Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132275/27CD2F0A50D411E7AE665810C4F9AE02/A5C644C207F011E898D84A33C4F9AE02.roa
File: A5C644C207F011E898D84A33C4F9AE02.roa (raw, json)
Hash identifier: ESzGDh82M/JhA0Msy32UAprbb8DlTpd2yu9NppPjgKc=
Subject key identifier: BB:3F:D7:A2:11:8E:13:C5:D5:47:C6:A4:61:6B:6A:85:22:F8:AD:AB
Certificate issuer: /CN=A9132275/serialNumber=FCB6098B0D9E3157797037AF4B52C0B43DF08126
Certificate serial: 14D6
Authority key identifier: FC:B6:09:8B:0D:9E:31:57:79:70:37:AF:4B:52:C0:B4:3D:F0:81:26
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_LYJiw2eMVd5cDevS1LAtD3wgSY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9132275/27CD2F0A50D411E7AE665810C4F9AE02/A5C644C207F011E898D84A33C4F9AE02.roa
Signing time: Fri 30 Jul 2021 05:22:27 +0000
ROA not before: Fri 30 Jul 2021 05:22:27 +0000
ROA not after: Fri 30 Sep 2022 00:00:00 +0000
asID: 17882
IP address blocks: 64.119.16.0/24 maxlen: 24
64.119.17.0/24 maxlen: 24
64.119.18.0/24 maxlen: 24
64.119.19.0/24 maxlen: 24
64.119.20.0/24 maxlen: 24
64.119.21.0/24 maxlen: 24
64.119.22.0/24 maxlen: 24
64.119.23.0/24 maxlen: 24
64.119.24.0/24 maxlen: 24
64.119.25.0/24 maxlen: 24
64.119.26.0/24 maxlen: 24
64.119.27.0/24 maxlen: 24
64.119.28.0/24 maxlen: 24
64.119.29.0/24 maxlen: 24
64.119.30.0/24 maxlen: 24
64.119.31.0/24 maxlen: 24
66.181.160.0/24 maxlen: 24
66.181.161.0/24 maxlen: 24
66.181.162.0/24 maxlen: 24
66.181.163.0/24 maxlen: 24
66.181.164.0/24 maxlen: 24
66.181.165.0/24 maxlen: 24
66.181.166.0/24 maxlen: 24
66.181.167.0/24 maxlen: 24
66.181.168.0/24 maxlen: 24
66.181.169.0/24 maxlen: 24
66.181.170.0/24 maxlen: 24
66.181.171.0/24 maxlen: 24
66.181.172.0/24 maxlen: 24
66.181.173.0/24 maxlen: 24
66.181.174.0/24 maxlen: 24
66.181.175.0/24 maxlen: 24
66.181.176.0/24 maxlen: 24
66.181.177.0/24 maxlen: 24
66.181.178.0/24 maxlen: 24
66.181.179.0/24 maxlen: 24
66.181.180.0/24 maxlen: 24
66.181.181.0/24 maxlen: 24
66.181.182.0/24 maxlen: 24
66.181.183.0/24 maxlen: 24
66.181.184.0/24 maxlen: 24
66.181.185.0/24 maxlen: 24
66.181.186.0/24 maxlen: 24
66.181.187.0/24 maxlen: 24
66.181.188.0/24 maxlen: 24
66.181.189.0/24 maxlen: 24
66.181.190.0/24 maxlen: 24
66.181.191.0/24 maxlen: 24
192.82.64.0/19 maxlen: 19
192.82.64.0/24 maxlen: 24
192.82.65.0/24 maxlen: 24
192.82.66.0/24 maxlen: 24
192.82.67.0/24 maxlen: 24
192.82.68.0/24 maxlen: 24
192.82.69.0/24 maxlen: 24
192.82.70.0/24 maxlen: 24
192.82.71.0/24 maxlen: 24
192.82.72.0/24 maxlen: 24
192.82.73.0/24 maxlen: 24
192.82.74.0/24 maxlen: 24
192.82.75.0/24 maxlen: 24
192.82.76.0/24 maxlen: 24
192.82.77.0/24 maxlen: 24
192.82.78.0/24 maxlen: 24
192.82.79.0/24 maxlen: 24
192.82.80.0/24 maxlen: 24
192.82.81.0/24 maxlen: 24
192.82.82.0/24 maxlen: 24
192.82.83.0/24 maxlen: 24
192.82.84.0/24 maxlen: 24
192.82.85.0/24 maxlen: 24
192.82.86.0/24 maxlen: 24
192.82.87.0/24 maxlen: 24
192.82.88.0/24 maxlen: 24
192.82.89.0/24 maxlen: 24
192.82.90.0/24 maxlen: 24
192.82.91.0/24 maxlen: 24
192.82.92.0/24 maxlen: 24
192.82.93.0/24 maxlen: 24
192.82.94.0/24 maxlen: 24
192.82.95.0/24 maxlen: 24
192.82.100.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5334 (0x14d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9132275/serialNumber=FCB6098B0D9E3157797037AF4B52C0B43DF08126
Validity
Not Before: Jul 30 05:22:27 2021 GMT
Not After : Sep 30 00:00:00 2022 GMT
Subject: CN=61038c93-eb44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ed:84:c4:9c:24:f6:2a:c9:30:40:f5:e6:62:
a3:b0:bf:2d:62:90:31:ed:54:06:ec:27:86:52:56:
34:f9:66:68:cb:98:98:3e:4d:68:ba:d8:30:03:0f:
e2:36:51:7b:7d:ff:9b:0a:21:31:00:e3:0f:db:3a:
dc:b4:e6:62:7b:80:69:83:f1:a6:42:5f:1d:53:6f:
b7:ef:f5:7a:b4:fd:bd:15:b3:7c:22:ea:bb:4d:eb:
b7:6e:a4:b2:20:ba:8b:81:6e:bd:1b:69:7c:46:02:
d3:7d:69:68:4e:f0:45:61:75:61:20:15:17:2c:18:
d8:0f:61:42:f7:50:a5:2e:3f:a3:6d:df:5d:11:53:
77:71:1a:11:8f:8f:1f:2e:10:7b:c3:74:d5:fe:db:
49:04:98:19:08:61:54:34:39:75:29:ee:de:de:65:
ad:a4:ff:3d:21:69:30:6d:f0:fb:1c:6b:22:be:c8:
21:61:9e:0f:ea:de:30:f3:f9:5c:85:8e:72:f5:77:
db:a3:38:a2:b0:5d:78:74:2b:f0:80:7f:91:53:04:
56:85:a3:87:98:bf:1c:2c:5f:c5:1d:a0:23:1b:75:
05:9e:66:04:42:90:ca:50:09:10:cd:f0:d1:c5:17:
bc:6d:05:d4:65:5d:b6:59:2a:7d:16:d3:44:1e:99:
df:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:3F:D7:A2:11:8E:13:C5:D5:47:C6:A4:61:6B:6A:85:22:F8:AD:AB
X509v3 Authority Key Identifier:
keyid:FC:B6:09:8B:0D:9E:31:57:79:70:37:AF:4B:52:C0:B4:3D:F0:81:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9132275/27CD2F0A50D411E7AE665810C4F9AE02/_LYJiw2eMVd5cDevS1LAtD3wgSY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_LYJiw2eMVd5cDevS1LAtD3wgSY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132275/27CD2F0A50D411E7AE665810C4F9AE02/A5C644C207F011E898D84A33C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
64.119.16.0/20
66.181.160.0/19
192.82.64.0/19
192.82.100.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:98:ed:34:15:75:a1:12:82:99:c9:97:b9:99:3e:fe:b7:43:
66:3c:be:0e:ee:a0:87:b9:96:17:47:8a:3e:76:63:69:94:10:
0e:fe:75:e1:54:d5:fe:6c:2c:d1:f0:c9:bc:cd:30:5b:46:a1:
61:0a:b1:37:02:0b:7a:1c:8c:62:13:51:e9:30:0e:00:20:07:
fe:3f:9e:4b:b5:af:b7:27:23:57:12:34:5f:00:bf:78:3d:d0:
b3:d3:25:a0:f8:5d:cd:ec:76:37:e7:40:0d:d0:ec:13:57:d8:
31:ad:21:67:3a:d2:01:03:0e:cd:5e:ff:6b:23:4b:65:0f:2a:
48:37:ea:8d:8b:d1:4e:d0:fe:22:17:d9:89:18:1a:d9:a6:61:
36:a6:b7:85:c3:13:ac:19:38:64:b2:d7:18:68:7b:1c:b9:b2:
43:ff:c2:bd:64:2f:95:9f:37:e5:72:98:b4:0b:5b:58:f2:61:
8b:e8:2c:83:64:99:a3:7e:c4:59:2d:81:9c:bf:8d:20:95:cb:
3c:30:b4:2e:23:87:f5:0e:79:a7:12:29:cb:3b:77:c9:c9:db:
35:86:12:67:e8:0a:f9:a9:5a:e2:f5:6c:38:07:cc:9b:b6:18:
8c:f3:ba:c7:a1:9d:04:82:b9:05:fd:82:b4:ff:44:2a:59:77:
21:c9:ee:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-ams.rpki-client.org