Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE0C4/6A9E3BD8F14711E99A9AB712C4F9AE02/51683C1E1E4A11EB953B3714C4F9AE02.roa
File: 51683C1E1E4A11EB953B3714C4F9AE02.roa (raw, json)
Hash identifier: La2jNBObMPUCPwfnCXYRhVtCEri9ADH+jraTTlmNg+4=
Subject key identifier: 6A:A5:24:D7:9C:66:7C:63:F8:92:78:6D:E3:CB:26:6C:59:E7:A1:70
Certificate issuer: /CN=A91AE0C4/serialNumber=E11FE937006A25D7C605A5E43B492B286C64998C
Certificate serial: 0BA2
Authority key identifier: E1:1F:E9:37:00:6A:25:D7:C6:05:A5:E4:3B:49:2B:28:6C:64:99:8C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4R_pNwBqJdfGBaXkO0krKGxkmYw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AE0C4/6A9E3BD8F14711E99A9AB712C4F9AE02/51683C1E1E4A11EB953B3714C4F9AE02.roa
Signing time: Sun 04 Dec 2022 21:46:03 +0000
ROA not before: Sun 04 Dec 2022 21:46:03 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 140220
IP address blocks: 60.234.181.0/24 maxlen: 24
60.234.182.0/24 maxlen: 24
60.234.183.0/24 maxlen: 24
60.234.184.0/24 maxlen: 24
60.234.185.0/24 maxlen: 24
60.234.186.0/24 maxlen: 24
60.234.190.0/24 maxlen: 24
60.234.192.0/24 maxlen: 24
60.234.193.0/24 maxlen: 24
60.234.194.0/23 maxlen: 24
60.234.196.0/24 maxlen: 24
60.234.197.0/24 maxlen: 24
60.234.198.0/23 maxlen: 24
60.234.201.0/24 maxlen: 24
60.234.202.0/23 maxlen: 24
60.234.204.0/24 maxlen: 24
60.234.207.0/24 maxlen: 24
60.234.208.0/24 maxlen: 24
60.234.209.0/24 maxlen: 24
60.234.210.0/23 maxlen: 24
60.234.212.0/22 maxlen: 24
60.234.216.0/23 maxlen: 24
60.234.218.0/24 maxlen: 24
60.234.219.0/24 maxlen: 24
60.234.220.0/24 maxlen: 24
60.234.221.0/24 maxlen: 24
60.234.222.0/24 maxlen: 24
60.234.223.0/24 maxlen: 24
60.234.224.0/24 maxlen: 24
60.234.225.0/24 maxlen: 24
60.234.226.0/24 maxlen: 24
60.234.227.0/24 maxlen: 24
60.234.228.0/23 maxlen: 24
60.234.230.0/24 maxlen: 24
60.234.231.0/24 maxlen: 24
60.234.232.0/24 maxlen: 24
60.234.233.0/24 maxlen: 24
60.234.234.0/24 maxlen: 24
60.234.235.0/24 maxlen: 24
60.234.236.0/24 maxlen: 24
60.234.237.0/24 maxlen: 24
60.234.238.0/24 maxlen: 24
60.234.239.0/24 maxlen: 24
60.234.240.0/24 maxlen: 24
60.234.241.0/24 maxlen: 24
60.234.242.0/24 maxlen: 24
60.234.243.0/24 maxlen: 24
60.234.244.0/23 maxlen: 24
60.234.246.0/24 maxlen: 24
60.234.247.0/24 maxlen: 24
60.234.248.0/24 maxlen: 24
60.234.249.0/24 maxlen: 24
60.234.250.0/24 maxlen: 24
60.234.251.0/24 maxlen: 24
60.234.252.0/24 maxlen: 24
60.234.253.0/24 maxlen: 24
60.234.254.0/24 maxlen: 24
60.234.255.0/24 maxlen: 24
202.127.8.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2978 (0xba2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AE0C4/serialNumber=E11FE937006A25D7C605A5E43B492B286C64998C
Validity
Not Before: Dec 4 21:46:03 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=638d151b-cab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:dd:b6:a7:28:0d:83:41:b4:e8:12:63:f8:d1:
88:d3:d5:77:3b:9f:4f:c4:d7:af:a9:40:2a:44:99:
01:ac:c4:2e:d8:f8:9c:aa:c4:7c:7a:54:9e:98:ef:
ba:80:2a:ab:ad:7f:c2:ce:e0:3a:5c:d7:7f:cb:36:
a9:25:c1:70:e9:27:1d:71:1b:0b:3f:e1:f4:eb:d7:
45:81:50:3e:fb:05:bf:79:93:f4:04:34:09:02:7f:
10:71:4f:48:24:55:b9:5d:33:f7:3c:cd:36:24:64:
de:3a:4a:d6:75:1a:3b:21:fd:08:00:55:83:a7:7e:
df:db:be:e1:15:dc:0c:d9:e8:7e:bf:be:08:55:0e:
ef:b0:bf:f9:00:c5:57:99:f3:1b:2e:33:9d:95:50:
90:91:dd:7d:d9:f5:b8:b8:59:88:ba:6d:c4:00:87:
a5:19:c0:dd:ea:a2:28:9d:82:64:33:20:04:ab:e4:
74:79:b2:8e:e9:fb:1a:17:54:d3:58:94:66:23:08:
ff:6f:14:5d:84:6a:c8:88:f0:7d:66:bb:9e:8d:11:
0b:a0:aa:85:d8:94:b2:5f:a6:2d:88:98:1d:a6:11:
8f:cf:90:49:3f:6a:cb:46:f8:0d:20:6e:6e:50:82:
b5:e1:4e:9b:a0:81:eb:c1:41:84:9b:24:23:6f:82:
59:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A5:24:D7:9C:66:7C:63:F8:92:78:6D:E3:CB:26:6C:59:E7:A1:70
X509v3 Authority Key Identifier:
keyid:E1:1F:E9:37:00:6A:25:D7:C6:05:A5:E4:3B:49:2B:28:6C:64:99:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AE0C4/6A9E3BD8F14711E99A9AB712C4F9AE02/4R_pNwBqJdfGBaXkO0krKGxkmYw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4R_pNwBqJdfGBaXkO0krKGxkmYw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE0C4/6A9E3BD8F14711E99A9AB712C4F9AE02/51683C1E1E4A11EB953B3714C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
60.234.181.0-60.234.186.255
60.234.190.0/24
60.234.192.0/21
60.234.201.0-60.234.204.255
60.234.207.0-60.234.255.255
202.127.8.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:f3:4f:55:f8:71:78:b5:cb:8b:ff:94:68:e8:5c:94:67:33:
dc:9c:74:db:ef:11:2b:b7:3d:53:d1:6f:49:36:47:e2:c7:68:
c8:ca:bc:3a:05:a3:6b:16:21:72:bd:71:52:89:7d:a2:93:6e:
79:88:0b:56:93:b6:8d:c2:d4:ab:e6:87:55:33:9e:c5:0d:76:
a6:34:a3:27:f6:00:9f:af:57:19:13:08:c0:78:3c:6b:2e:3e:
ea:e7:c9:26:8b:25:08:00:63:8e:37:03:b1:0c:e2:72:67:84:
78:db:08:e6:82:ab:7a:1f:bd:76:6d:59:ec:fe:22:f6:36:69:
2a:97:36:c1:99:25:1a:64:62:a6:c7:a9:a8:9f:ae:9d:79:39:
30:1a:dc:12:50:6b:9f:6f:08:d8:2f:7b:15:bc:41:e9:56:86:
96:5c:a4:a9:c2:24:99:a2:21:5c:54:32:87:da:c4:2b:43:30:
ea:ff:a2:64:18:1b:f5:6f:eb:d3:07:6c:6a:d4:50:d4:6a:22:
39:42:2b:f4:65:12:97:6c:cb:8b:2e:d2:73:50:c3:c7:1f:f1:
ae:55:3c:12:6e:1c:e8:43:24:28:94:b6:c0:4b:be:77:1b:ce:
a0:d9:b8:90:be:de:65:4f:da:d2:51:b0:22:d1:4f:94:37:0c:
34:d2:6c:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:37 2024 by rpki-client on console-fra.rpki-client.org