:78:66:11:18:be:32:52:82:92:83:
2a:a4:18:b9:dd:65:c6:ca:54:c6:6b:c6:92:64:be:
71:58:c2:3a:8d:b9:0f:6e:fc:11:c1:85:aa:85:b5:
3a:79:af:b4:84:f2:71:ed:13:d9:80:0c:bc:c4:1d:
2f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:AC:4D:98:46:EB:BB:DE:BD:1D:E8:29:92:59:EB:49:7E:7C:74:7B
X509v3 Authority Key Identifier:
keyid:33:80:B4:CF:EE:3A:F8:1F:8C:FD:B9:60:25:D5:10:88:A1:29:64:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9129AAC/DB9101D0391011E9A0E25B52C4F9AE02/M4C0z-46-B-M_blgJdUQiKEpZAs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4C0z-46-B-M_blgJdUQiKEpZAs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129AAC/DB9101D0391011E9A0E25B52C4F9AE02/A54F34E6391211E99E31F655C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:5180:20::/48
Signature Algorithm: sha256WithRSAEncryption
36:70:b4:e7:c3:f3:68:48:a7:78:12:51:f5:f5:09:37:99:5a:
77:15:36:40:ee:16:1f:47:d3:a4:30:7f:ce:fd:95:a2:a1:c3:
f2:7e:7c:f7:94:f2:d9:30:56:39:4c:aa:8f:96:95:63:89:38:
15:ba:f2:0b:6f:f8:5a:4e:42:92:5b:64:73:10:17:cc:10:52:
39:da:76:ce:a2:37:35:b9:9a:55:4e:f2:06:f3:e4:3d:39:72:
3e:69:58:a1:5a:86:0d:c3:b9:82:c3:a5:76:b1:05:9a:6f:c7:
27:40:22:35:ac:70:26:59:95:77:ab:30:06:7f:7e:cb:72:cd:
87:5a:fa:9e:8a:0f:1c:84:e3:25:20:2c:fb:b4:78:7c:91:e4:
64:88:f3:fc:7f:25:fd:e6:2c:a0:a2:57:d7:47:23:0d:ef:23:
6a:a1:dd:93:ad:ba:ce:c6:7f:84:9c:ac:60:47:19:e5:38:96:
38:2e:7b:57:80:82:0a:75:b8:18:c1:45:34:a2:44:f4:12:15:
73:2a:b4:c0:43:b6:d1:83:11:72:16:bd:77:03:37:e1:43:68:
db:e5:7d:7d:41:14:35:b3:a4:bc:c8:8d:a6:05:5d:97:61:4a:
bf:20:85:db:5a:ec:cc:62:5b:1c:f6:03:0e:28:8c:e8:00:e6:
d2:fd:a4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-ams.rpki-client.org