Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C287/861FD87AF5AA11ECBF15E774C4F9AE02/7F797238210511EE886DB226C4F9AE02.roa
File: 7F797238210511EE886DB226C4F9AE02.roa (raw, json)
Hash identifier: FLayE2VEckmqyOTa0gjdKA2Ze21Bl7kynPfTqtjw1Xk=
Subject key identifier: DF:AA:3B:C3:61:CD:D5:9A:3B:CA:53:12:E5:0B:F6:64:F2:53:86:7E
Certificate issuer: /CN=A918C287/serialNumber=847014B15AFA781D228192BE054153DB6667D576
Certificate serial: 0171
Authority key identifier: 84:70:14:B1:5A:FA:78:1D:22:81:92:BE:05:41:53:DB:66:67:D5:76
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHAUsVr6eB0igZK-BUFT22Zn1XY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918C287/861FD87AF5AA11ECBF15E774C4F9AE02/7F797238210511EE886DB226C4F9AE02.roa
Signing time: Wed 12 Jul 2023 22:43:19 +0000
ROA not before: Wed 12 Jul 2023 22:43:19 +0000
ROA not after: Sat 01 May 2038 00:00:00 +0000
asID: 1234123412
IP address blocks: 203.176.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 369 (0x171)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918C287/serialNumber=847014B15AFA781D228192BE054153DB6667D576
Validity
Not Before: Jul 12 22:43:19 2023 GMT
Not After : May 1 00:00:00 2038 GMT
Subject: CN=64af2c87-e1be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bc:8d:59:87:75:48:3e:90:93:08:ee:a2:4c:
27:d3:c3:d2:e8:f0:6e:de:73:f8:2a:8f:eb:d1:fe:
b4:91:6c:39:b8:79:f1:9c:a3:b9:36:6e:85:60:c7:
02:9c:45:f5:83:4c:89:86:ee:f1:b6:85:8e:d7:83:
5e:49:58:84:e2:cb:a6:7c:98:97:d9:fd:2c:e2:df:
db:24:e6:c5:f3:02:21:d0:cf:a8:56:84:c2:86:72:
51:3e:54:65:10:a1:cd:af:d5:aa:5c:27:82:fa:70:
f8:db:d7:d2:73:d6:58:5f:06:12:47:0e:1d:94:4c:
fb:7f:74:5f:94:74:a5:79:97:10:1b:62:df:86:4b:
e3:e8:27:c1:7a:7a:71:8c:00:1f:72:90:a3:d5:e7:
fe:32:5e:64:cc:e8:ae:cf:de:a4:9b:c7:db:8f:78:
36:b3:3f:f7:bd:92:75:d5:0e:65:99:a9:62:01:43:
ac:91:85:62:b3:df:2c:68:5d:ed:91:41:ab:7e:ec:
7d:c4:9e:d4:2e:f7:f7:62:12:6c:f3:b5:83:df:1c:
1f:c8:e9:78:54:79:48:9f:4c:e6:e9:2c:77:36:bd:
12:e8:4a:7f:f6:b6:a8:29:04:f8:a1:60:de:7d:eb:
20:f4:4f:b9:37:97:eb:02:86:04:b5:52:27:e2:86:
06:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:AA:3B:C3:61:CD:D5:9A:3B:CA:53:12:E5:0B:F6:64:F2:53:86:7E
X509v3 Authority Key Identifier:
keyid:84:70:14:B1:5A:FA:78:1D:22:81:92:BE:05:41:53:DB:66:67:D5:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918C287/861FD87AF5AA11ECBF15E774C4F9AE02/hHAUsVr6eB0igZK-BUFT22Zn1XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHAUsVr6eB0igZK-BUFT22Zn1XY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C287/861FD87AF5AA11ECBF15E774C4F9AE02/7F797238210511EE886DB226C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.176.189.0/24
Signature Algorithm: sha256WithRSAEncryption
79:b5:23:5b:9d:85:bf:9f:fa:b0:45:89:32:70:52:af:5d:34:
9c:2b:6c:1c:7f:3e:37:98:73:35:09:81:bb:f3:34:52:79:1f:
9b:af:0a:7c:9f:47:0d:d3:84:54:59:0f:b2:f1:69:a7:0e:2f:
64:34:ee:26:2a:0e:3e:d8:48:a7:d1:6b:56:bb:be:94:37:0d:
35:8f:ac:76:60:c3:d9:a1:65:fe:f3:01:a0:5c:0d:ab:68:42:
80:33:6d:80:08:93:21:46:6b:76:e0:07:b8:ea:5f:8c:93:5f:
cc:6a:23:68:c4:ef:6e:02:0e:dd:42:5b:b9:7e:c8:52:7d:46:
2a:b0:0c:e4:70:98:85:91:1f:a0:00:75:ba:4c:23:77:eb:d6:
1e:a7:0b:76:28:1b:c0:04:fa:e8:b9:d7:8a:e2:f6:9d:a2:96:
19:8a:4f:78:8c:a3:6d:5e:05:2e:e2:44:a4:73:b8:b9:33:a2:
69:6a:0f:9d:7b:12:b2:a7:c8:66:29:e4:1f:2c:98:e9:77:cd:
89:cf:1b:76:ec:8c:92:fa:2e:eb:3d:54:57:f6:38:58:d1:16:
37:b8:f6:15:41:6a:14:a6:75:c4:f9:52:6d:ec:92:f1:ea:c5:
ed:a7:5c:12:6e:8d:52:2f:0f:39:bd:38:1f:d0:16:51:2d:ab:
ed:0e:5a:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:25 2024 by rpki-client on console-ams.rpki-client.org