Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/5AE759146E0311EC9F481971C4F9AE02.roa
File: 5AE759146E0311EC9F481971C4F9AE02.roa (raw, json)
Hash identifier: LpuCQsKWvJfx94XrsS8HHwxuHtoQ/+Jd52/zG1h36uU=
Subject key identifier: 00:33:EE:16:98:85:D1:2B:65:98:34:0E:85:DE:2D:D6:E7:8F:F4:BC
Certificate issuer: /CN=A9182047/serialNumber=65012AF0571086B9EAB30346F624B6312A551C38
Certificate serial: 14
Authority key identifier: 65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/5AE759146E0311EC9F481971C4F9AE02.roa
Signing time: Thu 13 Jan 2022 10:23:16 +0000
ROA not before: Thu 13 Jan 2022 10:23:16 +0000
ROA not after: Fri 31 Mar 2023 00:00:00 +0000
asID: 149418
IP address blocks: 103.179.14.0/24 maxlen: 24
2400:4a20::/32 maxlen: 36
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20 (0x14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9182047/serialNumber=65012AF0571086B9EAB30346F624B6312A551C38
Validity
Not Before: Jan 13 10:23:16 2022 GMT
Not After : Mar 31 00:00:00 2023 GMT
Subject: CN=61dffd93-8447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ed:8a:45:b2:01:27:de:29:d4:5d:55:a4:bf:
d9:78:70:5b:6a:03:c8:bb:c5:c6:25:49:fe:e5:d2:
c1:56:c4:fe:a8:08:fc:5e:20:ee:6f:6a:fe:ce:46:
02:c4:79:eb:3c:ef:91:cd:0a:d5:7d:5c:80:b2:f2:
3f:5a:6b:9e:7b:ff:10:15:50:7a:40:dd:c0:56:a0:
4f:0a:c0:f3:3d:88:f4:d9:27:74:44:3d:1a:83:a4:
e9:65:c5:c8:35:0c:8f:8e:39:49:14:62:fc:e6:34:
2c:45:e3:ec:80:f3:1a:d7:95:9c:15:99:c8:32:4e:
d1:ec:48:7e:bf:3d:40:a7:c6:96:4c:b0:30:f6:b2:
7c:a4:99:83:9d:11:10:96:07:5b:aa:42:6b:f4:22:
d4:4a:5e:32:19:96:af:1e:21:93:f8:28:a1:5e:f2:
c4:f7:ee:1a:c7:bb:14:5e:ae:a8:3a:1a:74:5d:99:
f9:12:8e:29:5a:26:b0:92:0f:6e:13:85:d2:56:f3:
11:bc:43:e4:db:94:41:58:bb:63:3f:79:ad:b0:4a:
0b:64:6c:c6:4d:36:52:da:92:f8:3d:4b:4f:f9:b6:
dd:88:99:f4:ce:67:9e:92:c0:ff:86:a6:b5:5e:c3:
d5:99:31:58:f8:64:26:ef:f5:92:ad:8b:06:6b:61:
0a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:33:EE:16:98:85:D1:2B:65:98:34:0E:85:DE:2D:D6:E7:8F:F4:BC
X509v3 Authority Key Identifier:
keyid:65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/5AE759146E0311EC9F481971C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.179.14.0/24
IPv6:
2400:4a20::/32
Signature Algorithm: sha256WithRSAEncryption
21:60:63:0e:ab:78:7a:5d:9c:93:eb:91:5c:25:23:a2:b6:a4:
83:b9:9a:10:0f:75:5c:99:4e:00:be:8a:7c:68:0f:bc:74:75:
6d:83:b3:45:ff:70:8d:d8:ff:22:f6:1e:88:f9:03:d5:90:5a:
16:ac:cf:80:22:3b:f0:6c:0a:8b:06:52:1a:b9:ab:c6:28:14:
7d:32:4a:c0:1c:d2:0b:85:fb:c8:51:07:74:53:32:9f:f1:68:
5d:d4:fb:d8:24:2a:3a:85:f9:5e:18:70:6b:a3:92:b6:6c:a1:
ea:f7:92:ce:30:94:c0:ce:71:e7:32:3b:18:98:12:4e:f1:77:
09:e2:d1:c7:a8:de:7a:30:c9:33:a9:94:94:88:c0:a1:c1:23:
f8:43:49:21:8e:f3:dd:db:7e:cc:7b:18:f5:bf:2d:e2:1c:cc:
6d:70:f6:c2:a6:76:62:d3:6a:0e:95:a6:40:31:bc:36:cb:05:
42:e7:fb:ab:17:55:47:49:49:c3:0d:cf:46:4a:19:e2:36:c2:
af:63:2e:2d:32:b1:bb:b0:7b:ac:ac:33:a1:29:a4:88:ae:aa:
d8:01:e2:36:c2:0b:5c:ae:9c:51:22:6d:5e:6c:c0:c9:6a:61:
f9:f5:d4:40:e1:01:4d:76:00:ce:13:1a:97:bd:e0:2c:c4:6f:
12:1e:1f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-ams.rpki-client.org