Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C00F/C47AA68E5D8511E89B87527FC4F9AE02/94D146A24FAE11ED8F2AC91EC4F9AE02.roa
File: 94D146A24FAE11ED8F2AC91EC4F9AE02.roa (raw, json)
Hash identifier: zQEDLR/7I0P3ajKqX8GqolIVCZ1rG/r87GswdN8W9M4=
Subject key identifier: 23:89:31:44:45:5A:8B:C2:FE:BF:6C:1F:78:B5:E7:59:84:B8:81:59
Certificate issuer: /CN=A913C00F/serialNumber=AD1BB06A72BE3908D432FAF0836357AA44DF16B8
Certificate serial: 12CF
Authority key identifier: AD:1B:B0:6A:72:BE:39:08:D4:32:FA:F0:83:63:57:AA:44:DF:16:B8
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rRuwanK-OQjUMvrwg2NXqkTfFrg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913C00F/C47AA68E5D8511E89B87527FC4F9AE02/94D146A24FAE11ED8F2AC91EC4F9AE02.roa
Signing time: Wed 19 Oct 2022 13:24:22 +0000
ROA not before: Wed 19 Oct 2022 13:24:22 +0000
ROA not after: Fri 30 Dec 2022 00:00:00 +0000
asID: 9411
IP address blocks: 158.108.0.0/16 maxlen: 16
158.108.0.0/22 maxlen: 22
158.108.4.0/22 maxlen: 22
158.108.8.0/22 maxlen: 22
158.108.12.0/22 maxlen: 22
158.108.16.0/22 maxlen: 22
158.108.20.0/22 maxlen: 22
158.108.24.0/22 maxlen: 22
158.108.28.0/22 maxlen: 22
158.108.32.0/22 maxlen: 22
158.108.36.0/22 maxlen: 22
158.108.40.0/22 maxlen: 22
158.108.44.0/22 maxlen: 22
158.108.48.0/22 maxlen: 22
158.108.52.0/22 maxlen: 22
158.108.56.0/22 maxlen: 22
158.108.60.0/22 maxlen: 22
158.108.64.0/22 maxlen: 22
158.108.68.0/22 maxlen: 22
158.108.72.0/22 maxlen: 22
158.108.76.0/22 maxlen: 22
158.108.80.0/22 maxlen: 22
158.108.84.0/22 maxlen: 22
158.108.88.0/22 maxlen: 22
158.108.92.0/22 maxlen: 22
158.108.96.0/22 maxlen: 22
158.108.100.0/22 maxlen: 22
158.108.104.0/22 maxlen: 22
158.108.108.0/22 maxlen: 22
158.108.112.0/22 maxlen: 22
158.108.116.0/22 maxlen: 22
158.108.120.0/22 maxlen: 22
158.108.124.0/22 maxlen: 22
158.108.128.0/22 maxlen: 22
158.108.132.0/22 maxlen: 22
158.108.136.0/22 maxlen: 22
158.108.140.0/22 maxlen: 22
158.108.144.0/22 maxlen: 22
158.108.148.0/22 maxlen: 22
158.108.152.0/22 maxlen: 22
158.108.156.0/22 maxlen: 22
158.108.160.0/22 maxlen: 22
158.108.164.0/22 maxlen: 22
158.108.168.0/22 maxlen: 22
158.108.172.0/22 maxlen: 22
158.108.176.0/22 maxlen: 22
158.108.180.0/22 maxlen: 22
158.108.184.0/22 maxlen: 22
158.108.188.0/22 maxlen: 22
158.108.192.0/22 maxlen: 22
158.108.196.0/22 maxlen: 22
158.108.200.0/22 maxlen: 22
158.108.204.0/22 maxlen: 22
158.108.208.0/22 maxlen: 22
158.108.212.0/22 maxlen: 22
158.108.216.0/22 maxlen: 22
158.108.220.0/22 maxlen: 22
158.108.224.0/22 maxlen: 22
158.108.228.0/22 maxlen: 22
158.108.232.0/22 maxlen: 22
158.108.236.0/22 maxlen: 22
158.108.240.0/22 maxlen: 22
158.108.244.0/22 maxlen: 22
158.108.248.0/22 maxlen: 22
158.108.252.0/22 maxlen: 22
192.102.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4815 (0x12cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913C00F/serialNumber=AD1BB06A72BE3908D432FAF0836357AA44DF16B8
Validity
Not Before: Oct 19 13:24:22 2022 GMT
Not After : Dec 30 00:00:00 2022 GMT
Subject: CN=634ffa85-3e8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:96:f4:f7:23:62:a7:a6:1f:35:4c:f3:5a:5e:
d6:a0:ec:11:01:47:a1:d4:3b:72:73:6e:a5:e2:25:
c9:07:72:86:02:8b:3c:58:ce:27:be:52:de:23:49:
92:dd:07:33:e7:1a:4d:e2:70:6d:78:7a:3d:b5:24:
12:80:7b:1b:31:c4:a4:d6:51:21:ff:45:8c:e9:9b:
65:c6:9c:86:be:5f:64:73:e3:eb:53:8a:b4:99:db:
56:36:94:81:0f:b7:c8:66:7e:d8:ae:a3:23:b8:b7:
03:44:77:62:f8:39:21:9c:14:67:10:95:a7:e1:a8:
21:78:e0:99:89:74:62:58:19:5d:c6:ef:29:28:be:
72:e0:cb:0f:b7:23:6d:cc:c1:96:92:49:81:f6:a3:
cb:63:9d:d0:26:f8:74:cd:48:3a:b2:62:05:db:3b:
1c:ab:2c:37:c3:99:e0:ba:a1:50:ca:6e:64:37:c7:
ab:7b:3a:2b:44:1f:6a:13:60:48:51:fe:c3:ff:4c:
99:49:bc:26:d1:19:ac:e8:ee:2f:7e:0d:fb:48:eb:
49:a9:24:be:a9:f5:f2:99:74:78:90:18:62:3e:f0:
27:9b:99:7b:32:fc:c6:71:35:f1:eb:e6:3b:4d:20:
35:17:28:45:85:58:00:ae:75:f9:28:51:fe:f9:6b:
fe:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:89:31:44:45:5A:8B:C2:FE:BF:6C:1F:78:B5:E7:59:84:B8:81:59
X509v3 Authority Key Identifier:
keyid:AD:1B:B0:6A:72:BE:39:08:D4:32:FA:F0:83:63:57:AA:44:DF:16:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913C00F/C47AA68E5D8511E89B87527FC4F9AE02/rRuwanK-OQjUMvrwg2NXqkTfFrg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rRuwanK-OQjUMvrwg2NXqkTfFrg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C00F/C47AA68E5D8511E89B87527FC4F9AE02/94D146A24FAE11ED8F2AC91EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
158.108.0.0/16
192.102.83.0/24
Signature Algorithm: sha256WithRSAEncryption
23:5d:1f:73:9f:c2:24:d4:5c:e1:d4:c5:a7:a9:5b:95:4d:55:
8b:7a:af:15:8e:f9:5c:7f:23:70:69:a6:87:d0:4b:5c:88:99:
0e:c5:b2:13:ff:56:d7:a5:f3:42:96:14:50:27:64:cd:af:20:
f2:e5:10:c6:16:9e:96:ad:0a:15:70:96:b3:aa:71:63:cf:50:
0c:57:a0:78:85:15:8f:29:09:35:7b:34:25:34:3a:f5:d1:f1:
cf:2e:39:03:5b:88:63:96:20:f8:94:58:6b:1a:eb:18:2b:ca:
d5:91:a0:22:99:36:82:53:74:1f:12:ef:2c:24:01:0a:19:8e:
af:c4:f6:cc:45:25:e8:46:f9:c4:c0:93:0e:20:c7:85:8e:f1:
5a:b7:38:70:3c:79:11:ad:3a:6b:eb:f6:c9:c3:71:de:f5:45:
60:bf:15:00:25:16:f1:95:d0:5e:5f:a8:48:19:6e:a7:d8:1a:
af:52:a8:68:a7:73:1e:9d:a4:4c:04:eb:4b:9f:51:b2:d3:e0:
0f:62:1a:2a:eb:f3:f4:16:f6:0f:35:b4:4e:7d:82:8f:8d:67:
e1:bf:f3:51:1e:9b:ea:fa:05:71:22:95:d1:61:e3:9f:44:ab:
29:3e:f1:1f:66:72:ea:21:49:6e:48:14:7e:08:cd:16:59:ca:
05:71:72:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:03 2024 by rpki-client on console-fra.rpki-client.org