Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D6FE/28F1F63E366911ECA80AB14BC4F9AE02/3E86B1C6366C11EC96045E58C4F9AE02.roa
File: 3E86B1C6366C11EC96045E58C4F9AE02.roa (raw, json)
Hash identifier: EB+AHrodUeiISZnzCnYm0+fi4ODDYDG4qLZAcRGSGF4=
Subject key identifier: C1:52:5E:48:EF:CF:54:62:D3:2B:D3:4A:0C:5E:EB:56:65:BB:A7:A3
Certificate issuer: /CN=A917D6FE/serialNumber=6AC8A675E7796E5040C5C11E8A01F0A934B0F548
Certificate serial: 02CC
Authority key identifier: 6A:C8:A6:75:E7:79:6E:50:40:C5:C1:1E:8A:01:F0:A9:34:B0:F5:48
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/asimded5blBAxcEeigHwqTSw9Ug.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917D6FE/28F1F63E366911ECA80AB14BC4F9AE02/3E86B1C6366C11EC96045E58C4F9AE02.roa
Signing time: Thu 01 Dec 2022 03:52:23 +0000
ROA not before: Thu 01 Dec 2022 03:52:23 +0000
ROA not after: Thu 30 Mar 2023 00:00:00 +0000
asID: 147023
IP address blocks: 103.173.28.0/23 maxlen: 23
103.173.28.0/24 maxlen: 24
103.173.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 716 (0x2cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917D6FE/serialNumber=6AC8A675E7796E5040C5C11E8A01F0A934B0F548
Validity
Not Before: Dec 1 03:52:23 2022 GMT
Not After : Mar 30 00:00:00 2023 GMT
Subject: CN=638824f7-f58d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:47:1d:31:fb:b4:19:ba:42:8b:d8:fa:ee:d0:
80:56:ed:0d:fe:0d:23:38:6c:0e:59:b9:bf:fa:49:
d8:c0:97:b3:7c:c5:b1:62:07:8d:74:49:b0:a6:79:
95:1c:f5:49:0c:c1:64:12:e8:7a:66:b6:d3:d8:29:
b9:4e:7b:91:56:74:3d:58:bb:2a:76:18:be:00:d0:
16:71:19:97:cc:57:f8:54:e4:91:29:62:e1:fa:c3:
28:56:c2:cc:98:c8:9c:76:c7:4d:bc:72:c5:b5:bd:
da:f0:41:b1:ef:c7:e5:5b:ea:19:7b:05:2f:44:99:
f1:ac:55:aa:24:ac:f2:c0:cb:31:52:d9:67:68:c1:
49:2a:c6:03:d8:7c:d5:70:21:68:dc:82:fb:17:4f:
cb:b6:b2:ff:68:a6:de:95:9a:68:8b:3d:44:57:2e:
19:46:29:6a:f9:78:05:db:2a:14:65:cc:31:8a:8e:
df:2c:81:52:c5:4f:80:48:2d:6d:d8:3e:92:4a:e3:
3f:b1:54:ce:49:a4:e0:16:74:b0:7d:09:10:ae:e8:
24:f0:d4:2b:26:3f:a2:28:71:f8:e5:05:92:a3:64:
d8:10:4b:2e:18:af:d8:96:fc:a2:4d:28:c9:5c:1e:
68:3d:f7:11:ba:cb:8b:38:60:04:e1:87:25:a1:de:
f1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:52:5E:48:EF:CF:54:62:D3:2B:D3:4A:0C:5E:EB:56:65:BB:A7:A3
X509v3 Authority Key Identifier:
keyid:6A:C8:A6:75:E7:79:6E:50:40:C5:C1:1E:8A:01:F0:A9:34:B0:F5:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917D6FE/28F1F63E366911ECA80AB14BC4F9AE02/asimded5blBAxcEeigHwqTSw9Ug.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/asimded5blBAxcEeigHwqTSw9Ug.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D6FE/28F1F63E366911ECA80AB14BC4F9AE02/3E86B1C6366C11EC96045E58C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.173.28.0/23
Signature Algorithm: sha256WithRSAEncryption
d0:fc:86:db:cb:9d:a8:46:ab:01:ab:1f:6e:c4:f4:d2:17:0c:
cf:10:a5:d2:d9:e5:53:5c:fe:a1:26:f1:ed:b5:f0:68:e6:c9:
3a:8e:7e:b4:f1:a5:cc:57:2c:6a:df:d1:78:ca:08:bb:72:3f:
c4:0e:d2:22:fb:50:3f:48:3b:d9:32:d6:68:48:c4:5c:17:f1:
db:b0:41:0f:ca:18:b3:11:6d:5b:7f:f7:5c:c8:2d:a2:2e:40:
e3:cb:f5:67:b5:19:04:f0:6c:41:8e:9d:fc:f4:41:cc:d5:9b:
cb:39:e6:16:6c:98:b1:40:d2:d0:45:2e:85:95:1e:ca:7f:bc:
8b:b9:fb:71:0c:1d:81:4c:76:cc:40:28:99:dd:63:75:83:61:
ff:dc:bb:a7:c4:80:4f:8f:8a:b6:fe:92:9b:60:34:df:f3:cf:
3d:b4:d0:7c:9d:b3:ad:8b:25:8e:5e:2f:a9:a5:f6:73:a1:3d:
33:f2:09:2c:f0:d1:ae:d4:81:b4:04:9b:cd:a6:d0:6c:cf:fc:
24:ca:9f:7a:e5:8e:02:4c:4c:25:ea:37:9f:27:3d:1c:29:91:
e2:2e:a3:9a:83:81:58:90:84:7c:eb:87:64:f1:fb:f9:62:55:
87:cc:3e:d2:a0:fa:46:76:7c:b1:48:0e:6c:42:49:43:b2:6e:
0f:51:f1:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-ams.rpki-client.org