Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9129AAC/DB9101D0391011E9A0E25B52C4F9AE02/9B970B5E391211E99E31F655C4F9AE02.roa
File: 9B970B5E391211E99E31F655C4F9AE02.roa (raw, json)
Hash identifier: 1DvjdimCKoqYF8vwQuZyBdzqQYGG1hOZsxHhSdtj45g=
Subject key identifier: 7D:7C:7D:7C:1C:EB:12:64:40:D4:DB:9E:AA:E1:D9:51:FE:DA:45:62
Certificate issuer: /CN=A9129AAC/serialNumber=3380B4CFEE3AF81F8CFDB96025D51088A129640B
Certificate serial: 0EC2
Authority key identifier: 33:80:B4:CF:EE:3A:F8:1F:8C:FD:B9:60:25:D5:10:88:A1:29:64:0B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4C0z-46-B-M_blgJdUQiKEpZAs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9129AAC/DB9101D0391011E9A0E25B52C4F9AE02/9B970B5E391211E99E31F655C4F9AE02.roa
Signing time: Sat 01 Oct 2022 18:55:21 +0000
ROA not before: Sat 01 Oct 2022 18:55:21 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 134666
IP address blocks: 2403:5180:5::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3778 (0xec2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9129AAC/serialNumber=3380B4CFEE3AF81F8CFDB96025D51088A129640B
Validity
Not Before: Oct 1 18:55:21 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=63388d18-bcd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e0:47:0a:50:45:14:50:16:17:31:9b:55:7b:
e1:46:27:24:77:12:86:75:29:54:82:2d:e2:7f:0a:
8b:eb:82:92:e8:ea:dd:aa:c4:27:25:00:d5:51:4b:
45:94:d8:92:aa:e8:cb:04:87:83:50:2a:bd:72:8c:
7a:6f:75:ab:93:7f:a0:b4:6f:36:54:27:e5:0d:49:
76:56:f4:3c:01:75:fa:3c:09:46:d6:cd:7f:74:e9:
e3:a8:5c:92:9b:92:9d:2d:3c:c7:6f:33:ab:0a:00:
a8:e5:e2:0b:ac:fe:9f:52:1b:1d:1d:41:61:0c:81:
7a:b4:26:b5:4b:fd:00:40:ae:f4:6d:c0:d0:1a:ea:
25:4a:9f:c8:09:2b:9c:f5:62:99:7d:2d:2e:3c:d5:
28:6c:b1:fc:5d:97:1d:3f:9b:2e:c1:b3:dc:13:86:
13:bb:8e:41:33:52:41:93:59:6e:95:0c:dd:0e:d6:
58:4e:ce:c4:87:4c:81:5b:d4:a5:48:52:1e:4e:35:
29:d4:bf:e9:d9:30:9c:6c:0a:59:e2:d4:fc:21:d1:
22:eb:be:6a:ed:dc:37:2e:3f:ac:61:b1:95:7d:8c:
48:de:de:61:3f:1e:71:91:0a:1f:48:16:65:fc:82:
3b:bf:00:74:74:4b:3e:5b:ae:d0:dc:4f:b3:93:e0:
f3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:7C:7D:7C:1C:EB:12:64:40:D4:DB:9E:AA:E1:D9:51:FE:DA:45:62
X509v3 Authority Key Identifier:
keyid:33:80:B4:CF:EE:3A:F8:1F:8C:FD:B9:60:25:D5:10:88:A1:29:64:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9129AAC/DB9101D0391011E9A0E25B52C4F9AE02/M4C0z-46-B-M_blgJdUQiKEpZAs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4C0z-46-B-M_blgJdUQiKEpZAs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129AAC/DB9101D0391011E9A0E25B52C4F9AE02/9B970B5E391211E99E31F655C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:5180:5::/48
Signature Algorithm: sha256WithRSAEncryption
92:87:61:fb:e8:30:ff:9b:a0:d7:9d:71:d1:a0:9a:fe:1e:6e:
b5:9d:63:38:81:9f:7f:ca:60:45:c4:60:42:8a:9d:55:fd:20:
fa:96:19:05:65:b3:8c:ef:c0:f0:ec:b9:1e:c8:88:53:25:fa:
c8:3e:aa:1e:bb:09:36:98:e8:85:39:97:da:3f:93:92:72:c5:
2d:fa:e5:57:f6:29:3c:b5:7f:3a:b3:e3:f1:6d:ad:38:a7:c5:
ca:8f:85:1a:68:de:f8:f9:43:57:ac:bb:39:81:36:b1:2d:6c:
3f:08:30:6b:63:0a:2b:ec:e0:b0:a0:f9:87:2e:95:2f:b5:35:
65:5d:93:e4:ed:d5:31:1b:41:92:1d:b7:7b:55:77:95:81:ae:
40:fe:90:18:ed:5b:a8:3c:a0:ba:91:42:5a:56:9f:58:d1:d8:
73:73:ce:8f:4b:0a:70:8d:25:cd:de:b1:d6:d4:21:a5:43:8a:
e2:1c:a1:24:d7:c2:da:3e:69:dd:c7:7d:79:a7:65:d0:00:61:
0e:73:14:99:cf:9e:c1:ca:5e:60:b9:d3:81:3e:bb:f7:fd:75:
c5:f7:a8:87:49:d7:54:61:25:bf:29:29:7c:dc:f4:bf:ba:fe:
80:9d:17:50:4b:1d:dc:fd:d5:0b:7a:77:52:ec:50:0e:3e:ef:
e1:85:1e:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:57 2024 by rpki-client on console-fra.rpki-client.org