Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F635F/B87B64FC6F4811E8B1585164C4F9AE02/4F1134C07BF411EDB9E79331C4F9AE02.roa
File: 4F1134C07BF411EDB9E79331C4F9AE02.roa (raw, json)
Hash identifier: Y2nFk7BFaQyafHXWmd8DIqFXIChvCocBCoUqeNEvyBo=
Subject key identifier: 5C:9D:BD:35:4C:1F:0F:AC:70:B9:2B:DA:1F:02:99:11:66:B4:8B:A2
Certificate issuer: /CN=A91F635F/serialNumber=936A0FAEF7A6FD83C26CEE1E5CFB3A42FF48E180
Certificate serial: 1333
Authority key identifier: 93:6A:0F:AE:F7:A6:FD:83:C2:6C:EE:1E:5C:FB:3A:42:FF:48:E1:80
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2oPrvem_YPCbO4eXPs6Qv9I4YA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F635F/B87B64FC6F4811E8B1585164C4F9AE02/4F1134C07BF411EDB9E79331C4F9AE02.roa
Signing time: Wed 14 Dec 2022 21:14:35 +0000
ROA not before: Wed 14 Dec 2022 21:14:35 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 38895
IP address blocks: 2406:daa0:4040::/46 maxlen: 48
2406:daa0:4044::/46 maxlen: 48
2406:daa0:4048::/46 maxlen: 48
2406:daa0:404c::/46 maxlen: 48
2406:daa0:4060::/46 maxlen: 48
2406:daa0:4064::/46 maxlen: 48
2406:daa0:4068::/46 maxlen: 48
2406:daa0:406c::/46 maxlen: 48
2406:daa0:4080::/46 maxlen: 48
2406:daa0:4084::/46 maxlen: 48
2406:daa0:4088::/46 maxlen: 48
2406:daa0:408c::/46 maxlen: 48
2406:daa0:6080::/46 maxlen: 48
2406:daa0:6084::/46 maxlen: 48
2406:daa0:6088::/46 maxlen: 48
2406:daa0:608c::/46 maxlen: 48
2406:daa0:8020::/46 maxlen: 48
2406:daa0:8024::/46 maxlen: 48
2406:daa0:8028::/46 maxlen: 48
2406:daa0:802c::/46 maxlen: 48
2406:daa0:8080::/46 maxlen: 48
2406:daa0:8084::/46 maxlen: 48
2406:daa0:8088::/46 maxlen: 48
2406:daa0:808c::/46 maxlen: 48
2406:daa0:80c0::/46 maxlen: 48
2406:daa0:80c4::/46 maxlen: 48
2406:daa0:80c8::/46 maxlen: 48
2406:daa0:80cc::/46 maxlen: 48
2406:daa0:a040::/46 maxlen: 48
2406:daa0:a044::/46 maxlen: 48
2406:daa0:a048::/46 maxlen: 48
2406:daa0:a04c::/46 maxlen: 48
2406:daa0:a080::/46 maxlen: 48
2406:daa0:a084::/46 maxlen: 48
2406:daa0:a088::/46 maxlen: 48
2406:daa0:a08c::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4915 (0x1333)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F/serialNumber=936A0FAEF7A6FD83C26CEE1E5CFB3A42FF48E180
Validity
Not Before: Dec 14 21:14:35 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=639a3cbb-df29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:36:b8:09:05:00:79:b3:4f:d2:a5:ef:da:95:
b3:f1:8e:7d:d1:cc:06:4f:53:05:e1:eb:9d:ce:e1:
0b:92:7a:80:b5:b7:f2:6a:f3:6e:3d:48:ea:c1:6a:
88:e7:08:0d:9c:28:76:f4:f8:42:d6:28:27:8d:3f:
a9:35:0b:e1:6e:bd:f2:83:f1:ff:ee:d7:a6:5a:de:
78:29:fd:80:9a:8e:93:11:b4:9e:4c:f9:1e:11:bb:
1e:9f:19:f2:b9:b7:b4:0f:b6:88:ab:9b:ed:72:6b:
73:02:d5:bc:06:54:36:98:fc:ad:76:36:16:3f:f6:
be:a7:69:05:6b:95:ea:10:0c:f6:c0:88:68:dd:31:
63:57:8b:5e:f2:1b:55:73:7c:31:fb:5f:8a:d8:23:
b3:18:20:3b:ce:38:9d:3e:cc:15:c4:06:c7:96:67:
15:f3:fd:ce:57:f6:b2:7f:4e:ac:d1:97:a8:b6:c6:
98:a5:73:23:9d:3e:fa:e3:4b:c3:e6:a8:84:1b:f5:
7c:88:a5:8e:39:66:df:69:2b:ba:bb:e6:b5:9b:11:
23:3a:d3:6f:ca:b4:36:16:78:e3:84:03:a4:ba:ab:
0b:fa:4f:99:62:cd:77:e0:ba:43:e2:57:ca:79:4f:
8b:e3:b4:6c:65:d0:4c:14:e1:ed:33:83:de:81:6d:
a8:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:9D:BD:35:4C:1F:0F:AC:70:B9:2B:DA:1F:02:99:11:66:B4:8B:A2
X509v3 Authority Key Identifier:
keyid:93:6A:0F:AE:F7:A6:FD:83:C2:6C:EE:1E:5C:FB:3A:42:FF:48:E1:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F635F/B87B64FC6F4811E8B1585164C4F9AE02/k2oPrvem_YPCbO4eXPs6Qv9I4YA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2oPrvem_YPCbO4eXPs6Qv9I4YA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F635F/B87B64FC6F4811E8B1585164C4F9AE02/4F1134C07BF411EDB9E79331C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:daa0:4040::/44
2406:daa0:4060::/44
2406:daa0:4080::/44
2406:daa0:6080::/44
2406:daa0:8020::/44
2406:daa0:8080::/44
2406:daa0:80c0::/44
2406:daa0:a040::/44
2406:daa0:a080::/44
Signature Algorithm: sha256WithRSAEncryption
92:3c:b2:f9:04:b4:ef:d8:0c:ca:2e:20:93:30:c6:5a:7b:48:
9b:29:14:f8:be:0d:ba:51:99:c9:90:c3:e3:1d:ca:ed:1c:3f:
db:5e:c0:d8:66:80:d6:95:63:c6:f5:0c:1f:e0:81:4b:fd:9f:
b5:62:09:9c:66:fa:ec:88:8e:e5:e6:b0:cd:6f:07:ad:ab:3b:
88:54:c2:1b:4f:f8:a3:78:af:47:70:d0:f8:00:e7:42:62:db:
ea:ee:c7:7e:17:d9:33:c1:75:ff:43:c0:e0:5b:83:96:ee:f0:
37:84:c3:7f:ae:e6:5b:78:17:34:11:63:fc:78:49:fc:32:fd:
c5:18:3b:50:f6:90:16:9e:25:7d:f1:55:d1:f0:3b:10:e2:35:
d1:42:c1:ed:fc:14:ed:74:b9:41:5c:95:1b:43:16:ee:2f:89:
72:8d:27:51:6d:6e:2c:1d:8b:92:c7:82:d9:53:06:4c:22:ad:
c7:d6:e2:33:09:74:2e:fb:bd:f3:14:4e:ca:ca:76:15:4c:9b:
51:09:3e:d6:80:31:50:0c:80:c3:bb:13:e3:c1:91:36:c0:b0:
32:55:b7:c0:a4:f7:03:94:74:88:1c:5a:9a:a8:80:84:f0:4c:
07:9e:8d:b8:e3:e6:86:70:77:27:37:7f:41:86:25:99:de:f6:
0d:e1:6a:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:38 2024 by rpki-client on console-ams.rpki-client.org