Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C00F/C47AA68E5D8511E89B87527FC4F9AE02/D06B5022515C11ED89A1B969C4F9AE02.roa
File: D06B5022515C11ED89A1B969C4F9AE02.roa (raw, json)
Hash identifier: 7qgkK3aUvRFPJXqIuiB+HyQa2SkCKvavkrWiyRGeuVI=
Subject key identifier: 80:97:11:06:27:C9:DD:DB:B3:50:E3:4A:0B:0A:F4:4C:EA:AB:52:7A
Certificate issuer: /CN=A913C00F/serialNumber=AD1BB06A72BE3908D432FAF0836357AA44DF16B8
Certificate serial: 1393
Authority key identifier: AD:1B:B0:6A:72:BE:39:08:D4:32:FA:F0:83:63:57:AA:44:DF:16:B8
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rRuwanK-OQjUMvrwg2NXqkTfFrg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913C00F/C47AA68E5D8511E89B87527FC4F9AE02/D06B5022515C11ED89A1B969C4F9AE02.roa
Signing time: Tue 03 Oct 2023 13:59:16 +0000
ROA not before: Tue 03 Oct 2023 13:59:16 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 9411
IP address blocks: 158.108.0.0/16 maxlen: 16
158.108.0.0/19 maxlen: 19
158.108.0.0/22 maxlen: 22
158.108.4.0/22 maxlen: 22
158.108.8.0/22 maxlen: 22
158.108.12.0/22 maxlen: 22
158.108.16.0/22 maxlen: 22
158.108.20.0/22 maxlen: 22
158.108.24.0/22 maxlen: 22
158.108.28.0/22 maxlen: 22
158.108.32.0/19 maxlen: 19
158.108.32.0/22 maxlen: 22
158.108.36.0/22 maxlen: 22
158.108.40.0/22 maxlen: 22
158.108.44.0/22 maxlen: 22
158.108.48.0/22 maxlen: 22
158.108.52.0/22 maxlen: 22
158.108.56.0/22 maxlen: 22
158.108.60.0/22 maxlen: 22
158.108.64.0/19 maxlen: 19
158.108.64.0/22 maxlen: 22
158.108.68.0/22 maxlen: 22
158.108.72.0/22 maxlen: 22
158.108.76.0/22 maxlen: 22
158.108.80.0/22 maxlen: 22
158.108.84.0/22 maxlen: 22
158.108.88.0/22 maxlen: 22
158.108.92.0/22 maxlen: 22
158.108.96.0/19 maxlen: 19
158.108.96.0/22 maxlen: 22
158.108.100.0/22 maxlen: 22
158.108.104.0/22 maxlen: 22
158.108.108.0/22 maxlen: 22
158.108.112.0/22 maxlen: 22
158.108.116.0/22 maxlen: 22
158.108.120.0/22 maxlen: 22
158.108.124.0/22 maxlen: 22
158.108.128.0/19 maxlen: 19
158.108.128.0/22 maxlen: 22
158.108.132.0/22 maxlen: 22
158.108.136.0/22 maxlen: 22
158.108.140.0/22 maxlen: 22
158.108.144.0/22 maxlen: 22
158.108.148.0/22 maxlen: 22
158.108.152.0/22 maxlen: 22
158.108.156.0/22 maxlen: 22
158.108.160.0/19 maxlen: 19
158.108.160.0/22 maxlen: 22
158.108.164.0/22 maxlen: 22
158.108.168.0/22 maxlen: 22
158.108.172.0/22 maxlen: 22
158.108.176.0/22 maxlen: 22
158.108.180.0/22 maxlen: 22
158.108.184.0/22 maxlen: 22
158.108.188.0/22 maxlen: 22
158.108.192.0/19 maxlen: 19
158.108.192.0/22 maxlen: 22
158.108.196.0/22 maxlen: 22
158.108.200.0/22 maxlen: 22
158.108.204.0/22 maxlen: 22
158.108.208.0/22 maxlen: 22
158.108.212.0/22 maxlen: 22
158.108.216.0/22 maxlen: 22
158.108.220.0/22 maxlen: 22
158.108.224.0/19 maxlen: 19
158.108.224.0/22 maxlen: 22
158.108.228.0/22 maxlen: 22
158.108.232.0/22 maxlen: 22
158.108.236.0/22 maxlen: 22
158.108.240.0/22 maxlen: 22
158.108.244.0/22 maxlen: 22
158.108.248.0/22 maxlen: 22
158.108.252.0/22 maxlen: 22
192.102.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5011 (0x1393)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913C00F/serialNumber=AD1BB06A72BE3908D432FAF0836357AA44DF16B8
Validity
Not Before: Oct 3 13:59:16 2023 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=651c1e34-a252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d3:17:b1:93:27:36:12:8b:c5:9b:e0:93:02:
35:6d:4b:0c:b2:35:c5:1c:7a:36:b0:d9:28:04:2e:
24:44:9e:ae:42:8d:29:68:3b:58:5c:b0:f5:43:1b:
75:48:18:b7:5a:29:8a:96:83:36:d2:f6:28:2e:0c:
60:0a:79:20:37:6d:70:83:9f:c3:b8:fc:61:77:9d:
9d:b8:fa:ce:a0:5e:53:b6:2e:f9:07:b3:8a:b5:e4:
1e:7e:83:a3:df:ad:e0:3b:db:8e:6b:7c:23:8e:2c:
ca:1f:2b:52:5c:57:78:5b:62:a7:ee:c0:1d:50:0e:
c2:7c:95:1d:54:1d:87:13:92:1e:14:8b:2f:e4:b3:
9d:27:81:d0:ba:ac:0f:fb:2e:79:49:32:41:b6:e7:
ee:42:46:e1:4e:d0:2a:a6:f3:e4:b8:92:6b:5a:b0:
14:18:22:2e:91:4b:d7:44:99:84:32:50:2a:be:b9:
c9:41:a6:c6:fc:45:8c:ec:e8:81:13:44:88:02:4c:
0a:fc:60:55:21:0a:8f:0d:03:d3:b8:45:4d:55:a4:
97:97:d4:4f:cb:8f:99:de:52:cf:92:8f:f8:3b:d5:
6c:62:f7:57:48:57:c5:c6:bf:a0:23:eb:78:30:0c:
23:4a:ba:39:5b:f3:fb:75:4f:8f:06:ed:10:17:f3:
bf:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:97:11:06:27:C9:DD:DB:B3:50:E3:4A:0B:0A:F4:4C:EA:AB:52:7A
X509v3 Authority Key Identifier:
keyid:AD:1B:B0:6A:72:BE:39:08:D4:32:FA:F0:83:63:57:AA:44:DF:16:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913C00F/C47AA68E5D8511E89B87527FC4F9AE02/rRuwanK-OQjUMvrwg2NXqkTfFrg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rRuwanK-OQjUMvrwg2NXqkTfFrg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C00F/C47AA68E5D8511E89B87527FC4F9AE02/D06B5022515C11ED89A1B969C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
158.108.0.0/16
192.102.83.0/24
Signature Algorithm: sha256WithRSAEncryption
33:62:3c:f4:7f:73:ac:8d:21:d2:e6:15:1a:f9:81:fd:0b:7d:
7c:84:4c:69:d6:22:cd:bf:d6:f0:64:96:78:1c:06:ed:1f:36:
c0:36:6a:97:ba:1f:2c:8c:53:8c:4d:5c:3c:f4:20:ed:78:cd:
1f:d6:a2:85:7d:85:b2:0d:39:f0:24:a1:2f:c0:2e:92:a0:60:
8b:bb:d1:c8:68:aa:bf:fc:88:2c:61:34:31:0e:01:88:6d:98:
65:4f:ef:b2:73:c3:90:6d:7c:ba:9b:22:c1:33:be:13:c0:54:
57:c7:ea:95:91:51:8f:26:f2:ed:75:51:57:44:f0:03:b5:41:
aa:eb:01:2c:07:15:a6:b6:b0:50:71:10:30:a9:90:76:6d:78:
15:08:d2:58:eb:82:2e:cb:64:9e:bf:22:ad:67:5d:a7:52:30:
5b:a3:9e:11:7c:97:e1:81:0a:77:c1:4a:3d:86:64:97:a0:50:
71:f3:da:5f:a3:f4:4a:ce:d2:7f:d9:e0:8c:54:9a:f2:aa:8a:
f3:e4:58:9b:80:81:ec:53:f3:02:a0:31:c0:51:06:e1:a7:89:
68:fa:3c:71:dd:05:78:00:ef:66:84:95:17:f0:eb:cd:67:3f:
5e:71:3e:d2:bb:f2:8c:d4:21:1a:b3:f0:70:77:80:95:7a:68:
4c:f0:f6:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:03 2024 by rpki-client on console-fra.rpki-client.org