Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91268DC/D438C2EC461211EEBDF7946CC4F9AE02/E80DBA929D7511EEB6B07711C4F9AE02.roa
File: E80DBA929D7511EEB6B07711C4F9AE02.roa (raw, json)
Hash identifier: BNCeXSrcyNRbjekWAcxLZ7EGOcrwbkCdcjDunnmHR3Y=
Subject key identifier: 77:BB:58:B7:1F:37:3E:AF:A3:CD:EE:68:C3:E3:40:E6:4F:58:27:64
Certificate issuer: /CN=A91268DC/serialNumber=C1B440EAB44AA587908016E9BD4B32FDE13F44CC
Certificate serial: 42
Authority key identifier: C1:B4:40:EA:B4:4A:A5:87:90:80:16:E9:BD:4B:32:FD:E1:3F:44:CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wbRA6rRKpYeQgBbpvUsy_eE_RMw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91268DC/D438C2EC461211EEBDF7946CC4F9AE02/E80DBA929D7511EEB6B07711C4F9AE02.roa
Signing time: Mon 18 Dec 2023 07:20:23 +0000
ROA not before: Mon 18 Dec 2023 07:20:23 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 135381
IP address blocks: 203.130.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66 (0x42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91268DC/serialNumber=C1B440EAB44AA587908016E9BD4B32FDE13F44CC
Validity
Not Before: Dec 18 07:20:23 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=657ff2b6-1bea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f7:68:f9:11:e6:d8:2b:8b:f4:0e:ed:63:22:
7f:fd:44:e4:c6:cb:41:0a:e3:7f:8c:7d:b5:f4:bd:
37:b3:a4:9a:bd:bb:87:dc:f8:63:05:8b:4c:57:4b:
76:b3:10:4c:df:24:cd:ba:49:ca:b9:83:f0:64:f1:
0e:c6:ba:78:8f:35:67:4b:20:00:fc:d4:3e:18:c3:
c0:0a:ee:42:00:f0:2e:a7:b9:73:cf:10:2f:cc:7d:
87:0c:9b:05:b4:46:13:09:ca:e4:34:6d:03:6a:98:
a5:6b:3f:68:25:d2:1d:59:9d:61:46:8e:dd:35:4e:
f8:7f:ec:7c:ac:1d:82:09:a4:18:85:48:7f:37:96:
21:25:ca:3c:04:94:04:f4:95:4b:50:d0:bd:f6:92:
f4:4b:4b:32:ed:64:e9:26:b7:12:0d:f7:0b:95:93:
c3:b7:2a:7c:7b:0e:07:fb:c5:b9:84:f2:49:f4:02:
2b:f5:fb:62:f6:e1:36:fc:80:ee:70:5f:be:ff:4a:
e0:69:f2:60:c3:27:9f:0b:d5:e5:0f:66:e9:4a:14:
4d:cf:57:29:56:59:18:c1:d2:79:d4:58:78:5d:cb:
34:56:6c:06:40:b1:f0:a0:8b:53:8d:d3:5f:fa:ae:
bb:23:2f:57:e7:a6:4e:8a:3a:83:2f:9d:51:6b:b6:
6d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:BB:58:B7:1F:37:3E:AF:A3:CD:EE:68:C3:E3:40:E6:4F:58:27:64
X509v3 Authority Key Identifier:
keyid:C1:B4:40:EA:B4:4A:A5:87:90:80:16:E9:BD:4B:32:FD:E1:3F:44:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91268DC/D438C2EC461211EEBDF7946CC4F9AE02/wbRA6rRKpYeQgBbpvUsy_eE_RMw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wbRA6rRKpYeQgBbpvUsy_eE_RMw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91268DC/D438C2EC461211EEBDF7946CC4F9AE02/E80DBA929D7511EEB6B07711C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.130.151.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:9d:07:d0:30:c3:a5:7a:ec:ed:c8:7c:01:2a:99:d3:ce:29:
84:d1:d7:c1:2a:18:02:11:12:dd:e0:b0:96:c6:bd:90:1f:99:
1f:ff:e3:f7:af:90:c2:bb:b5:1c:71:66:b0:e5:8e:e4:db:2f:
99:4b:35:19:b5:6d:d7:19:5e:eb:39:f6:dc:25:35:72:f0:85:
96:64:5e:21:41:eb:d5:4c:bd:c4:2d:85:c7:d5:3f:99:dc:95:
98:5d:d3:7f:e6:e0:f9:67:87:fd:45:81:3f:79:01:2b:2d:22:
e0:ad:70:22:60:7b:74:a0:a1:82:73:9d:86:7b:20:16:0b:5e:
ed:5a:27:0c:76:c6:be:15:e1:40:00:d2:0a:00:33:45:62:56:
26:b6:74:03:8c:94:42:b9:6d:49:4a:28:e0:e3:95:da:86:ca:
8a:92:ce:58:76:25:fe:80:38:7d:e6:b1:81:3c:e8:5f:45:30:
1c:75:dc:9f:d6:e5:d8:06:43:9a:b0:9b:d2:8b:b6:50:c0:f6:
31:d7:26:e2:ec:da:4e:9f:ad:4f:74:80:58:87:b8:a4:f0:a4:
38:b4:36:92:18:ae:d9:02:54:c6:83:90:bb:3c:20:51:b4:b4:
41:6e:88:46:d6:7d:1b:ab:75:05:e5:3e:09:73:fd:5f:e3:0d:
e3:ad:f5:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 8 14:53:11 2024 by rpki-client on console-fra.rpki-client.org