Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C287/861FD87AF5AA11ECBF15E774C4F9AE02/E710174EB6FC11EDADF7EA6EC4F9AE02.roa
File: E710174EB6FC11EDADF7EA6EC4F9AE02.roa (raw, json)
Hash identifier: Qm2yNqc2udoXx3605mNFG6MLqkq6HXQPlPQRTnzVef0=
Subject key identifier: F9:E7:07:F6:7B:2C:8C:A4:69:D8:83:DD:A7:72:4D:88:80:66:B7:6C
Certificate issuer: /CN=A918C287/serialNumber=847014B15AFA781D228192BE054153DB6667D576
Certificate serial: 0122
Authority key identifier: 84:70:14:B1:5A:FA:78:1D:22:81:92:BE:05:41:53:DB:66:67:D5:76
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHAUsVr6eB0igZK-BUFT22Zn1XY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918C287/861FD87AF5AA11ECBF15E774C4F9AE02/E710174EB6FC11EDADF7EA6EC4F9AE02.roa
Signing time: Tue 28 Feb 2023 00:14:45 +0000
ROA not before: Tue 28 Feb 2023 00:14:45 +0000
ROA not after: Sat 01 May 2038 00:00:00 +0000
asID: 12341234
IP address blocks: 203.176.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 290 (0x122)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918C287/serialNumber=847014B15AFA781D228192BE054153DB6667D576
Validity
Not Before: Feb 28 00:14:45 2023 GMT
Not After : May 1 00:00:00 2038 GMT
Subject: CN=63fd4774-85ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:95:b3:3c:f9:dc:57:ea:23:cc:a0:ab:42:a8:
4a:5e:c5:39:35:ac:6a:9c:ef:50:e5:7d:b1:c5:a2:
2e:4e:d3:63:c9:84:11:f8:d6:b0:a6:27:1e:17:51:
15:da:f9:39:27:a0:9a:ad:d2:1f:56:37:74:60:29:
05:c0:cb:70:71:ef:74:b1:c1:b8:9a:20:7f:d4:63:
2a:64:f5:3f:ff:1f:a6:38:51:8b:45:00:5c:72:f7:
07:a3:7d:62:13:c5:06:18:03:84:c8:76:bc:d0:0a:
8b:59:b6:4a:e7:75:1c:30:aa:db:97:58:d2:82:2c:
53:bb:fd:70:16:ba:88:ea:7b:d1:ad:05:de:12:c5:
76:b8:47:7a:df:b5:7b:9d:c6:84:cc:70:80:43:67:
32:cf:f2:54:3c:a4:62:6b:43:5b:35:13:48:d0:71:
2e:5b:e0:67:1d:0a:db:90:b3:53:8f:5c:38:8f:88:
0b:98:c3:a7:30:06:c3:26:fb:f4:bd:ec:76:07:4d:
13:22:1c:9a:01:89:c5:23:80:87:07:84:1b:0c:86:
ce:8e:e7:05:5a:ee:bd:94:d4:99:34:1a:78:0c:1e:
e3:e5:10:2f:40:ed:d8:4e:94:61:b6:49:3c:09:9a:
64:f4:c5:1e:ab:f0:ee:e8:36:5e:10:2d:5b:b4:7a:
d2:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:E7:07:F6:7B:2C:8C:A4:69:D8:83:DD:A7:72:4D:88:80:66:B7:6C
X509v3 Authority Key Identifier:
keyid:84:70:14:B1:5A:FA:78:1D:22:81:92:BE:05:41:53:DB:66:67:D5:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918C287/861FD87AF5AA11ECBF15E774C4F9AE02/hHAUsVr6eB0igZK-BUFT22Zn1XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHAUsVr6eB0igZK-BUFT22Zn1XY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C287/861FD87AF5AA11ECBF15E774C4F9AE02/E710174EB6FC11EDADF7EA6EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.176.189.0/24
Signature Algorithm: sha256WithRSAEncryption
40:cf:96:97:68:25:82:f3:f0:ec:7d:23:88:c0:7f:ac:34:0f:
f2:46:47:2a:d5:1d:9a:28:13:26:43:6c:41:32:dd:24:55:78:
ba:0c:36:36:ff:55:6e:c3:c3:5d:70:f7:d2:99:c0:c5:ee:a7:
7b:82:a8:d2:76:92:eb:12:0f:e9:e0:6e:73:16:99:d3:98:0e:
9b:fd:d6:78:36:3f:e6:74:2e:de:19:2c:b4:a4:40:fc:0a:ef:
bc:b6:2c:bf:e1:e8:ae:4c:33:29:76:a2:06:cc:d8:0e:f1:64:
a5:94:72:01:ab:4e:ad:c5:53:c9:fd:07:62:60:a0:49:ab:4c:
d4:80:76:44:05:bb:c3:dd:06:4f:12:1a:24:55:51:28:98:f9:
10:bd:9e:9a:06:94:48:55:50:11:72:67:33:c4:eb:10:df:e8:
7b:c1:61:7c:50:55:cb:c8:8b:cd:94:0a:fd:bc:e5:c8:08:46:
66:f0:42:d8:e1:ef:a8:52:79:a2:b7:c3:a6:66:40:33:b4:83:
1b:86:3f:48:f7:c8:c6:75:75:58:b1:26:75:54:89:02:49:6b:
da:d2:29:77:d1:e2:db:0f:57:39:01:1d:5f:97:bd:07:03:7a:
db:ec:13:60:f6:3d:c9:a5:36:4b:97:30:7c:84:14:c1:60:ea:
5b:65:ed:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:15 2024 by rpki-client on console-fra.rpki-client.org