Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155AE4/DBEE4318065311ED827BEF54C4F9AE02/AE132F86088C11ED934ACD67C4F9AE02.roa
File: AE132F86088C11ED934ACD67C4F9AE02.roa (raw, json)
Hash identifier: C935zqKwA/iV5Hc30w1SRMLVfQOLoppWqTyvsI9oz6Y=
Subject key identifier: BB:D0:19:46:0A:26:44:91:22:06:94:2E:E3:0A:C9:52:CA:84:B0:84
Certificate issuer: /CN=A9155AE4/serialNumber=CFC027BD66F089D369CB595E06025E2DDD19E382
Certificate serial: 01D5
Authority key identifier: CF:C0:27:BD:66:F0:89:D3:69:CB:59:5E:06:02:5E:2D:DD:19:E3:82
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8AnvWbwidNpy1leBgJeLd0Z44I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9155AE4/DBEE4318065311ED827BEF54C4F9AE02/AE132F86088C11ED934ACD67C4F9AE02.roa
Signing time: Sat 23 Mar 2024 04:06:20 +0000
ROA not before: Sat 23 Mar 2024 04:06:20 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 133414
IP address blocks: 172.192.0.0/13 maxlen: 13
172.192.0.0/20 maxlen: 20
172.192.16.0/20 maxlen: 20
172.193.0.0/21 maxlen: 21
172.193.8.0/21 maxlen: 21
172.193.16.0/21 maxlen: 21
172.193.24.0/21 maxlen: 21
172.193.32.0/21 maxlen: 21
172.193.40.0/21 maxlen: 21
172.193.48.0/21 maxlen: 21
172.193.56.0/21 maxlen: 21
172.193.64.0/21 maxlen: 21
172.193.72.0/21 maxlen: 21
172.193.80.0/21 maxlen: 21
172.193.88.0/21 maxlen: 21
172.193.96.0/21 maxlen: 21
172.193.104.0/21 maxlen: 21
172.193.112.0/21 maxlen: 21
172.193.120.0/21 maxlen: 21
172.193.128.0/21 maxlen: 21
172.193.136.0/21 maxlen: 21
172.193.144.0/21 maxlen: 21
172.193.152.0/21 maxlen: 21
172.193.160.0/21 maxlen: 21
172.193.168.0/21 maxlen: 21
172.193.176.0/21 maxlen: 21
172.193.184.0/21 maxlen: 21
172.193.192.0/21 maxlen: 21
172.193.200.0/21 maxlen: 21
172.193.208.0/21 maxlen: 21
172.193.216.0/21 maxlen: 21
172.193.224.0/21 maxlen: 21
172.193.232.0/21 maxlen: 21
172.194.0.0/19 maxlen: 19
172.194.128.0/21 maxlen: 21
172.194.136.0/21 maxlen: 21
172.194.144.0/21 maxlen: 21
172.194.152.0/21 maxlen: 21
172.194.160.0/21 maxlen: 21
172.194.168.0/21 maxlen: 21
172.194.176.0/21 maxlen: 21
172.194.184.0/21 maxlen: 21
172.194.192.0/21 maxlen: 21
172.194.200.0/21 maxlen: 21
172.194.208.0/21 maxlen: 21
172.194.216.0/21 maxlen: 21
172.195.0.0/21 maxlen: 21
172.195.8.0/21 maxlen: 21
172.195.16.0/21 maxlen: 21
172.195.24.0/21 maxlen: 21
172.195.32.0/21 maxlen: 21
172.195.40.0/21 maxlen: 21
172.195.48.0/21 maxlen: 21
172.195.56.0/21 maxlen: 21
172.195.64.0/21 maxlen: 21
172.195.72.0/21 maxlen: 21
172.195.80.0/21 maxlen: 21
172.195.88.0/21 maxlen: 21
172.195.96.0/21 maxlen: 21
172.195.104.0/21 maxlen: 21
172.195.112.0/21 maxlen: 21
172.195.120.0/21 maxlen: 21
172.195.128.0/21 maxlen: 21
172.195.136.0/21 maxlen: 21
172.195.144.0/21 maxlen: 21
172.195.152.0/21 maxlen: 21
172.195.160.0/21 maxlen: 21
172.195.168.0/21 maxlen: 21
172.195.176.0/21 maxlen: 21
172.195.184.0/21 maxlen: 21
172.195.192.0/22 maxlen: 22
172.195.196.0/22 maxlen: 22
172.195.200.0/21 maxlen: 21
172.195.208.0/21 maxlen: 21
172.196.0.0/20 maxlen: 20
172.196.16.0/20 maxlen: 20
172.196.32.0/21 maxlen: 21
172.196.40.0/21 maxlen: 21
172.196.48.0/21 maxlen: 21
172.197.0.0/21 maxlen: 21
172.197.8.0/21 maxlen: 21
172.197.16.0/21 maxlen: 21
172.197.24.0/21 maxlen: 21
172.197.32.0/21 maxlen: 21
172.197.40.0/21 maxlen: 21
172.197.48.0/21 maxlen: 21
172.197.56.0/21 maxlen: 21
172.197.64.0/21 maxlen: 21
172.197.72.0/21 maxlen: 21
172.197.80.0/21 maxlen: 21
172.197.88.0/21 maxlen: 21
172.197.96.0/21 maxlen: 21
172.197.104.0/21 maxlen: 21
172.197.112.0/21 maxlen: 21
172.197.120.0/21 maxlen: 21
172.197.128.0/21 maxlen: 21
172.197.136.0/21 maxlen: 21
172.197.144.0/21 maxlen: 21
172.197.152.0/21 maxlen: 21
172.197.160.0/21 maxlen: 21
172.197.168.0/21 maxlen: 21
172.197.176.0/21 maxlen: 21
172.197.184.0/21 maxlen: 21
172.197.192.0/22 maxlen: 22
172.197.196.0/22 maxlen: 22
172.197.200.0/21 maxlen: 21
172.197.208.0/21 maxlen: 21
172.197.216.0/21 maxlen: 21
172.197.224.0/21 maxlen: 21
172.197.232.0/21 maxlen: 21
172.197.240.0/21 maxlen: 21
172.197.254.0/24 maxlen: 24
172.197.255.0/24 maxlen: 24
172.198.0.0/21 maxlen: 21
172.198.32.0/21 maxlen: 21
172.198.40.0/21 maxlen: 21
172.198.72.0/21 maxlen: 21
172.198.80.0/21 maxlen: 21
172.198.88.0/21 maxlen: 21
172.198.160.0/19 maxlen: 20
172.198.200.0/21 maxlen: 21
172.198.208.0/21 maxlen: 21
172.198.216.0/21 maxlen: 21
172.198.224.0/21 maxlen: 21
172.198.232.0/21 maxlen: 21
172.198.240.0/21 maxlen: 21
172.199.0.0/19 maxlen: 19
172.199.192.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 469 (0x1d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9155AE4/serialNumber=CFC027BD66F089D369CB595E06025E2DDD19E382
Validity
Not Before: Mar 23 04:06:20 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=65fe553c-471e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b7:df:3c:da:24:e0:ef:00:bb:8b:45:d4:df:
07:10:b7:dc:65:97:29:87:47:2e:e0:5e:77:c3:0e:
1a:fd:89:60:a0:e3:7f:a0:fa:d5:bf:47:4d:e3:4d:
01:06:0a:dd:a7:5c:cc:96:ec:e6:e6:ea:9f:3a:e7:
38:e0:5a:9d:0e:ff:a5:ae:5c:3b:ab:68:9d:ca:a8:
c8:9f:21:72:7c:fb:05:51:7a:e3:b4:ae:61:d2:af:
ce:f1:6a:c1:d2:20:01:1d:f7:e7:16:37:a6:e8:aa:
5f:8f:bf:e3:be:ec:ea:de:40:26:86:3d:e1:4d:5b:
ef:d2:00:16:c8:22:78:cc:03:64:68:17:52:c8:86:
8f:c1:81:7e:f9:44:a3:b3:39:2e:94:89:e0:c6:13:
f9:51:80:6b:41:8e:91:6e:23:00:e2:2e:a3:73:d4:
d8:47:80:7a:45:55:b3:b0:79:22:a0:96:1c:9e:f2:
81:b3:76:ad:50:20:8b:ba:ca:3d:6b:9b:4b:6b:7e:
74:6f:64:16:8c:65:e8:4f:9d:a5:66:59:6c:6e:5d:
05:43:15:b9:d8:bf:85:05:7b:2e:8d:be:06:cc:1b:
8f:fa:e9:90:cb:89:72:7c:28:a2:b0:82:2b:9a:48:
38:78:5e:fa:3e:dc:8f:6e:06:76:a8:0e:e4:54:75:
f3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D0:19:46:0A:26:44:91:22:06:94:2E:E3:0A:C9:52:CA:84:B0:84
X509v3 Authority Key Identifier:
keyid:CF:C0:27:BD:66:F0:89:D3:69:CB:59:5E:06:02:5E:2D:DD:19:E3:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9155AE4/DBEE4318065311ED827BEF54C4F9AE02/z8AnvWbwidNpy1leBgJeLd0Z44I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8AnvWbwidNpy1leBgJeLd0Z44I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155AE4/DBEE4318065311ED827BEF54C4F9AE02/AE132F86088C11ED934ACD67C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
172.192.0.0/13
Signature Algorithm: sha256WithRSAEncryption
67:e6:12:95:1a:46:ce:70:ec:47:31:ef:1d:3f:fc:32:98:75:
cb:2f:4f:a8:ae:a0:9b:52:d6:5c:1b:2b:8b:15:fa:bd:7c:f9:
7f:b2:36:78:c4:ac:e8:68:72:34:06:43:f1:9d:f0:bf:7c:e1:
10:38:68:68:96:11:19:cc:a1:48:9c:49:a6:9c:4d:f5:b0:ac:
f2:21:13:72:ed:92:26:62:10:f8:6f:b6:53:08:33:30:4f:b1:
bd:53:37:ca:a7:1b:b1:96:e7:05:c9:29:75:19:d4:50:79:11:
ea:e2:d9:7d:6b:a8:8c:7b:58:40:93:ab:da:8d:40:8d:bc:b3:
5c:87:e7:27:cf:50:74:4d:46:d8:57:d2:83:1b:55:a3:13:8e:
0a:91:2c:0d:ad:82:93:ec:d0:1d:a1:e1:42:bc:b9:f5:a5:7a:
d5:6c:ef:f1:a0:64:a7:3d:c1:f2:ef:d1:9a:89:9b:12:50:c6:
a6:48:f6:c9:0c:0c:d1:86:6c:96:9c:76:85:f4:71:4b:86:33:
a5:6b:6b:b1:ca:c6:d0:da:f4:53:b5:5e:d3:e0:88:59:a7:c3:
5b:fe:ea:8b:4f:eb:2f:25:88:6c:10:54:72:8c:48:22:ee:b4:
e4:38:45:af:61:1b:2a:17:b2:6c:0c:e9:d5:ac:0e:90:d3:16:
99:6d:ba:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:07 2024 by rpki-client on console-fra.rpki-client.org