Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91856F6/879F388E869E11EB9A049627C4F9AE02/4DE5018EBE4811EE9D816F18C4F9AE02.roa
File: 4DE5018EBE4811EE9D816F18C4F9AE02.roa (raw, json)
Hash identifier: 17TlZFN+F73ocTQhLgs/45biGFwuH5qPqaMIM4IB/PU=
Subject key identifier: F6:E5:74:A2:8D:42:E4:4F:FD:CE:64:C9:21:9F:D3:7B:ED:86:63:A7
Certificate issuer: /CN=A91856F6/serialNumber=3A084422257FF5F179A50ECBFC02EBF725BB9343
Certificate serial: 05C1
Authority key identifier: 3A:08:44:22:25:7F:F5:F1:79:A5:0E:CB:FC:02:EB:F7:25:BB:93:43
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OghEIiV_9fF5pQ7L_ALr9yW7k0M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91856F6/879F388E869E11EB9A049627C4F9AE02/4DE5018EBE4811EE9D816F18C4F9AE02.roa
Signing time: Mon 29 Jan 2024 01:47:05 +0000
ROA not before: Mon 29 Jan 2024 01:47:05 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 45459
IP address blocks: 2404:3800::/48 maxlen: 48
2404:3800:1::/48 maxlen: 48
2404:3800:2::/47 maxlen: 47
2404:3800:4::/46 maxlen: 46
2404:3800:8::/46 maxlen: 46
2404:3800:c::/47 maxlen: 47
2404:3800:e::/48 maxlen: 48
2404:3800:10::/44 maxlen: 44
2404:3800:20::/43 maxlen: 43
2404:3800:40::/42 maxlen: 42
2404:3800:80::/41 maxlen: 41
2404:3800:100::/40 maxlen: 40
2404:3800:200::/39 maxlen: 39
2404:3800:400::/38 maxlen: 38
2404:3800:800::/37 maxlen: 37
2404:3800:1000::/36 maxlen: 36
2404:3800:2000::/35 maxlen: 35
2404:3800:4000::/34 maxlen: 34
2404:3800:8000::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1473 (0x5c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91856F6/serialNumber=3A084422257FF5F179A50ECBFC02EBF725BB9343
Validity
Not Before: Jan 29 01:47:05 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=65b70399-553f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:29:41:bc:f2:da:1f:0a:cb:dd:ce:48:d1:cc:
04:b9:8c:f0:d4:d5:61:91:6f:55:52:39:ad:27:5e:
3f:16:90:5a:dd:4d:2b:35:ab:9c:00:fa:7a:7e:8b:
2e:5a:f9:72:6d:99:57:5a:b3:d3:b5:b7:51:79:2b:
73:5c:df:c0:2f:7d:ae:9a:6f:93:3d:7b:b8:e6:bf:
16:75:ad:38:00:cc:f5:14:33:9d:f6:b1:05:4e:b0:
99:e1:ec:5c:b2:03:3f:95:63:f1:1b:90:1f:2a:1f:
39:a7:9b:12:f7:e9:b6:aa:86:7e:db:e4:ee:15:e0:
bb:7b:18:8c:7f:59:6d:6f:fa:dd:3b:45:d1:00:5c:
a1:b0:02:45:ab:72:bd:2a:83:ec:dc:89:13:d0:41:
76:3a:f8:cf:0d:bc:e4:34:30:ef:fc:46:8d:af:04:
fe:c7:78:b2:ac:90:fd:4c:02:f6:11:c0:9b:bb:f1:
f2:4a:86:3d:7e:b4:b3:40:b4:c5:f8:8a:ed:d5:ea:
7c:0f:2f:50:3c:d6:51:1f:64:2a:86:b1:f8:02:d2:
c1:b2:55:5e:aa:ec:0c:1a:8a:26:f8:1a:d1:51:a4:
12:a7:88:25:92:ab:37:16:7b:98:72:44:ee:65:1c:
8f:98:99:aa:fe:92:5a:72:b2:e6:b6:e7:0b:ad:3e:
c5:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:E5:74:A2:8D:42:E4:4F:FD:CE:64:C9:21:9F:D3:7B:ED:86:63:A7
X509v3 Authority Key Identifier:
keyid:3A:08:44:22:25:7F:F5:F1:79:A5:0E:CB:FC:02:EB:F7:25:BB:93:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91856F6/879F388E869E11EB9A049627C4F9AE02/OghEIiV_9fF5pQ7L_ALr9yW7k0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OghEIiV_9fF5pQ7L_ALr9yW7k0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91856F6/879F388E869E11EB9A049627C4F9AE02/4DE5018EBE4811EE9D816F18C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:3800::-2404:3800:e:ffff:ffff:ffff:ffff:ffff
2404:3800:10::-2404:3800:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
41:8f:2f:79:a9:fd:7a:60:21:00:a5:f4:82:e0:2b:48:f1:70:
1a:7a:9c:dd:1b:b3:ea:ca:55:72:d3:5d:76:40:29:1d:59:1f:
5f:45:4d:31:f8:98:49:09:e6:cb:4d:3b:96:5c:df:9b:68:23:
5c:b6:59:07:75:8d:7d:24:fc:ce:92:33:3a:af:ba:a9:44:37:
21:8e:9a:f0:68:17:8b:ef:d7:8e:95:dc:3a:bc:30:4f:f9:1b:
0e:ff:c1:ca:b1:f7:60:78:99:4d:25:e9:b5:08:bf:c5:97:1e:
c3:a0:e7:41:a4:98:e3:0f:1b:9f:df:c3:b6:9a:55:8a:33:3b:
dc:27:e5:5b:d4:c0:5d:72:c4:ed:93:0e:02:6e:40:b0:3c:7d:
d3:fc:4a:2a:ba:b1:18:33:ba:7b:51:0c:33:fd:f7:28:57:27:
cf:fb:38:5c:d0:d6:40:b8:bd:56:6b:5c:5f:45:72:b1:8f:29:
dd:ce:39:f1:6a:a9:a5:e4:08:ac:1c:c8:bd:39:8d:0a:80:c3:
5b:84:df:61:70:1d:ab:71:c7:4c:74:5a:b7:11:2e:a5:df:15:
b5:04:8a:bf:fa:5e:e8:6d:e8:36:66:2c:ad:ff:f6:81:69:da:
be:43:5c:cf:84:e2:68:23:78:cc:f4:4c:fd:0c:41:a7:19:02:
0c:0f:0d:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-ams.rpki-client.org