Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918806F/B21E0C986F4A11E8B627496CC4F9AE02/3F9C3148245311EB9D543B25C4F9AE02.roa
File: 3F9C3148245311EB9D543B25C4F9AE02.roa (raw, json)
Hash identifier: HBKpk/mWT81n4wCpc2KDApqgAPBOaziepnXvoEYOQOo=
Subject key identifier: 1C:5C:46:CB:AD:E5:D0:71:53:4A:DE:25:DC:3C:57:5C:10:C3:F7:E8
Certificate issuer: /CN=A918806F/serialNumber=F78E183D0056C92BC70C3B40A64977A41280EF33
Certificate serial: 1102
Authority key identifier: F7:8E:18:3D:00:56:C9:2B:C7:0C:3B:40:A6:49:77:A4:12:80:EF:33
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/944YPQBWySvHDDtApkl3pBKA7zM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918806F/B21E0C986F4A11E8B627496CC4F9AE02/3F9C3148245311EB9D543B25C4F9AE02.roa
Signing time: Wed 06 Apr 2022 06:04:37 +0000
ROA not before: Wed 06 Apr 2022 06:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7224
IP address blocks: 43.224.76.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4354 (0x1102)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918806F/serialNumber=F78E183D0056C92BC70C3B40A64977A41280EF33
Validity
Not Before: Apr 6 06:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=624d2d74-dd9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c0:91:93:5c:88:c6:3b:1b:fc:97:b4:c0:a0:
18:b0:f8:35:31:56:5c:26:c4:84:9e:11:aa:f0:fe:
6d:0a:cc:a9:80:7b:23:e4:4c:d1:88:6d:c8:c2:6e:
dc:5f:29:fa:7d:c9:0d:fc:d0:f5:9d:b8:97:97:45:
5f:5c:c3:b3:12:3a:c5:18:da:3d:e6:73:99:ab:1b:
7b:de:ca:30:cb:fe:a0:10:fd:8b:b2:05:f0:8e:e6:
d8:8a:fc:df:29:34:3d:33:41:43:05:3f:8c:24:0b:
74:c9:ed:1f:f1:17:af:d8:78:47:de:3e:ad:e7:9c:
45:33:2d:bb:d8:11:9b:b8:10:54:86:20:6d:a5:80:
73:ca:bc:74:b2:57:e3:f2:5e:7b:88:b4:c0:1b:1f:
90:82:12:b0:9c:b7:3f:eb:36:37:5e:70:b5:e7:d7:
4e:bb:bd:65:d0:cf:55:8a:b1:10:85:6e:32:a0:3c:
85:87:52:29:2e:b9:ef:82:80:4d:fe:60:4d:95:f4:
07:82:69:99:de:01:5b:9e:6a:76:07:de:00:5b:10:
6f:2e:dd:f0:9c:06:18:d2:d2:f7:b2:e5:50:9d:27:
ee:7b:9d:24:ee:00:1f:51:e4:61:64:5f:e0:b2:a3:
65:a0:3f:77:5f:24:1e:54:8e:4c:79:4b:ee:30:86:
7e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:5C:46:CB:AD:E5:D0:71:53:4A:DE:25:DC:3C:57:5C:10:C3:F7:E8
X509v3 Authority Key Identifier:
keyid:F7:8E:18:3D:00:56:C9:2B:C7:0C:3B:40:A6:49:77:A4:12:80:EF:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918806F/B21E0C986F4A11E8B627496CC4F9AE02/944YPQBWySvHDDtApkl3pBKA7zM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/944YPQBWySvHDDtApkl3pBKA7zM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918806F/B21E0C986F4A11E8B627496CC4F9AE02/3F9C3148245311EB9D543B25C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.76.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:ee:7e:64:02:2b:26:fd:52:c9:24:f3:49:04:65:3e:bc:23:
c1:05:37:60:fe:5c:44:46:82:4d:41:1d:cb:86:54:3e:87:2c:
eb:17:6a:c3:6c:f8:7c:1b:ad:14:e8:b0:35:58:ca:b4:49:aa:
58:bd:69:65:a2:e0:55:66:08:af:38:ac:4e:b1:6e:63:9f:e6:
1c:eb:55:c5:09:fc:27:44:5e:e3:2e:cc:aa:f9:98:6f:bb:b6:
9d:a7:30:83:ae:74:55:8f:0f:25:7d:52:f5:aa:39:a6:55:b1:
05:2e:bb:c1:03:ee:ab:45:20:33:6c:72:7e:27:35:e8:5a:6c:
eb:97:37:55:b9:32:f7:e5:cf:0f:23:2b:55:a6:70:0d:b1:65:
f8:a8:2b:59:01:05:a3:a1:70:b2:d8:05:93:70:0c:7a:78:f2:
57:37:26:4c:91:d4:6c:8b:e0:30:83:f9:95:0d:f8:14:81:cf:
a9:ce:db:a6:aa:e2:03:e3:68:f9:bf:92:41:99:ef:be:54:c4:
36:13:67:71:a4:b9:e1:a9:56:4d:3a:44:d2:60:75:a9:51:21:
64:04:c2:99:84:f8:9b:5e:d7:a4:f1:e5:61:d9:94:7d:b6:c0:
dd:f0:ed:2b:3b:f0:ea:9c:36:8f:7d:f4:b9:b4:57:e4:76:2e:
59:b0:df:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:14 2024 by rpki-client on console-fra.rpki-client.org