Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE0C4/6A9E3BD8F14711E99A9AB712C4F9AE02/E1BBAE0A230D11EBACAFB634C4F9AE02.roa
File: E1BBAE0A230D11EBACAFB634C4F9AE02.roa (raw, json)
Hash identifier: 1L9ITYt7WtRMuOg+GtxKr5mwBmzHQY8VykRadauL+z8=
Subject key identifier: 30:35:B6:C7:F3:03:C2:AD:4B:D9:C1:7F:05:AD:BF:EE:55:77:87:DC
Certificate issuer: /CN=A91AE0C4/serialNumber=E11FE937006A25D7C605A5E43B492B286C64998C
Certificate serial: 095B
Authority key identifier: E1:1F:E9:37:00:6A:25:D7:C6:05:A5:E4:3B:49:2B:28:6C:64:99:8C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4R_pNwBqJdfGBaXkO0krKGxkmYw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AE0C4/6A9E3BD8F14711E99A9AB712C4F9AE02/E1BBAE0A230D11EBACAFB634C4F9AE02.roa
Signing time: Tue 01 Feb 2022 22:25:47 +0000
ROA not before: Tue 01 Feb 2022 22:25:47 +0000
ROA not after: Mon 31 Oct 2022 00:00:00 +0000
asID: 9790
IP address blocks: 60.234.0.0/16 maxlen: 20
101.98.0.0/16 maxlen: 16
110.44.16.0/22 maxlen: 24
119.224.0.0/17 maxlen: 20
119.224.128.0/20 maxlen: 20
121.98.0.0/15 maxlen: 20
124.197.0.0/18 maxlen: 20
202.49.82.0/24 maxlen: 24
202.49.244.0/22 maxlen: 24
202.50.170.0/24 maxlen: 24
202.53.176.0/20 maxlen: 20
202.89.128.0/19 maxlen: 20
202.150.96.0/20 maxlen: 20
202.150.112.0/20 maxlen: 20
202.180.64.0/18 maxlen: 20
202.189.160.0/20 maxlen: 20
202.191.32.0/20 maxlen: 20
203.100.208.0/20 maxlen: 20
203.160.112.0/20 maxlen: 20
203.184.0.0/18 maxlen: 20
2400:4800::/32 maxlen: 32
2402:6000::/32 maxlen: 36
2402:8200::/32 maxlen: 32
2404:4400::/28 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2395 (0x95b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AE0C4/serialNumber=E11FE937006A25D7C605A5E43B492B286C64998C
Validity
Not Before: Feb 1 22:25:47 2022 GMT
Not After : Oct 31 00:00:00 2022 GMT
Subject: CN=61f9b36b-c1dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:36:aa:17:f7:96:f0:2e:13:bd:d0:ef:11:52:
14:e3:53:44:7d:eb:d8:3d:7f:a2:3c:9d:17:8f:fa:
af:64:34:d9:30:f5:c3:df:f5:be:48:d4:78:f9:07:
67:50:30:ee:37:7d:b5:c9:04:c2:30:81:69:d6:50:
e0:d0:3a:f4:23:b7:71:db:5a:df:76:45:aa:55:0b:
c2:06:6d:c1:9f:0d:2f:a6:55:5c:fe:4e:1f:da:d2:
5f:30:84:3b:97:f0:09:0f:63:16:95:58:b1:06:05:
b5:34:32:77:3e:f7:74:a6:ce:cd:2e:eb:4c:a2:ad:
ae:d2:97:f0:c9:7b:64:dc:81:e0:79:57:ad:7d:bf:
03:cc:94:7d:cd:0d:68:8c:03:7a:c8:18:a5:7b:6f:
5b:ce:e5:61:0f:fb:46:37:04:72:02:37:61:75:6e:
85:5f:df:51:6b:0c:19:38:f1:76:c0:5b:72:91:6c:
a9:70:b4:d5:e2:aa:c0:1b:c1:77:c6:21:c8:eb:2b:
62:b1:61:e0:e8:6e:bd:fa:f9:74:ce:b1:31:bc:2d:
28:6d:11:e1:81:7d:34:a7:e6:d2:d6:84:68:21:c5:
69:2c:cb:9d:8a:01:47:9f:d7:0e:2c:f9:c5:54:15:
5d:b7:f7:0f:43:76:86:3b:93:67:15:cc:63:8e:de:
15:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:35:B6:C7:F3:03:C2:AD:4B:D9:C1:7F:05:AD:BF:EE:55:77:87:DC
X509v3 Authority Key Identifier:
keyid:E1:1F:E9:37:00:6A:25:D7:C6:05:A5:E4:3B:49:2B:28:6C:64:99:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AE0C4/6A9E3BD8F14711E99A9AB712C4F9AE02/4R_pNwBqJdfGBaXkO0krKGxkmYw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4R_pNwBqJdfGBaXkO0krKGxkmYw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE0C4/6A9E3BD8F14711E99A9AB712C4F9AE02/E1BBAE0A230D11EBACAFB634C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
60.234.0.0/16
101.98.0.0/16
110.44.16.0/22
119.224.0.0-119.224.143.255
121.98.0.0/15
124.197.0.0/18
202.49.82.0/24
202.49.244.0/22
202.50.170.0/24
202.53.176.0/20
202.89.128.0/19
202.150.96.0/19
202.180.64.0/18
202.189.160.0/20
202.191.32.0/20
203.100.208.0/20
203.160.112.0/20
203.184.0.0/18
IPv6:
2400:4800::/32
2402:6000::/32
2402:8200::/32
2404:4400::/28
Signature Algorithm: sha256WithRSAEncryption
a5:da:78:9d:e3:09:07:3c:df:c3:d0:a1:fc:5e:16:14:bb:97:
6d:c9:2c:9e:77:1a:48:b0:3d:88:22:88:50:3b:e5:10:e6:63:
a2:b3:16:bd:4b:f2:24:55:b0:49:5a:c0:e9:4d:54:ee:39:42:
7f:7b:14:f5:b7:34:60:f2:5d:24:1b:5e:c5:63:91:ab:38:c7:
03:b2:fa:22:59:aa:5a:3a:32:59:98:00:37:86:45:7f:96:59:
76:bf:dd:fa:d9:55:20:b1:50:91:80:08:b2:0c:6f:f0:03:e8:
b7:61:94:04:42:43:80:3e:f0:0a:b9:37:dc:f0:5a:ff:e4:2f:
6d:22:8e:d2:5b:22:4d:1e:0d:24:82:88:92:48:2f:a0:54:44:
fc:23:4d:48:b1:c5:f5:bf:31:36:0b:df:3b:05:7a:23:ed:23:
06:01:c1:ed:59:1b:90:31:55:e9:59:6e:b5:55:90:0c:f2:ed:
f4:cd:55:2c:c7:bf:63:55:59:b7:4c:48:30:b3:5f:34:af:55:
d9:44:66:08:b4:48:67:a5:e7:53:45:93:f6:a1:7c:12:04:21:
67:06:8b:bc:25:b7:a1:56:a4:a4:14:14:4d:cd:19:9d:2d:b5:
9d:c1:82:73:30:68:10:52:7a:cc:48:65:dc:71:c5:06:0d:aa:
d6:d9:22:31
-----BEGIN CERTIFICATE-----
MIIGAjCCBOqgAwIBAgICCVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QUUwQzQxMTAvBgNVBAUTKEUxMUZFOTM3MDA2QTI1RDdDNjA1QTVFNDNCNDkyQjI4
NkM2NDk5OEMwHhcNMjIwMjAxMjIyNTQ3WhcNMjIxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MWY5YjM2Yi1jMWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA5TaqF/eW8C4TvdDvEVIU41NEfevYPX+iPJ0Xj/qvZDTZMPXD3/W+SNR4+Qdn
UDDuN321yQTCMIFp1lDg0Dr0I7dx21rfdkWqVQvCBm3Bnw0vplVc/k4f2tJfMIQ7
l/AJD2MWlVixBgW1NDJ3Pvd0ps7NLutMoq2u0pfwyXtk3IHgeVetfb8DzJR9zQ1o
jAN6yBile29bzuVhD/tGNwRyAjdhdW6FX99RawwZOPF2wFtykWypcLTV4qrAG8F3
xiHI6ytisWHg6G69+vl0zrExvC0obRHhgX00p+bS1oRoIcVpLMudigFHn9cOLPnF
VBVdt/cPQ3aGO5NnFcxjjt4VnQIDAQABo4IDJjCCAyIwHQYDVR0OBBYEFDA1tsfz
A8KtS9nBfwWtv+5Vd4fcMB8GA1UdIwQYMBaAFOEf6TcAaiXXxgWl5DtJKyhsZJmM
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTBDNC82QTlFM0JEOEYx
NDcxMUU5OUE5QUI3MTJDNEY5QUUwMi80Ul9wTndCcUpkZkdCYVhrTzBrcktHeGtt
WXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzRSX3BOd0JxSmRmR0JhWGtPMGtyS0d4a21Zdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QUUwQzQvNkE5RTNCRDhGMTQ3MTFFOTlBOUFCNzEyQzRGOUFFMDIvRTFCQkFFMEEy
MzBEMTFFQkFDQUZCNjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwga8GCCsGAQUFBwEHAQH/
BIGfMIGcMHYEAgABMHADAwA86gMDAGViAwQCbiwQMAsDAwV34AMEBHfggAMDAXli
AwQGfMUAAwQAyjFSAwQCyjH0AwQAyjKqAwQEyjWwAwQFylmAAwQFypZgAwQGyrRA
AwQEyr2gAwQEyr8gAwQEy2TQAwQEy6BwAwQGy7gAMCIEAgACMBwDBQAkAEgAAwUA
JAJgAAMFACQCggADBQQkBEQAMA0GCSqGSIb3DQEBCwUAA4IBAQCl2nid4wkHPN/D
0KH8XhYUu5dtySyedxpIsD2IIohQO+UQ5mOisxa9S/IkVbBJWsDpTVTuOUJ/exT1
tzRg8l0kG17FY5GrOMcDsvoiWapaOjJZmAA3hkV/lll2v9362VUgsVCRgAiyDG/w
A+i3YZQEQkOAPvAKuTfc8Fr/5C9tIo7SWyJNHg0kgoiSSC+gVET8I01IscX1vzE2
C987BXoj7SMGAcHtWRuQMVXpWW61VZAM8u30zVUsx79jVVm3TEgws180r1XZRGYI
tEhnpedTRZP2oXwSBCFnBou8JbehVqSkFBRNzRmdLbWdwYJzMGgQUnrMSGXcccUG
DarW2SIx
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:37 2024 by rpki-client on console-fra.rpki-client.org