Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B1F3/A81875666D4011EBA667E02DC4F9AE02/99A8ADF06D4211EB9F314A30C4F9AE02.roa
File: 99A8ADF06D4211EB9F314A30C4F9AE02.roa (raw, json)
Hash identifier: mjBt78U6sNF+rg2pCt2AWg43+wrw3ttIg6Yd2zGBNXA=
Subject key identifier: 28:8F:80:AB:09:78:A7:30:4C:A6:27:D4:1D:0E:CC:49:DB:2E:07:52
Certificate issuer: /CN=A918B1F3/serialNumber=1FC1525053E3E027C4D919EBF81D952584ADB757
Certificate serial: 03B3
Authority key identifier: 1F:C1:52:50:53:E3:E0:27:C4:D9:19:EB:F8:1D:95:25:84:AD:B7:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8FSUFPj4CfE2Rnr-B2VJYStt1c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918B1F3/A81875666D4011EBA667E02DC4F9AE02/99A8ADF06D4211EB9F314A30C4F9AE02.roa
Signing time: Thu 02 Jun 2022 01:25:28 +0000
ROA not before: Thu 02 Jun 2022 01:25:28 +0000
ROA not after: Sat 01 Oct 2022 00:00:00 +0000
asID: 7494
IP address blocks: 202.56.176.0/20 maxlen: 20
202.56.176.0/21 maxlen: 21
202.56.176.0/24 maxlen: 24
202.56.177.0/24 maxlen: 24
202.56.178.0/24 maxlen: 24
202.56.179.0/24 maxlen: 24
202.56.180.0/24 maxlen: 24
202.56.181.0/24 maxlen: 24
202.56.182.0/24 maxlen: 24
202.56.183.0/24 maxlen: 24
202.56.184.0/24 maxlen: 24
202.56.185.0/24 maxlen: 24
202.56.186.0/24 maxlen: 24
202.56.187.0/24 maxlen: 24
202.56.188.0/24 maxlen: 24
202.56.189.0/24 maxlen: 24
202.56.190.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 947 (0x3b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918B1F3/serialNumber=1FC1525053E3E027C4D919EBF81D952584ADB757
Validity
Not Before: Jun 2 01:25:28 2022 GMT
Not After : Oct 1 00:00:00 2022 GMT
Subject: CN=62981188-3ee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a9:a2:fd:4a:e3:98:ca:71:3f:80:56:6f:3c:
57:15:9e:f5:08:41:38:f5:f4:45:27:d3:5f:ae:b0:
42:8a:2c:b8:32:93:5a:57:c1:47:15:14:55:f3:ed:
bb:a8:3e:75:ed:19:b2:67:b6:d6:45:d1:0e:82:15:
61:e4:35:82:08:96:65:4a:c9:4a:90:db:34:fe:9c:
d8:90:e9:0b:f3:4c:86:2d:7e:44:56:7a:e2:32:2b:
a2:95:49:31:71:f5:47:fa:42:5d:21:c5:9f:9e:de:
e0:81:d5:70:f4:ac:80:63:be:95:24:90:a7:c1:aa:
59:a4:48:01:5d:5d:16:6e:8d:27:ef:c1:b8:2b:95:
b7:f7:ff:c7:80:f7:fc:7f:5b:28:30:43:7d:16:ca:
73:03:f6:ac:59:11:d4:e0:1b:a1:d1:9a:81:2a:fa:
46:4a:d5:28:2d:d0:5e:bf:9b:b0:d4:d6:12:94:2e:
11:c2:5b:dd:a7:69:f2:fe:29:14:1a:fb:8b:f6:3e:
06:3d:fd:2c:f8:83:08:b0:81:a6:67:4b:f1:ae:08:
92:94:f5:7e:89:42:61:34:a6:8a:f0:be:6a:5a:4d:
51:5a:16:3a:19:bf:0f:92:68:fe:55:46:b1:00:da:
7e:bd:18:26:47:1d:ce:d7:ed:d0:4b:70:ef:13:aa:
0f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:8F:80:AB:09:78:A7:30:4C:A6:27:D4:1D:0E:CC:49:DB:2E:07:52
X509v3 Authority Key Identifier:
keyid:1F:C1:52:50:53:E3:E0:27:C4:D9:19:EB:F8:1D:95:25:84:AD:B7:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918B1F3/A81875666D4011EBA667E02DC4F9AE02/H8FSUFPj4CfE2Rnr-B2VJYStt1c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8FSUFPj4CfE2Rnr-B2VJYStt1c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B1F3/A81875666D4011EBA667E02DC4F9AE02/99A8ADF06D4211EB9F314A30C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.56.176.0/20
Signature Algorithm: sha256WithRSAEncryption
a0:32:d1:4c:11:5f:c6:71:73:8e:50:99:9a:67:1f:bb:15:0d:
e8:fc:22:6a:74:0f:6c:b6:70:dc:bc:04:7e:4e:79:c7:42:93:
3a:b6:17:de:f4:2d:f4:2a:60:60:30:88:1b:2f:ca:7c:be:dc:
4e:10:79:f8:b5:bb:74:e9:0c:3d:2b:7f:c7:13:b5:79:bf:8e:
0b:bc:9d:dc:93:02:3d:90:94:68:f3:4d:c5:8d:ad:83:7a:72:
8c:05:5e:86:f2:fe:65:4f:e1:5d:24:24:c8:3d:8b:a6:0d:f7:
a3:46:3d:eb:ed:61:54:fb:b1:70:3f:f4:62:a3:10:04:5e:f0:
3c:61:47:76:9c:ca:da:ea:84:66:0f:b5:24:75:fd:5f:aa:76:
6d:82:10:82:8a:10:04:5c:46:4a:86:50:bc:f0:71:d7:70:1f:
ab:8a:70:a9:17:13:6d:4f:4b:78:c3:9f:e2:2b:e2:b3:e8:1c:
e9:44:be:09:b4:87:7f:f9:7b:2d:36:87:3e:b1:03:c1:8d:c7:
ad:2f:3b:53:94:fd:33:ef:60:b4:e1:8c:e5:d2:97:7b:14:31:
b9:33:53:de:b6:00:7b:e5:64:96:7f:5a:16:58:e3:ea:ed:61:
47:45:62:85:fb:b9:d7:ee:b5:f9:19:da:f8:c2:8c:46:08:58:
97:10:ad:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:25 2024 by rpki-client on console-ams.rpki-client.org