Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4778/B43CDB60141E11EABAE78E63C4F9AE02/59B1AF20142011EAB05B9A66C4F9AE02.roa
File: 59B1AF20142011EAB05B9A66C4F9AE02.roa (raw, json)
Hash identifier: 7fggjeJh0WLYUtCQKWiO58mYI0DQXkM+nFroNxLKxhc=
Subject key identifier: 10:E3:72:2B:3D:72:2F:9A:B1:FA:DF:2A:05:10:FF:8D:80:0A:A5:D2
Certificate issuer: /CN=A91B4778/serialNumber=043A7D14B6168F93648F4C5A5733BFCF519A71A2
Certificate serial: 08D4
Authority key identifier: 04:3A:7D:14:B6:16:8F:93:64:8F:4C:5A:57:33:BF:CF:51:9A:71:A2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BDp9FLYWj5Nkj0xaVzO_z1GacaI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B4778/B43CDB60141E11EABAE78E63C4F9AE02/59B1AF20142011EAB05B9A66C4F9AE02.roa
Signing time: Sun 24 Apr 2022 07:07:12 +0000
ROA not before: Sun 24 Apr 2022 07:07:12 +0000
ROA not after: Mon 31 Oct 2022 00:00:00 +0000
asID: 38192
IP address blocks: 43.245.244.0/22 maxlen: 22
43.245.244.0/24 maxlen: 24
43.245.245.0/24 maxlen: 24
43.245.246.0/24 maxlen: 24
43.245.247.0/24 maxlen: 24
103.240.248.0/22 maxlen: 22
103.240.248.0/24 maxlen: 24
103.240.249.0/24 maxlen: 24
103.240.250.0/24 maxlen: 24
103.240.251.0/24 maxlen: 24
221.120.96.0/21 maxlen: 21
221.120.96.0/22 maxlen: 22
221.120.96.0/24 maxlen: 24
221.120.97.0/24 maxlen: 24
221.120.98.0/24 maxlen: 24
221.120.99.0/24 maxlen: 24
221.120.100.0/22 maxlen: 22
221.120.100.0/24 maxlen: 24
221.120.101.0/24 maxlen: 24
221.120.102.0/24 maxlen: 24
221.120.103.0/24 maxlen: 24
2402:6c0::/32 maxlen: 36
2402:6c0::/48 maxlen: 48
2402:6c0:1::/48 maxlen: 48
2402:6c0:2::/48 maxlen: 48
2402:6c0:3::/48 maxlen: 48
2402:6c0:4::/48 maxlen: 48
2402:6c0:5::/48 maxlen: 48
2402:6c0:6::/48 maxlen: 48
2402:6c0:7::/48 maxlen: 48
2402:6c0:8::/48 maxlen: 48
2402:6c0:9::/48 maxlen: 48
2402:6c0:a::/48 maxlen: 48
2402:6c0:b::/48 maxlen: 48
2402:6c0:c::/48 maxlen: 48
2402:6c0:d::/48 maxlen: 48
2402:6c0:e::/48 maxlen: 48
2402:6c0:f::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2260 (0x8d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B4778/serialNumber=043A7D14B6168F93648F4C5A5733BFCF519A71A2
Validity
Not Before: Apr 24 07:07:12 2022 GMT
Not After : Oct 31 00:00:00 2022 GMT
Subject: CN=6264f720-bc37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1c:0c:33:19:95:4a:d0:e2:6c:d0:92:78:3b:
98:cc:87:50:9e:cc:8b:36:1c:ff:1f:db:d3:ba:10:
9d:75:a1:1b:01:59:fd:73:f2:d7:2c:7c:5f:48:fb:
ea:15:54:b3:bc:65:df:3a:d3:38:af:05:6c:e6:7f:
39:02:93:c7:32:40:1e:f4:a2:18:21:44:ad:52:cf:
3d:5b:03:66:cf:d0:f0:b9:2e:b8:1b:15:48:ed:48:
5f:18:74:8c:52:73:eb:96:65:e5:3b:53:90:9b:ac:
cb:9a:1b:aa:0f:02:f6:65:b3:58:58:16:33:5a:85:
f1:93:66:ce:b4:9a:f4:4c:5a:a9:f6:1c:2e:e5:37:
ed:e6:9b:76:58:0b:51:af:72:55:0b:c2:43:3a:7d:
5e:3c:c7:c9:ae:31:68:1b:4a:ad:47:7f:8c:6c:06:
ea:3a:6f:b9:f4:e8:53:37:16:90:37:fd:ce:cb:71:
72:b0:80:c5:59:04:21:bb:47:31:66:ab:f3:ee:2e:
86:a3:4e:2c:1e:ac:75:bf:41:7e:67:85:62:d1:ca:
79:f9:5e:dc:12:d2:37:73:c1:0a:21:8a:d1:b1:0f:
c3:16:71:89:9f:a1:a0:b0:4f:9e:ca:5a:81:b5:3d:
a0:33:0d:41:ed:0e:12:2b:50:e4:55:3e:5b:4c:a5:
86:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:E3:72:2B:3D:72:2F:9A:B1:FA:DF:2A:05:10:FF:8D:80:0A:A5:D2
X509v3 Authority Key Identifier:
keyid:04:3A:7D:14:B6:16:8F:93:64:8F:4C:5A:57:33:BF:CF:51:9A:71:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B4778/B43CDB60141E11EABAE78E63C4F9AE02/BDp9FLYWj5Nkj0xaVzO_z1GacaI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BDp9FLYWj5Nkj0xaVzO_z1GacaI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4778/B43CDB60141E11EABAE78E63C4F9AE02/59B1AF20142011EAB05B9A66C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.245.244.0/22
103.240.248.0/22
221.120.96.0/21
IPv6:
2402:6c0::/32
Signature Algorithm: sha256WithRSAEncryption
3f:9d:e2:ae:38:32:44:5d:5f:14:18:e8:22:ea:b1:7d:41:a0:
6f:e3:d4:2b:0d:35:b7:01:64:3d:45:7b:63:eb:7b:11:a4:f2:
90:52:07:32:91:1a:43:d0:20:9a:26:b1:96:6e:11:5f:be:c0:
2a:25:23:b0:70:5a:61:7b:43:38:aa:27:3a:0e:73:22:85:d8:
ee:f6:f0:32:51:30:36:cd:da:11:7e:29:0a:f2:b3:bd:91:ca:
b6:1b:aa:76:af:90:19:64:ae:76:98:b9:65:c8:cc:79:79:b3:
6e:ac:93:1f:69:64:86:61:e6:b8:39:4c:93:8d:1d:90:20:f7:
5b:7f:c2:97:2e:91:cb:cc:4e:be:13:0e:f6:7d:e7:56:40:87:
59:d3:79:ac:93:aa:ea:24:c0:32:97:0c:db:a5:74:1c:52:c5:
8d:3f:23:bd:cb:99:17:14:04:c0:ca:ab:6e:d8:e4:b6:2f:71:
f3:0c:59:e5:fa:ba:3e:93:91:ed:4e:4b:60:fe:d4:0d:b6:94:
6b:90:e7:85:64:6b:42:42:0c:0b:a4:de:ab:89:c1:8e:a8:34:
7d:87:22:68:b0:64:30:a9:da:06:2f:a3:85:36:88:5c:18:53:
e2:03:c9:fe:79:f5:79:b5:3c:d3:ff:de:90:58:5c:3f:93:51:
5e:84:d7:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:56 2024 by rpki-client on console-ams.rpki-client.org