Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE0C4/6A9E3BD8F14711E99A9AB712C4F9AE02/97372736FEA811E9A0109214C4F9AE02.roa
File: 97372736FEA811E9A0109214C4F9AE02.roa (raw, json)
Hash identifier: UHIzEDxnvEZRSwiQazk9p1e0upot5h8dpqx1SqtPHk0=
Subject key identifier: F6:D3:91:8E:59:53:40:66:2D:C3:DE:A8:F0:84:28:86:9C:5D:79:5E
Certificate issuer: /CN=A91AE0C4/serialNumber=E11FE937006A25D7C605A5E43B492B286C64998C
Certificate serial: 0B92
Authority key identifier: E1:1F:E9:37:00:6A:25:D7:C6:05:A5:E4:3B:49:2B:28:6C:64:99:8C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4R_pNwBqJdfGBaXkO0krKGxkmYw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AE0C4/6A9E3BD8F14711E99A9AB712C4F9AE02/97372736FEA811E9A0109214C4F9AE02.roa
Signing time: Wed 09 Nov 2022 00:06:14 +0000
ROA not before: Wed 09 Nov 2022 00:06:14 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 9889
IP address blocks: 123.100.64.0/18 maxlen: 18
123.100.66.0/24 maxlen: 24
123.100.68.0/24 maxlen: 24
123.100.71.0/24 maxlen: 24
123.100.72.0/24 maxlen: 24
123.100.123.0/24 maxlen: 24
124.198.128.0/18 maxlen: 18
124.198.184.0/24 maxlen: 24
124.198.185.0/24 maxlen: 24
124.198.186.0/24 maxlen: 24
124.198.187.0/24 maxlen: 24
124.198.188.0/24 maxlen: 24
124.198.192.0/18 maxlen: 20
202.89.32.0/19 maxlen: 19
202.89.33.0/24 maxlen: 24
202.89.41.0/24 maxlen: 24
202.89.56.0/24 maxlen: 24
203.89.160.0/19 maxlen: 19
203.89.176.0/24 maxlen: 24
203.89.177.0/24 maxlen: 24
2401:5c00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2962 (0xb92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AE0C4/serialNumber=E11FE937006A25D7C605A5E43B492B286C64998C
Validity
Not Before: Nov 9 00:06:14 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=636aeef6-203c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9b:da:76:2f:d7:78:f9:96:bf:0b:70:4d:a9:
5a:4d:00:b7:7a:19:86:73:6a:11:19:8b:2a:2d:a6:
f0:23:05:c3:27:55:17:66:e6:b7:32:a5:b2:7a:94:
66:cb:42:b8:17:82:f1:aa:3e:df:3f:82:d8:42:bf:
f6:8e:e1:06:ce:5e:9e:b0:c4:f5:3a:f2:02:91:58:
98:58:78:ee:6b:fb:2b:43:40:aa:62:01:db:b2:31:
89:bc:eb:ae:e2:2e:15:d1:f5:a0:c0:8e:d4:7b:bb:
b1:15:5d:13:c6:49:ae:99:da:de:c8:1b:9a:5b:c1:
8a:cc:ec:83:30:21:8f:2b:19:54:e9:77:2b:62:70:
fe:ae:0e:73:82:3f:77:d4:cc:0f:12:60:2f:f8:73:
a8:fb:0d:5e:af:37:73:54:10:a5:93:e3:38:7e:c0:
ea:4c:ca:a8:bf:e1:39:c9:35:e3:a0:9e:5c:32:24:
8a:c3:20:04:77:4c:dc:6d:02:69:d2:64:be:df:08:
f9:5d:ec:96:f1:94:5d:18:0f:89:0a:f2:76:c2:dc:
96:5a:fd:d3:f2:5c:e6:99:ce:bb:a1:77:12:7b:21:
59:3f:d6:a1:bc:b2:b1:74:35:2c:13:9d:7a:73:1e:
ae:c4:8c:28:c2:10:d9:44:c1:ab:33:0a:6b:f4:2e:
69:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D3:91:8E:59:53:40:66:2D:C3:DE:A8:F0:84:28:86:9C:5D:79:5E
X509v3 Authority Key Identifier:
keyid:E1:1F:E9:37:00:6A:25:D7:C6:05:A5:E4:3B:49:2B:28:6C:64:99:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AE0C4/6A9E3BD8F14711E99A9AB712C4F9AE02/4R_pNwBqJdfGBaXkO0krKGxkmYw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4R_pNwBqJdfGBaXkO0krKGxkmYw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE0C4/6A9E3BD8F14711E99A9AB712C4F9AE02/97372736FEA811E9A0109214C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
123.100.64.0/18
124.198.128.0/17
202.89.32.0/19
203.89.160.0/19
IPv6:
2401:5c00::/32
Signature Algorithm: sha256WithRSAEncryption
1c:db:7f:29:b0:e6:e5:d3:14:36:c1:75:09:3c:aa:c9:35:39:
ae:34:7c:11:05:88:a4:10:a0:84:50:e7:91:24:48:4e:f3:fe:
7c:b4:3b:ca:38:41:4f:75:ce:c2:24:ad:a1:db:52:f0:cf:7b:
72:11:51:ab:9e:ae:2e:f4:9a:a1:5d:b6:11:97:f2:c9:ba:4d:
d1:b3:44:f4:4c:c8:4b:fc:6c:2d:2d:c7:42:74:aa:cf:d0:d0:
62:59:54:ae:af:b6:14:7d:19:76:de:9c:7e:15:23:0b:59:b5:
fe:ad:1e:6f:0a:95:13:03:34:87:74:99:34:5d:b6:e3:d2:b3:
e4:c9:e5:21:f0:ac:31:aa:40:e1:e4:5f:6a:cd:57:71:4a:30:
ab:5d:67:a1:bc:dc:c1:ef:31:da:1b:1b:44:5a:68:a2:1a:8a:
db:24:f7:0a:52:04:2a:ac:c9:35:c5:55:e4:27:7e:15:60:1f:
05:68:d5:85:6f:f9:31:fc:90:d9:e2:30:ca:3a:cd:d6:a7:3f:
b0:7a:a4:b9:88:a6:2a:e4:04:fa:f0:4c:06:7c:1c:ff:ab:a2:
af:b9:39:92:f6:36:fc:94:d3:6a:7b:25:d9:0c:f9:6d:7f:b7:
cb:42:4d:65:76:83:67:87:a9:b2:b7:24:97:61:0b:d8:76:57:
9e:6f:58:98
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgICC5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QUUwQzQxMTAvBgNVBAUTKEUxMUZFOTM3MDA2QTI1RDdDNjA1QTVFNDNCNDkyQjI4
NkM2NDk5OEMwHhcNMjIxMTA5MDAwNjE0WhcNMjMxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzZhZWVmNi0yMDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAs5vadi/XePmWvwtwTalaTQC3ehmGc2oRGYsqLabwIwXDJ1UXZua3MqWyepRm
y0K4F4Lxqj7fP4LYQr/2juEGzl6esMT1OvICkViYWHjua/srQ0CqYgHbsjGJvOuu
4i4V0fWgwI7Ue7uxFV0TxkmumdreyBuaW8GKzOyDMCGPKxlU6XcrYnD+rg5zgj93
1MwPEmAv+HOo+w1erzdzVBClk+M4fsDqTMqov+E5yTXjoJ5cMiSKwyAEd0zcbQJp
0mS+3wj5XeyW8ZRdGA+JCvJ2wtyWWv3T8lzmmc67oXcSeyFZP9ahvLKxdDUsE516
cx6uxIwowhDZRMGrMwpr9C5pIwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFPbTkY5Z
U0BmLcPeqPCEKIacXXleMB8GA1UdIwQYMBaAFOEf6TcAaiXXxgWl5DtJKyhsZJmM
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTBDNC82QTlFM0JEOEYx
NDcxMUU5OUE5QUI3MTJDNEY5QUUwMi80Ul9wTndCcUpkZkdCYVhrTzBrcktHeGtt
WXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzRSX3BOd0JxSmRmR0JhWGtPMGtyS0d4a21Zdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QUUwQzQvNkE5RTNCRDhGMTQ3MTFFOTlBOUFCNzEyQzRGOUFFMDIvOTczNzI3MzZG
RUE4MTFFOUEwMTA5MjE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E
MTAvMB4EAgABMBgDBAZ7ZEADBAd8xoADBAXKWSADBAXLWaAwDQQCAAIwBwMFACQB
XAAwDQYJKoZIhvcNAQELBQADggEBABzbfymw5uXTFDbBdQk8qsk1Oa40fBEFiKQQ
oIRQ55EkSE7z/ny0O8o4QU91zsIkraHbUvDPe3IRUaueri70mqFdthGX8sm6TdGz
RPRMyEv8bC0tx0J0qs/Q0GJZVK6vthR9GXbenH4VIwtZtf6tHm8KlRMDNId0mTRd
tuPSs+TJ5SHwrDGqQOHkX2rNV3FKMKtdZ6G83MHvMdobG0RaaKIaitsk9wpSBCqs
yTXFVeQnfhVgHwVo1YVv+TH8kNniMMo6zdanP7B6pLmIpirkBPrwTAZ8HP+roq+5
OZL2NvyU02p7JdkM+W1/t8tCTWV2g2eHqbK3JJdhC9h2V55vWJg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:55 2024 by rpki-client on console-ams.rpki-client.org