Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914787F/DF687528845011E9A094794BC4F9AE02/02DA6826D37311EC9940DB1CC4F9AE02.roa
File: 02DA6826D37311EC9940DB1CC4F9AE02.roa (raw, json)
Hash identifier: WXsCia9pK4DJ6raM71lvPXydRKmTzuUH35704N/3ZIY=
Subject key identifier: F5:81:C2:9E:42:18:2D:09:A2:22:BB:01:2B:16:0C:25:B4:79:1C:70
Certificate issuer: /CN=A914787F/serialNumber=C10765933579F9C3DB3C0D69790744526E3AE641
Certificate serial: 0C70
Authority key identifier: C1:07:65:93:35:79:F9:C3:DB:3C:0D:69:79:07:44:52:6E:3A:E6:41
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQdlkzV5-cPbPA1peQdEUm465kE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914787F/DF687528845011E9A094794BC4F9AE02/02DA6826D37311EC9940DB1CC4F9AE02.roa
Signing time: Thu 28 Jul 2022 07:05:26 +0000
ROA not before: Thu 28 Jul 2022 07:05:25 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 4767
IP address blocks: 202.8.65.0/24 maxlen: 24
202.8.66.0/24 maxlen: 24
202.8.67.0/24 maxlen: 24
202.8.68.0/24 maxlen: 24
202.8.69.0/24 maxlen: 24
202.8.70.0/24 maxlen: 24
202.8.71.0/24 maxlen: 24
203.159.0.0/18 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3184 (0xc70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914787F/serialNumber=C10765933579F9C3DB3C0D69790744526E3AE641
Validity
Not Before: Jul 28 07:05:25 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=62e23535-560d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f8:6a:14:e4:c2:30:3f:8e:42:df:ec:5e:e8:
64:26:e8:88:f6:bf:82:0f:79:73:b3:da:53:95:14:
9f:0b:1f:9b:2b:86:ce:31:95:4d:b3:7b:ab:63:1e:
87:7c:25:65:2b:b4:9a:ea:01:d2:2c:7a:c5:ab:9e:
96:ec:b9:86:e9:a6:6a:a6:16:bc:d0:e6:e8:ea:9f:
36:b3:02:46:ca:1a:25:5f:32:94:8d:61:3f:db:2a:
77:a3:4f:c0:db:3b:25:35:db:93:6a:0b:24:a5:a1:
5a:8b:fd:34:ac:cb:3e:af:b2:67:c5:86:12:29:cc:
c7:4c:a2:10:aa:33:a8:a0:e2:99:07:81:5c:24:1a:
47:a5:3b:72:8d:49:12:b6:81:a9:10:86:8b:b7:32:
8c:39:a1:4c:1b:f5:1c:1b:58:1d:e9:d3:32:59:50:
3c:a4:8a:b1:a7:06:52:31:b9:94:39:47:8e:a0:b7:
57:51:cb:61:84:55:fd:1d:39:98:d8:18:ac:07:66:
62:bf:65:f9:a3:b9:62:ea:0f:64:1e:a4:60:82:a5:
e6:02:86:d1:2d:35:c7:a6:ef:18:2a:02:43:6f:d8:
29:80:bc:a8:46:fb:e7:8c:23:9e:01:a6:7b:0e:98:
d6:2b:48:dd:57:15:26:62:e1:25:89:33:fd:6a:f7:
1d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:81:C2:9E:42:18:2D:09:A2:22:BB:01:2B:16:0C:25:B4:79:1C:70
X509v3 Authority Key Identifier:
keyid:C1:07:65:93:35:79:F9:C3:DB:3C:0D:69:79:07:44:52:6E:3A:E6:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914787F/DF687528845011E9A094794BC4F9AE02/wQdlkzV5-cPbPA1peQdEUm465kE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQdlkzV5-cPbPA1peQdEUm465kE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914787F/DF687528845011E9A094794BC4F9AE02/02DA6826D37311EC9940DB1CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.8.65.0-202.8.71.255
203.159.0.0/18
Signature Algorithm: sha256WithRSAEncryption
67:9d:22:73:69:e5:3a:44:1a:0f:a7:9a:dd:b1:18:1d:25:13:
74:5a:2a:fa:8f:07:f5:1f:67:91:d2:09:78:8a:1a:9e:68:30:
0a:e6:8e:ba:c8:1a:63:07:3d:94:28:dc:3d:53:ff:54:9b:01:
5c:2c:df:63:ad:f3:b9:1d:e4:92:b7:0c:a7:c1:d6:18:d2:55:
3e:49:40:da:18:11:2f:4c:49:37:7f:6d:73:a5:38:f5:57:51:
44:32:e3:98:fc:17:ab:f4:68:2c:ec:26:c6:4a:1c:e6:de:41:
a7:da:b9:52:2f:c1:b8:3c:29:ff:e7:6b:26:b8:06:a9:f7:25:
fc:ec:bf:d5:ce:9b:8e:08:5d:21:bf:ec:0b:38:39:48:30:84:
1b:78:88:7d:06:ce:89:6d:86:64:e5:5b:b8:6e:e2:5d:66:14:
17:b6:e2:d3:f6:7a:2e:5e:02:aa:42:1d:36:cb:7d:06:71:c2:
47:2d:7e:99:4f:54:29:44:b0:6f:c1:ba:ab:a4:ff:bc:4c:b5:
7a:21:b1:64:1f:c2:ab:aa:c0:6c:bd:65:8c:a2:b2:ed:83:25:
97:15:d4:68:45:07:26:d3:74:2d:58:c4:da:3c:b6:63:e0:88:
00:8c:63:bd:5c:f7:0e:9f:8e:c6:db:00:31:45:dd:1e:06:05:
86:98:8d:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:57 2024 by rpki-client on console-ams.rpki-client.org