Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/93D9FAE4DC3811ECBF142767C4F9AE02.roa
File: 93D9FAE4DC3811ECBF142767C4F9AE02.roa (raw, json)
Hash identifier: 0kZ6gxzD7mrATHS+jLcOtfTbU2L2Zw3n3Ao9dOMsj+Y=
Subject key identifier: E7:06:1C:94:54:22:8D:5A:D8:26:B2:22:F7:96:AB:26:52:70:B2:31
Certificate issuer: /CN=A91A001E/serialNumber=8278F47DEC5B7ADC201897F99BCC6E2BFA88D015
Certificate serial: 3AB4
Authority key identifier: 82:78:F4:7D:EC:5B:7A:DC:20:18:97:F9:9B:CC:6E:2B:FA:88:D0:15
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/93D9FAE4DC3811ECBF142767C4F9AE02.roa
Signing time: Wed 25 May 2022 14:40:10 +0000
ROA not before: Wed 25 May 2022 14:40:10 +0000
ROA not after: Fri 30 Sep 2022 00:00:00 +0000
asID: 3970
IP address blocks: 103.171.218.0/24 maxlen: 24
103.171.219.0/24 maxlen: 24
2001:df7:5380::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15028 (0x3ab4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A001E/serialNumber=8278F47DEC5B7ADC201897F99BCC6E2BFA88D015
Validity
Not Before: May 25 14:40:10 2022 GMT
Not After : Sep 30 00:00:00 2022 GMT
Subject: CN=628e3fca-83d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b4:41:3b:2b:64:45:e8:fc:0d:be:ee:a7:a5:
b1:46:1a:48:19:49:34:dc:e9:f3:24:5f:ed:25:ab:
ff:a5:24:ed:0f:9b:00:c8:2b:39:e0:c1:b1:05:89:
ed:b7:09:a1:6b:ee:8d:e2:f8:57:17:21:a0:32:49:
dc:8f:d1:41:8c:55:1a:69:ad:72:25:13:1a:e5:fd:
b1:2d:12:5f:11:94:1b:1f:e9:f1:6c:49:3e:8e:a2:
74:60:42:32:e0:67:1f:aa:1c:1e:bc:b6:ef:86:df:
1b:ae:d0:6f:70:1f:44:b6:3f:e7:70:87:c3:37:51:
c3:da:e2:16:74:54:d5:74:9e:f0:a1:28:19:32:81:
38:66:40:e0:1f:21:84:60:40:d0:ff:29:2d:88:15:
ba:09:a2:b8:96:c2:8a:95:7c:58:24:c3:c1:13:6f:
9f:fb:ca:99:02:1f:1e:3e:bf:3f:7f:57:aa:fa:d9:
d7:4f:10:9e:38:33:27:ba:81:c3:df:ad:52:a6:59:
33:e1:fc:61:dd:be:61:ad:cc:92:7f:3f:5e:a4:fb:
2c:84:c2:09:ae:2c:44:dc:a1:b7:d3:c2:39:a4:d8:
e7:2b:0a:b8:32:7e:3c:ce:09:a9:0e:f9:11:83:7b:
63:9e:61:08:b1:d0:76:83:f4:0a:75:46:5c:b3:97:
9b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:06:1C:94:54:22:8D:5A:D8:26:B2:22:F7:96:AB:26:52:70:B2:31
X509v3 Authority Key Identifier:
keyid:82:78:F4:7D:EC:5B:7A:DC:20:18:97:F9:9B:CC:6E:2B:FA:88:D0:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/93D9FAE4DC3811ECBF142767C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.171.218.0/23
IPv6:
2001:df7:5380::/48
Signature Algorithm: sha256WithRSAEncryption
4b:ea:6c:ea:ba:10:92:4b:1a:16:d3:98:bd:f9:ad:08:99:cc:
54:5d:d6:6d:74:b5:d0:fe:66:2c:15:22:06:89:52:b1:85:69:
fc:b6:d7:c5:52:c3:bf:a6:96:20:5e:a7:a0:d5:62:08:1f:ea:
8b:30:e3:55:96:34:d1:d3:f7:06:c9:1e:98:82:e1:41:0d:77:
a4:ae:e9:12:a7:89:90:49:b5:e2:65:19:8a:f0:6c:66:73:ca:
82:e7:95:8b:1c:73:a3:00:2c:a9:17:33:80:f1:83:be:b0:bb:
29:da:c4:a0:a3:46:96:6b:96:84:16:e7:1d:4a:cb:3e:f2:94:
47:15:a4:80:1a:2a:ac:1c:5d:bc:c6:73:2b:0e:e7:9d:56:ab:
0a:0b:99:ca:cc:e1:05:9f:f0:e4:25:a2:99:82:0c:7d:8d:32:
0d:1f:e7:5a:c0:20:ff:5c:5e:0c:05:4e:18:6f:1d:15:91:e5:
df:e0:f6:ff:d2:cb:af:07:d0:00:86:6c:c0:f7:f3:3d:90:9b:
16:d7:aa:ec:e1:7c:30:1e:79:0b:a7:74:3f:68:54:ec:02:5f:
5c:1d:ad:48:72:82:5f:4c:db:01:fd:91:73:5f:00:2f:b5:75:
27:7e:0b:0a:1e:d4:cf:22:a8:69:a7:a1:d9:b5:ca:cd:7a:de:
17:a0:9d:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:50 2024 by rpki-client on console-ams.rpki-client.org