Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5695/D5F7C0C83B9311E790729372C4F9AE02/65CBE3903B9511E7B35AE173C4F9AE02.roa
File: 65CBE3903B9511E7B35AE173C4F9AE02.roa (raw, json)
Hash identifier: eqUtexeBo0dxvYdyaL4f2va7lXIH5HRoB2ng/QJrAko=
Subject key identifier: 6C:2C:2C:B4:8E:81:42:AA:41:A4:55:0E:C5:AF:9F:C4:0C:CE:A2:01
Certificate issuer: /CN=A91A5695/serialNumber=8739D55437AA36B24FC8AD53C2D6EA8B6483EFF1
Certificate serial: 18A2
Authority key identifier: 87:39:D5:54:37:AA:36:B2:4F:C8:AD:53:C2:D6:EA:8B:64:83:EF:F1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hznVVDeqNrJPyK1Twtbqi2SD7_E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A5695/D5F7C0C83B9311E790729372C4F9AE02/65CBE3903B9511E7B35AE173C4F9AE02.roa
Signing time: Fri 02 Dec 2022 17:23:51 +0000
ROA not before: Fri 02 Dec 2022 17:23:51 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 134801
IP address blocks: 2001:df0:d300::/47 maxlen: 47
2001:df0:d300::/48 maxlen: 48
2001:df0:d301::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6306 (0x18a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A5695/serialNumber=8739D55437AA36B24FC8AD53C2D6EA8B6483EFF1
Validity
Not Before: Dec 2 17:23:51 2022 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=638a34a6-1a6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:64:fa:98:8f:10:fd:9b:af:08:bc:51:0d:20:
5b:6e:f9:66:b6:df:94:d3:d3:17:1c:8a:bf:df:98:
4e:15:13:a5:e2:cf:e3:6c:5e:91:72:47:cc:57:6d:
15:ee:e7:57:09:18:06:c2:1a:48:73:43:d7:9d:ee:
36:e0:d3:c0:86:cc:fc:5d:42:59:15:19:71:37:d4:
a2:84:76:e4:5b:d3:02:3a:b3:17:47:62:2b:2a:e0:
e8:e4:63:ca:8b:13:30:f4:fa:cc:7d:60:8b:3b:e3:
ab:17:39:8d:47:db:8c:c9:66:55:86:db:03:ee:e2:
7a:f7:8a:63:a8:a3:57:50:ad:94:85:a2:33:34:1d:
f1:b1:48:2a:13:82:f1:fa:b7:33:a5:38:57:fe:cd:
05:f6:67:b0:1c:1a:49:05:95:02:2b:4b:cf:b3:4c:
d1:fe:d8:2a:fa:e6:da:8f:52:de:f2:7c:9a:37:fa:
8e:00:7e:0c:27:c0:00:0b:dc:dd:ce:41:5a:b2:95:
47:d2:16:fb:bb:fc:59:23:04:db:12:80:76:37:96:
8b:0e:e5:42:c1:f9:23:55:ca:09:de:8d:4f:c6:80:
f5:25:e9:0f:48:81:79:8b:ad:f9:ef:a1:90:08:33:
f4:5c:ea:d2:a8:3d:2e:02:98:d1:8d:bc:ba:01:9c:
04:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:2C:2C:B4:8E:81:42:AA:41:A4:55:0E:C5:AF:9F:C4:0C:CE:A2:01
X509v3 Authority Key Identifier:
keyid:87:39:D5:54:37:AA:36:B2:4F:C8:AD:53:C2:D6:EA:8B:64:83:EF:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A5695/D5F7C0C83B9311E790729372C4F9AE02/hznVVDeqNrJPyK1Twtbqi2SD7_E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hznVVDeqNrJPyK1Twtbqi2SD7_E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5695/D5F7C0C83B9311E790729372C4F9AE02/65CBE3903B9511E7B35AE173C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:d300::/47
Signature Algorithm: sha256WithRSAEncryption
03:03:b7:d7:be:18:6a:1e:6a:cf:ae:94:db:4b:34:04:14:7a:
47:80:48:00:44:66:49:64:62:f1:4d:a9:50:2d:e2:0b:36:b9:
00:68:bb:d9:2b:8d:dc:1c:37:d3:3c:5c:ef:5f:1a:a3:cc:9b:
04:72:42:17:73:28:6b:26:1f:a5:a0:94:bf:25:36:4c:58:5c:
57:d7:1a:25:c1:45:00:bd:77:e8:e6:5e:8c:cc:b8:1d:1f:11:
8e:ef:94:07:18:ed:95:82:ce:3d:b8:59:f9:15:b2:21:53:4c:
e8:38:29:44:4e:aa:12:95:74:f3:53:fc:a3:d7:4e:5a:60:2c:
c2:83:88:c8:c9:ea:84:7b:72:79:89:42:f6:60:f0:ed:a2:3e:
df:36:a0:86:25:2b:ee:49:eb:04:83:03:34:b7:80:91:11:2a:
2d:a8:99:7a:41:6f:30:4a:62:65:18:5c:71:24:37:48:a9:2c:
6c:5d:d2:53:12:90:80:7b:38:8b:ba:5f:57:d0:7f:51:70:e5:
fa:29:ca:1d:1b:fd:4e:d7:f7:a5:5a:24:aa:c8:07:7d:60:53:
fd:b3:2a:a8:04:2e:a2:41:6c:26:39:a2:0f:27:53:aa:16:13:
5b:36:87:2d:64:9f:eb:2a:89:98:e4:55:36:fe:00:68:1d:f7:
50:7f:02:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:54 2024 by rpki-client on console-ams.rpki-client.org