Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D635C/B49A7872B2C211EA83C0F83EC4F9AE02/5D9601AA001311ECB93CD555C4F9AE02.roa
File: 5D9601AA001311ECB93CD555C4F9AE02.roa (raw, json)
Hash identifier: Py0AGKsHfcz3zROeTiSH4LYAc0W761kLq30+FMEALM4=
Subject key identifier: FC:D2:36:5A:2C:BB:4D:6F:FD:A7:D1:41:5A:F7:CF:87:60:96:B7:2E
Certificate issuer: /CN=A91D635C/serialNumber=B4E5C7180F9D101A884E29362D27BDCC6D486B44
Certificate serial: 054F
Authority key identifier: B4:E5:C7:18:0F:9D:10:1A:88:4E:29:36:2D:27:BD:CC:6D:48:6B:44
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOXHGA-dEBqITik2LSe9zG1Ia0Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D635C/B49A7872B2C211EA83C0F83EC4F9AE02/5D9601AA001311ECB93CD555C4F9AE02.roa
Signing time: Sat 01 Oct 2022 22:58:57 +0000
ROA not before: Sat 01 Oct 2022 22:58:57 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 132210
IP address blocks: 2406:5c80::/36 maxlen: 36
2406:5c80:1000::/36 maxlen: 36
2406:5c80:2000::/36 maxlen: 36
2406:5c80:3000::/36 maxlen: 36
2406:5c80:4000::/36 maxlen: 36
2406:5c80:5000::/36 maxlen: 36
2406:5c80:6000::/36 maxlen: 36
2406:5c80:7000::/36 maxlen: 36
2406:5c80:8000::/36 maxlen: 36
2406:5c80:9000::/36 maxlen: 36
2406:5c80:a000::/36 maxlen: 36
2406:5c80:b000::/36 maxlen: 36
2406:5c80:c000::/36 maxlen: 36
2406:5c80:d000::/36 maxlen: 36
2406:5c80:e000::/36 maxlen: 36
2406:5c80:f000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1359 (0x54f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D635C/serialNumber=B4E5C7180F9D101A884E29362D27BDCC6D486B44
Validity
Not Before: Oct 1 22:58:57 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=6338c631-30c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f4:c0:63:36:1f:a0:0f:3c:4d:b7:20:b4:90:
9d:6c:9f:76:05:18:fb:d9:de:7c:91:64:cf:bc:3d:
a1:8d:d6:1a:de:b1:53:12:8c:47:fd:27:33:8e:19:
eb:c3:e3:36:a9:95:c0:b5:c2:c1:df:56:27:46:34:
89:ae:9d:95:33:77:89:cf:ff:5f:35:a0:39:a4:ad:
a9:68:d6:5d:da:e7:b0:72:3d:85:0d:dd:8f:8f:46:
ca:9e:ab:1d:30:21:d1:f3:fd:e9:2d:2d:28:10:ba:
20:14:72:76:61:9e:5e:79:29:e4:c1:b9:d1:ed:45:
02:77:f3:ba:cd:5f:37:fd:89:a3:25:39:c3:08:c1:
c9:b9:e4:d8:34:30:f6:e1:2a:11:29:c4:47:88:a6:
30:e7:02:06:cc:99:3e:fc:b0:88:19:70:dc:ee:80:
42:50:0b:74:d7:6b:a6:8a:49:61:4d:f3:14:0f:89:
d0:cc:ed:58:3d:84:19:ba:4b:5f:cb:1e:8b:2b:dd:
a5:fe:53:79:6b:50:cb:8e:0b:64:67:85:40:11:9a:
0f:25:78:e2:c0:d9:21:07:ac:03:db:86:4b:5a:e8:
53:fe:7b:f7:b7:c8:36:36:20:75:3b:b8:ae:2f:a1:
c7:cd:83:9b:9e:14:6e:1d:b4:0d:c4:f7:3c:0d:1f:
17:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:D2:36:5A:2C:BB:4D:6F:FD:A7:D1:41:5A:F7:CF:87:60:96:B7:2E
X509v3 Authority Key Identifier:
keyid:B4:E5:C7:18:0F:9D:10:1A:88:4E:29:36:2D:27:BD:CC:6D:48:6B:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D635C/B49A7872B2C211EA83C0F83EC4F9AE02/tOXHGA-dEBqITik2LSe9zG1Ia0Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOXHGA-dEBqITik2LSe9zG1Ia0Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D635C/B49A7872B2C211EA83C0F83EC4F9AE02/5D9601AA001311ECB93CD555C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:5c80::/32
Signature Algorithm: sha256WithRSAEncryption
3a:88:fd:69:86:69:66:06:65:8a:bc:6f:bc:4e:e6:2f:00:bf:
40:f5:cd:9d:fe:38:6d:68:d4:ef:9c:34:e2:40:c1:04:c9:31:
c5:9f:18:82:d5:db:f4:0b:be:94:7e:a5:96:1b:e8:ea:8e:aa:
17:03:e2:fe:15:0f:69:26:60:eb:1d:87:5d:20:2c:c6:5a:eb:
21:03:0d:0f:a2:62:cc:f5:e8:af:b8:14:6e:46:e4:88:19:54:
26:db:92:6d:e2:ad:a5:01:ef:1e:8a:ca:6b:6f:a2:06:dd:be:
67:8b:be:b9:e3:2f:6d:7e:d8:c9:db:09:71:cb:d0:f8:9d:1d:
43:ae:42:ce:65:20:70:a4:ce:f3:6c:a7:4e:15:d8:a8:2b:79:
a3:69:ee:1b:9b:0c:34:18:80:91:de:c6:5c:57:45:7a:0b:3f:
d5:9e:9b:bb:e1:26:94:d5:ac:a7:ae:7c:2a:59:f1:91:fe:2d:
ed:26:bf:c8:25:61:53:0d:66:7e:74:e7:65:de:41:ac:e2:2e:
fe:af:fa:9c:4f:43:b4:97:94:03:72:a7:d3:fc:f1:20:be:be:
01:53:a4:f4:f4:45:82:d3:92:ff:47:a8:a2:d0:42:d2:ee:19:
ae:6c:39:3e:38:26:4f:99:e9:75:1b:79:f6:12:e3:58:ed:c5:
5b:9a:95:2d
-----BEGIN CERTIFICATE-----
MIIFcjCCBFqgAwIBAgICBU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDYzNUMxMTAvBgNVBAUTKEI0RTVDNzE4MEY5RDEwMUE4ODRFMjkzNjJEMjdCREND
NkQ0ODZCNDQwHhcNMjIxMDAxMjI1ODU3WhcNMjMwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzM4YzYzMS0zMGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwPTAYzYfoA88TbcgtJCdbJ92BRj72d58kWTPvD2hjdYa3rFTEoxH/Sczjhnr
w+M2qZXAtcLB31YnRjSJrp2VM3eJz/9fNaA5pK2paNZd2uewcj2FDd2Pj0bKnqsd
MCHR8/3pLS0oELogFHJ2YZ5eeSnkwbnR7UUCd/O6zV83/YmjJTnDCMHJueTYNDD2
4SoRKcRHiKYw5wIGzJk+/LCIGXDc7oBCUAt012umiklhTfMUD4nQzO1YPYQZuktf
yx6LK92l/lN5a1DLjgtkZ4VAEZoPJXjiwNkhB6wD24ZLWuhT/nv3t8g2NiB1O7iu
L6HHzYObnhRuHbQNxPc8DR8XwQIDAQABo4ICljCCApIwHQYDVR0OBBYEFPzSNlos
u01v/afRQVr3z4dglrcuMB8GA1UdIwQYMBaAFLTlxxgPnRAaiE4pNi0nvcxtSGtE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjM1Qy9CNDlBNzg3MkIy
QzIxMUVBODNDMEY4M0VDNEY5QUUwMi90T1hIR0EtZEVCcUlUaWsyTFNlOXpHMUlh
MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3RPWEhHQS1kRUJxSVRpazJMU2U5ekcxSWEwUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RDYzNUMvQjQ5QTc4NzJCMkMyMTFFQTgzQzBGODNFQzRGOUFFMDIvNUQ5NjAxQUEw
MDEzMTFFQ0I5M0NENTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E
ETAPMA0EAgACMAcDBQAkBlyAMA0GCSqGSIb3DQEBCwUAA4IBAQA6iP1phmlmBmWK
vG+8TuYvAL9A9c2d/jhtaNTvnDTiQMEEyTHFnxiC1dv0C76UfqWWG+jqjqoXA+L+
FQ9pJmDrHYddICzGWushAw0PomLM9eivuBRuRuSIGVQm25Jt4q2lAe8eisprb6IG
3b5ni7654y9tftjJ2wlxy9D4nR1DrkLOZSBwpM7zbKdOFdioK3mjae4bmww0GICR
3sZcV0V6Cz/Vnpu74SaU1aynrnwqWfGR/i3tJr/IJWFTDWZ+dOdl3kGs4i7+r/qc
T0O0l5QDcqfT/PEgvr4BU6T09EWC05L/R6ii0ELS7hmubDk+OCZPmel1G3n2EuNY
7cVbmpUt
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:30 2024 by rpki-client on console-ams.rpki-client.org