Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9160904/347274EC6F4911E8BEB6AE65C4F9AE02/29807E40B3EE11E9A813740DC4F9AE02.roa
File: 29807E40B3EE11E9A813740DC4F9AE02.roa (raw, json)
Hash identifier: vJqAVsrtA/KMXnGO/m580NlDXtUDvroUNH8B8xcT7lg=
Subject key identifier: 2F:4C:86:AE:93:6E:93:FF:F1:CA:BD:E9:EA:76:0B:08:2B:61:89:DC
Certificate issuer: /CN=A9160904/serialNumber=521C5AFB60153CED342CD3C2674D315E4245022A
Certificate serial: 107E
Authority key identifier: 52:1C:5A:FB:60:15:3C:ED:34:2C:D3:C2:67:4D:31:5E:42:45:02:2A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uhxa-2AVPO00LNPCZ00xXkJFAio.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9160904/347274EC6F4911E8BEB6AE65C4F9AE02/29807E40B3EE11E9A813740DC4F9AE02.roa
Signing time: Mon 31 Jan 2022 06:26:38 +0000
ROA not before: Mon 31 Jan 2022 06:26:38 +0000
ROA not after: Fri 31 Mar 2023 00:00:00 +0000
asID: 16509
IP address blocks: 43.250.192.0/24 maxlen: 24
43.250.193.0/24 maxlen: 24
122.248.192.0/18 maxlen: 24
175.41.128.0/18 maxlen: 24
2400:6500::/32 maxlen: 32
2400:6500:ff00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4222 (0x107e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9160904/serialNumber=521C5AFB60153CED342CD3C2674D315E4245022A
Validity
Not Before: Jan 31 06:26:38 2022 GMT
Not After : Mar 31 00:00:00 2023 GMT
Subject: CN=61f7811d-a590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:43:9f:1c:6a:e8:1a:f1:19:00:55:c4:e6:36:
76:ca:a9:06:c9:f4:3e:30:1c:2b:1d:c5:2e:9e:48:
fb:78:04:a4:20:0b:5f:33:c6:55:fb:4e:05:dd:9a:
81:1d:24:8d:a0:81:88:0d:71:cc:61:34:77:2a:dd:
b8:2d:0d:52:5c:a6:f0:1b:c0:28:81:db:fe:77:fe:
ee:fb:67:e3:0d:20:15:2b:bf:d5:52:f0:73:bf:2d:
a8:d1:00:02:55:6d:f2:bd:94:05:09:b7:ef:00:8a:
c1:19:e3:ee:2d:73:f4:4e:c3:56:38:26:1d:88:0a:
a7:dc:b7:d8:7b:cd:06:1c:94:5d:be:0e:15:f5:34:
82:4e:b2:cd:ce:3a:b7:e9:0a:ea:97:ac:9c:c9:18:
97:4d:51:62:b8:bb:7c:03:7f:c8:f9:7f:f0:46:29:
6b:45:93:8b:32:c2:19:38:90:0b:7a:8f:e1:16:c0:
a5:27:ad:3b:77:da:3e:45:80:4a:a8:24:40:fc:1a:
9a:85:70:8e:9b:c4:2e:84:86:db:e9:63:75:ee:ee:
aa:47:22:ac:46:83:6a:87:a8:5a:21:b6:53:6d:40:
85:66:47:ac:03:a6:6b:a4:c4:e8:5b:65:05:cc:e3:
8b:2a:51:40:e8:91:7a:35:fb:ed:7d:47:7b:0d:32:
1e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:4C:86:AE:93:6E:93:FF:F1:CA:BD:E9:EA:76:0B:08:2B:61:89:DC
X509v3 Authority Key Identifier:
keyid:52:1C:5A:FB:60:15:3C:ED:34:2C:D3:C2:67:4D:31:5E:42:45:02:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9160904/347274EC6F4911E8BEB6AE65C4F9AE02/Uhxa-2AVPO00LNPCZ00xXkJFAio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uhxa-2AVPO00LNPCZ00xXkJFAio.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160904/347274EC6F4911E8BEB6AE65C4F9AE02/29807E40B3EE11E9A813740DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.192.0/23
122.248.192.0/18
175.41.128.0/18
IPv6:
2400:6500::/32
Signature Algorithm: sha256WithRSAEncryption
3d:a8:b9:bf:fe:bb:a3:87:5d:01:8e:b5:6e:4d:30:a8:f4:58:
30:74:78:e5:2d:b4:2d:dc:96:63:44:4f:4e:29:25:1b:d4:5a:
e4:52:d6:aa:bf:d3:b0:0c:c1:13:38:46:f4:52:f1:1c:02:d5:
1e:d6:fa:03:0f:e3:18:e1:8e:e1:a9:8a:d0:9a:29:e6:54:63:
95:27:7a:91:52:7d:d8:a0:00:d7:e1:f2:a5:07:6e:5d:77:7b:
8b:4f:7d:c5:40:05:09:d6:b4:78:3e:41:cb:31:42:fc:fa:57:
c9:9d:56:b1:b2:1c:39:18:dd:88:e3:61:6d:70:d7:bb:1b:b1:
df:49:3f:2d:b4:e1:69:1e:3d:f4:3f:ae:cf:bc:43:49:05:4a:
2a:c9:37:05:64:a4:82:bf:4d:98:7b:a6:ea:f5:2e:f8:bd:ba:
7a:e3:81:46:b2:7a:d7:9d:7a:a4:7f:f1:74:17:3a:2e:00:79:
b1:06:5e:00:09:ce:5a:a1:df:83:39:20:7b:f6:d6:9e:45:7b:
bf:99:60:1e:73:0e:ac:c3:83:0c:a2:79:40:8a:79:c6:9e:3f:
91:98:f7:40:14:ee:17:42:6b:e2:c7:ee:65:05:f6:40:c9:9a:
6a:d4:94:f4:4a:b0:3e:0c:17:48:68:36:1d:c3:2e:a4:19:a1:
a8:8c:94:11
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgICEH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjA5MDQxMTAvBgNVBAUTKDUyMUM1QUZCNjAxNTNDRUQzNDJDRDNDMjY3NEQzMTVF
NDI0NTAyMkEwHhcNMjIwMTMxMDYyNjM4WhcNMjMwMzMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MWY3ODExZC1hNTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtUOfHGroGvEZAFXE5jZ2yqkGyfQ+MBwrHcUunkj7eASkIAtfM8ZV+04F3ZqB
HSSNoIGIDXHMYTR3Kt24LQ1SXKbwG8Aogdv+d/7u+2fjDSAVK7/VUvBzvy2o0QAC
VW3yvZQFCbfvAIrBGePuLXP0TsNWOCYdiAqn3LfYe80GHJRdvg4V9TSCTrLNzjq3
6Qrql6ycyRiXTVFiuLt8A3/I+X/wRilrRZOLMsIZOJALeo/hFsClJ607d9o+RYBK
qCRA/BqahXCOm8QuhIbb6WN17u6qRyKsRoNqh6haIbZTbUCFZkesA6ZrpMToW2UF
zOOLKlFA6JF6NfvtfUd7DTIeaQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFC9Mhq6T
bpP/8cq96ep2CwgrYYncMB8GA1UdIwQYMBaAFFIcWvtgFTztNCzTwmdNMV5CRQIq
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDkwNC8zNDcyNzRFQzZG
NDkxMUU4QkVCNkFFNjVDNEY5QUUwMi9VaHhhLTJBVlBPMDBMTlBDWjAweFhrSkZB
aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1VoeGEtMkFWUE8wMExOUENaMDB4WGtKRkFpby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NjA5MDQvMzQ3Mjc0RUM2RjQ5MTFFOEJFQjZBRTY1QzRGOUFFMDIvMjk4MDdFNDBC
M0VFMTFFOUE4MTM3NDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E
KzApMBgEAgABMBIDBAEr+sADBAZ6+MADBAavKYAwDQQCAAIwBwMFACQAZQAwDQYJ
KoZIhvcNAQELBQADggEBAD2oub/+u6OHXQGOtW5NMKj0WDB0eOUttC3clmNET04p
JRvUWuRS1qq/07AMwRM4RvRS8RwC1R7W+gMP4xjhjuGpitCaKeZUY5UnepFSfdig
ANfh8qUHbl13e4tPfcVABQnWtHg+QcsxQvz6V8mdVrGyHDkY3YjjYW1w17sbsd9J
Py204WkePfQ/rs+8Q0kFSirJNwVkpIK/TZh7pur1Lvi9unrjgUayetedeqR/8XQX
Oi4AebEGXgAJzlqh34M5IHv21p5Fe7+ZYB5zDqzDgwyieUCKecaeP5GY90AU7hdC
a+LH7mUF9kDJmmrUlPRKsD4MF0hoNh3DLqQZoaiMlBE=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:41 2023 by rpki-client on console-ams.rpki-client.org