Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/706A45B6C85011EB9583C730C4F9AE02.roa
File: 706A45B6C85011EB9583C730C4F9AE02.roa (raw, json)
Hash identifier: Lrd5/0bwq3Z3xmAOzdKXw+siJuFmAYUB/usFqEHnb8E=
Subject key identifier: 82:C3:8B:4A:FC:EE:08:BA:01:94:56:7F:06:C8:87:0D:66:0D:1C:78
Certificate issuer: /CN=A91175BA/serialNumber=46E87CFFDFB0C16282AB1EEAC6DD2427328376A6
Certificate serial: 0276
Authority key identifier: 46:E8:7C:FF:DF:B0:C1:62:82:AB:1E:EA:C6:DD:24:27:32:83:76:A6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ruh8_9-wwWKCqx7qxt0kJzKDdqY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/706A45B6C85011EB9583C730C4F9AE02.roa
Signing time: Fri 15 Apr 2022 04:51:44 +0000
ROA not before: Fri 15 Apr 2022 04:51:44 +0000
ROA not after: Sun 28 May 2023 00:00:00 +0000
asID: 141677
IP address blocks: 103.85.72.0/22 maxlen: 22
203.175.12.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 630 (0x276)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91175BA/serialNumber=46E87CFFDFB0C16282AB1EEAC6DD2427328376A6
Validity
Not Before: Apr 15 04:51:44 2022 GMT
Not After : May 28 00:00:00 2023 GMT
Subject: CN=6258f9e0-dad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d5:df:63:2c:7d:a8:61:e6:28:4e:2e:9a:a1:
d8:43:24:4a:fe:88:c9:d0:4b:b5:64:b7:40:47:f1:
97:ed:69:53:37:b9:06:44:4d:17:a3:19:86:fd:df:
df:bb:78:cd:d3:a6:a6:bc:14:09:da:b4:9e:04:a3:
b4:10:69:7b:26:5e:16:50:bc:4b:6c:1b:fa:7f:ff:
54:f7:c4:a8:3d:24:75:43:c8:fc:bb:9a:dc:ea:de:
01:e8:aa:fa:56:eb:df:88:b2:41:c5:b6:04:b6:64:
f1:1d:e1:39:fb:dd:6e:96:92:68:17:cd:c2:f4:6e:
9f:48:8c:cb:58:51:40:a0:d5:88:1c:3b:c1:47:c1:
50:d5:ba:4f:24:e0:04:36:cf:62:c0:84:b4:6c:34:
70:ca:7d:46:d9:4f:ae:c0:31:dc:00:c2:2e:ed:ca:
a0:e5:ad:80:ea:a8:c0:ed:f9:22:91:91:18:30:1f:
f2:f5:fb:99:ca:15:48:bb:0b:db:f5:23:94:77:c0:
33:55:d9:c1:fd:b5:09:74:25:26:cb:12:f4:f9:80:
8b:50:01:87:0a:b3:fe:43:97:c8:57:e6:87:03:9e:
ff:e1:42:2b:b2:8e:e9:bd:4c:a6:52:df:9e:7c:30:
fb:2d:84:b8:bc:f0:0c:41:2b:20:1f:74:1f:bb:5d:
37:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C3:8B:4A:FC:EE:08:BA:01:94:56:7F:06:C8:87:0D:66:0D:1C:78
X509v3 Authority Key Identifier:
keyid:46:E8:7C:FF:DF:B0:C1:62:82:AB:1E:EA:C6:DD:24:27:32:83:76:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/Ruh8_9-wwWKCqx7qxt0kJzKDdqY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ruh8_9-wwWKCqx7qxt0kJzKDdqY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/706A45B6C85011EB9583C730C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.85.72.0/22
203.175.12.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:14:17:43:8c:9a:2b:6f:b3:03:fa:54:c4:30:2d:11:81:3a:
88:b9:26:22:1f:94:2e:7c:4d:ec:c8:e9:d1:96:b8:3c:eb:3a:
d1:4c:27:f0:1c:5a:27:8b:9c:14:9e:ca:08:e9:a1:13:80:f8:
77:bb:71:4c:2d:8c:03:f6:fe:3c:0f:60:bf:62:f9:12:65:67:
a4:c3:c9:0b:a2:7e:db:47:65:d5:93:71:5b:8d:56:03:da:18:
ba:54:79:8e:4e:a3:97:cd:52:0f:44:77:9f:d4:86:5e:ca:bb:
2e:08:aa:6a:9b:b7:4d:ea:e7:96:9f:a9:05:f4:19:8b:8f:56:
8d:1f:ca:3c:c0:39:55:85:cf:ac:db:e8:75:45:33:0c:ce:6d:
8d:43:c8:5b:14:e3:c8:e8:54:7b:53:1a:3a:37:8c:bd:69:f1:
33:48:89:16:84:eb:27:68:db:30:84:3c:a6:46:f0:df:90:92:
cf:98:8f:a0:22:91:88:7b:5e:c9:3a:6f:43:2d:5a:ba:d0:28:
26:ed:e2:a3:05:7c:3d:f5:40:8c:6c:3a:d1:d0:52:d7:c2:86:
af:80:9f:01:ed:94:32:5d:4c:a9:43:95:38:94:8e:77:be:9d:
24:17:96:40:dd:7f:4a:97:6a:42:08:24:05:60:47:c2:7c:0b:
08:e4:fb:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:35 2023 by rpki-client on console-fra.rpki-client.org