Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/E9E3F1A823C511E9920FD80FC4F9AE02.roa
File: E9E3F1A823C511E9920FD80FC4F9AE02.roa (raw, json)
Hash identifier: 82ds4gDxUhSuEM0F+mz4GI4QNnQGEZ9sfC/aw/oaNLg=
Subject key identifier: 48:7D:C3:66:8F:6B:8F:52:B3:DD:1C:89:7E:1D:E6:F3:77:F7:36:D4
Certificate issuer: /CN=A9166261/serialNumber=207C8CA15BF31B06BDC6EC43FF7579D4BFBA4CF6
Certificate serial: 129C
Authority key identifier: 20:7C:8C:A1:5B:F3:1B:06:BD:C6:EC:43:FF:75:79:D4:BF:BA:4C:F6
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IHyMoVvzGwa9xuxD_3V51L-6TPY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/E9E3F1A823C511E9920FD80FC4F9AE02.roa
Signing time: Fri 26 May 2023 16:22:32 +0000
ROA not before: Fri 26 May 2023 16:22:32 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 59325
IP address blocks: 192.82.52.0/22 maxlen: 22
192.82.52.0/24 maxlen: 24
192.82.53.0/24 maxlen: 24
192.82.54.0/24 maxlen: 24
192.82.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4764 (0x129c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9166261/serialNumber=207C8CA15BF31B06BDC6EC43FF7579D4BFBA4CF6
Validity
Not Before: May 26 16:22:32 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6470dcc8-e4d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1d:86:32:53:d3:3c:6b:11:14:cd:3d:1a:74:
ca:e3:19:44:d3:8b:85:3f:81:5e:e1:7f:06:08:cb:
87:6c:16:30:af:ec:62:a2:24:85:40:b0:ce:48:fe:
ab:35:3c:16:8c:93:65:19:51:f5:f5:cd:44:b8:21:
cf:ec:31:e6:db:f0:aa:c1:f9:f2:fb:c6:a2:d7:b3:
b9:69:67:eb:62:d8:2c:45:8f:d5:b2:ce:38:a6:05:
aa:af:46:37:86:7d:f9:1d:ae:15:d9:79:bf:89:5b:
17:33:f8:38:2b:1c:b3:fc:b8:69:8f:2a:2e:39:a2:
ee:e2:e9:91:9e:2d:7c:38:ba:33:a9:2e:35:0c:cc:
41:52:52:84:0f:58:04:20:12:8e:03:2d:8b:f4:57:
1d:b2:77:ce:cf:85:f6:40:cf:99:88:5b:9a:00:df:
a6:84:46:ea:04:43:69:60:d0:49:dd:f2:f3:e7:16:
a4:dd:06:75:00:99:56:35:ec:94:52:b6:cf:08:fd:
ed:5a:69:1d:2c:ef:e8:85:19:eb:43:48:c3:a9:a7:
c4:46:70:ed:3a:48:dd:10:1d:be:76:da:ec:6b:92:
be:de:94:0e:70:d8:0c:35:4b:74:25:3b:69:a0:99:
36:01:78:d6:1a:93:3f:44:ba:55:9e:af:31:b3:26:
ba:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:7D:C3:66:8F:6B:8F:52:B3:DD:1C:89:7E:1D:E6:F3:77:F7:36:D4
X509v3 Authority Key Identifier:
keyid:20:7C:8C:A1:5B:F3:1B:06:BD:C6:EC:43:FF:75:79:D4:BF:BA:4C:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IHyMoVvzGwa9xuxD_3V51L-6TPY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/E9E3F1A823C511E9920FD80FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.82.52.0/22
Signature Algorithm: sha256WithRSAEncryption
48:d2:58:e2:01:71:af:1b:11:ae:3c:3b:04:62:aa:b5:1b:1d:
49:68:fd:6f:e0:9f:68:b8:11:8d:a3:df:11:ff:2e:e9:6e:96:
c4:f0:72:4d:c7:e4:a7:75:99:02:d7:46:40:0d:1a:a8:ac:a6:
05:f3:e8:bc:24:ac:9c:4c:2c:70:18:91:ef:43:e8:af:1c:4d:
6e:79:8d:d9:04:8e:5d:af:48:cb:14:55:c5:f9:8c:7d:2f:93:
a7:b9:be:05:2a:ef:35:1e:4a:72:65:3d:aa:a9:18:53:7d:7f:
ce:5a:65:53:40:f0:f1:e9:75:a8:1c:c7:47:08:5f:c9:5d:14:
99:d1:37:95:cc:5b:e4:63:8e:9a:90:e1:72:89:fe:67:5f:58:
1e:e1:b7:b1:ef:fe:24:ae:96:77:39:de:78:65:36:27:be:78:
40:28:7c:e0:e0:4c:86:d2:6f:4f:48:7d:c9:89:e0:5f:9e:eb:
90:42:84:1f:66:d8:07:c8:03:75:20:f6:82:96:fe:91:af:a2:
e4:c8:03:3f:75:65:ae:61:75:50:e2:28:e9:6f:d4:31:81:a9:
75:aa:f4:d3:04:67:d3:e5:0d:99:11:46:f9:fe:9a:f6:46:c9:
1e:ca:06:83:71:8b:4a:dd:96:d2:d1:30:b1:11:27:7c:fd:95:
0a:58:d8:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:19 2024 by rpki-client on console-ams.rpki-client.org