Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA496/FB12A2783C0F11E4B788FF4AC4F9AE02/14493AB2ED6A11EDADECD67AC4F9AE02.roa
File: 14493AB2ED6A11EDADECD67AC4F9AE02.roa (raw, json)
Hash identifier: 80CwcLrM2up07NcLoB7/01tsdce6er+4fFcIPazeb30=
Subject key identifier: 5C:59:B2:44:66:C6:C4:34:EC:48:7B:54:BA:5C:74:CD:73:91:DD:86
Certificate issuer: /CN=A91CA496/serialNumber=A03969BAFFD67AAB75D493837FA1C7C69FFB2717
Certificate serial: 28EA
Authority key identifier: A0:39:69:BA:FF:D6:7A:AB:75:D4:93:83:7F:A1:C7:C6:9F:FB:27:17
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oDlpuv_Weqt11JODf6HHxp_7Jxc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CA496/FB12A2783C0F11E4B788FF4AC4F9AE02/14493AB2ED6A11EDADECD67AC4F9AE02.roa
Signing time: Mon 08 May 2023 06:32:19 +0000
ROA not before: Mon 08 May 2023 06:32:19 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 138687
IP address blocks: 183.90.190.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10474 (0x28ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CA496/serialNumber=A03969BAFFD67AAB75D493837FA1C7C69FFB2717
Validity
Not Before: May 8 06:32:19 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=64589772-3d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:66:38:07:82:f8:29:4a:53:cf:74:62:fc:3a:
f0:d8:fd:e1:26:a9:a0:51:87:b1:25:08:41:da:0d:
d9:fc:d2:63:e9:12:d4:27:ea:3e:f2:2c:ad:d8:15:
e6:fe:53:d5:c6:21:c3:ff:b9:1f:e6:e6:21:84:49:
d8:9f:64:f0:4f:7d:8b:d2:44:5a:0f:35:1b:9c:98:
10:01:7b:fb:ec:10:fb:7b:07:d5:04:6a:36:49:93:
05:ee:c7:7f:b4:7f:4f:a8:60:c2:bc:c7:b6:cc:60:
68:97:ec:48:cd:06:01:99:c0:3c:9a:c8:d7:5a:fc:
5e:b1:03:c7:1b:0e:43:e8:91:11:50:53:98:ee:b0:
43:90:1c:95:0c:fc:69:35:be:e8:4b:2b:2d:2b:11:
87:fb:21:37:db:b9:26:1a:d7:82:82:36:29:99:73:
e7:f3:18:03:85:a8:0e:db:89:f1:57:f9:e6:07:b7:
72:7b:b2:69:8b:ee:88:ca:b8:df:01:ee:0c:b7:b2:
9d:89:01:3f:17:70:65:ba:95:f1:43:c5:7f:e5:38:
77:e3:dd:47:57:e2:f6:17:67:e4:4d:d1:23:9f:ac:
6d:8e:87:f8:8b:82:d1:93:51:c8:7a:c3:dd:db:b6:
50:14:01:c2:64:b4:a1:d6:19:6e:ec:e5:28:eb:dc:
e2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:59:B2:44:66:C6:C4:34:EC:48:7B:54:BA:5C:74:CD:73:91:DD:86
X509v3 Authority Key Identifier:
keyid:A0:39:69:BA:FF:D6:7A:AB:75:D4:93:83:7F:A1:C7:C6:9F:FB:27:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CA496/FB12A2783C0F11E4B788FF4AC4F9AE02/oDlpuv_Weqt11JODf6HHxp_7Jxc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oDlpuv_Weqt11JODf6HHxp_7Jxc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA496/FB12A2783C0F11E4B788FF4AC4F9AE02/14493AB2ED6A11EDADECD67AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
183.90.190.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:af:80:ed:8f:5c:31:10:9e:44:ab:26:63:06:19:67:5f:7e:
fd:32:66:e7:98:4e:2f:92:1e:31:b5:d5:38:31:f1:f3:db:95:
e1:21:1a:50:ef:7f:19:d1:f3:b7:be:42:e1:36:24:86:0d:bf:
41:d1:51:d6:9e:9d:11:40:e2:b1:6a:66:c5:ee:94:25:6b:b7:
5b:15:55:7c:23:ac:23:d9:f0:23:f6:83:bc:09:8c:ee:05:d1:
94:90:ce:cc:93:1b:9e:7a:a8:7a:2b:40:0d:bd:90:cc:77:53:
da:74:d2:cd:46:86:32:21:17:7a:b3:9e:ff:e5:76:cd:d1:8e:
d5:03:3d:2c:30:df:39:53:8b:56:57:28:25:63:31:25:b1:78:
eb:5f:7c:e4:be:6d:fd:4f:5b:c2:54:33:27:5c:58:75:b8:4a:
c0:59:83:5f:17:43:f9:9c:d0:24:1b:2f:7b:0d:1f:8e:90:c6:
0e:12:b0:12:04:df:53:39:50:4e:4e:2c:26:7d:b6:30:ff:f3:
55:dd:80:75:70:51:40:3f:c8:f5:89:72:43:0e:9f:66:67:7f:
24:4a:c1:a8:a8:76:bf:d7:6d:69:69:07:cc:7b:7b:48:4d:43:
6b:4c:30:84:6d:ca:7b:c0:d8:ab:cc:3a:57:47:2f:40:aa:38:
a7:55:e9:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:40 2024 by rpki-client on console-fra.rpki-client.org