Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9115558/12765A10383711EC8FFD8B45C4F9AE02/7E2CFA16384111EC8CC95050C4F9AE02.roa
File: 7E2CFA16384111EC8CC95050C4F9AE02.roa (raw, json)
Hash identifier: 8bA6w85zXENWh9qEMHspum3WOW6Czf6nm+v5YEaV5NU=
Subject key identifier: 99:75:03:9C:C0:B0:90:40:92:A3:C1:F9:51:8B:B7:06:DD:2F:B3:DF
Certificate issuer: /CN=A9115558/serialNumber=1208A2DC34F85BC56E138C14069B9EB7782639D9
Certificate serial: 06
Authority key identifier: 12:08:A2:DC:34:F8:5B:C5:6E:13:8C:14:06:9B:9E:B7:78:26:39:D9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Egii3DT4W8VuE4wUBpuet3gmOdk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9115558/12765A10383711EC8FFD8B45C4F9AE02/7E2CFA16384111EC8CC95050C4F9AE02.roa
Signing time: Thu 28 Oct 2021 22:50:48 +0000
ROA not before: Thu 28 Oct 2021 22:50:48 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 55923
IP address blocks: 175.45.144.0/22 maxlen: 22
175.45.144.0/24 maxlen: 24
175.45.145.0/24 maxlen: 24
175.45.146.0/24 maxlen: 24
175.45.147.0/24 maxlen: 24
175.45.152.0/22 maxlen: 22
175.45.152.0/24 maxlen: 24
175.45.154.0/24 maxlen: 24
175.45.155.0/24 maxlen: 24
175.45.156.0/22 maxlen: 24
180.178.64.0/22 maxlen: 22
180.178.64.0/24 maxlen: 24
180.178.65.0/24 maxlen: 24
180.178.66.0/24 maxlen: 24
180.178.67.0/24 maxlen: 24
202.8.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9115558/serialNumber=1208A2DC34F85BC56E138C14069B9EB7782639D9
Validity
Not Before: Oct 28 22:50:48 2021 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=617b2948-f0b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d4:61:31:d8:f1:19:91:c5:01:3f:3b:e0:11:
6d:8c:99:d8:f7:a0:4f:30:fb:f5:fe:08:db:f1:e6:
a1:03:e0:5b:45:9c:b5:5f:b1:ba:27:d8:bf:fa:4d:
ea:38:34:ba:08:cb:4c:be:09:6f:ed:1d:f1:c8:db:
e7:76:f4:a7:52:af:bb:a2:e8:62:32:9a:87:c2:d0:
c5:7d:46:6e:f8:0c:e0:25:00:84:04:26:59:ca:fd:
2e:65:29:e2:36:00:3e:0b:80:17:69:c9:7e:5a:9a:
55:da:9d:50:7e:ca:76:5f:30:3e:e8:80:73:e4:86:
1d:81:1e:c5:47:33:80:c1:70:14:c1:8e:9a:5f:54:
41:a0:f7:b5:d9:d6:52:fe:2f:e4:17:cf:7d:f5:59:
17:96:ac:59:52:62:a8:67:64:1d:6e:29:a7:fe:f6:
d3:a5:aa:41:37:d2:8d:ae:47:b8:45:8a:e0:65:6b:
d6:62:c0:2e:95:35:26:e0:6d:c4:a6:f4:dd:95:09:
73:83:00:6e:c5:ee:43:fb:c0:07:77:c3:50:5b:d0:
51:33:5f:1e:56:f1:96:dd:28:db:10:e4:46:9e:04:
54:c4:99:18:21:9d:a4:30:0d:2c:e4:a6:34:3e:c7:
80:16:94:b5:cb:5f:2d:d7:45:22:1c:7d:50:33:4a:
48:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:75:03:9C:C0:B0:90:40:92:A3:C1:F9:51:8B:B7:06:DD:2F:B3:DF
X509v3 Authority Key Identifier:
keyid:12:08:A2:DC:34:F8:5B:C5:6E:13:8C:14:06:9B:9E:B7:78:26:39:D9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9115558/12765A10383711EC8FFD8B45C4F9AE02/Egii3DT4W8VuE4wUBpuet3gmOdk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Egii3DT4W8VuE4wUBpuet3gmOdk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115558/12765A10383711EC8FFD8B45C4F9AE02/7E2CFA16384111EC8CC95050C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
175.45.144.0/22
175.45.152.0/21
180.178.64.0/22
202.8.76.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:5e:41:71:4e:d8:9e:21:3a:9e:c6:53:9b:ba:15:e1:84:d0:
de:1e:33:06:72:ca:11:69:f4:73:25:99:8e:13:03:d2:f8:00:
e5:be:ac:cf:a9:09:aa:fb:5f:d1:b3:16:53:05:76:bd:b3:ac:
27:72:33:03:23:f4:39:2a:34:f6:22:33:5d:80:3e:15:35:9b:
2c:5d:b1:34:5f:75:15:08:bb:c9:17:c9:54:2a:00:ff:87:63:
9d:d7:c5:a0:f2:60:b3:89:76:e3:70:6f:54:16:25:63:7b:9a:
d0:17:35:2d:d9:9d:41:cc:af:6b:4e:ee:70:00:5e:ea:39:e4:
5d:29:6a:2b:39:42:23:79:57:01:4f:be:34:8f:d3:ec:76:be:
7d:e7:78:2e:16:fd:da:6f:af:6a:b5:10:18:22:9f:e6:3c:3c:
5c:cd:08:76:a7:a4:1d:19:82:12:eb:2f:9a:a9:8c:6c:1a:cb:
64:f0:cb:d9:ca:f7:d5:13:67:40:f1:e9:4e:cd:5b:d1:3d:16:
90:e4:da:4b:63:16:e2:a4:69:35:67:2c:db:e1:6e:86:36:3a:
d2:cc:ab:84:86:78:8b:f4:25:c0:25:1f:f2:0f:50:2b:12:76:
59:d6:cc:d7:84:b6:b6:f3:75:33:ed:87:42:71:20:fe:14:18:
13:2f:54:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:55 2024 by rpki-client on console-fra.rpki-client.org