Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F635F/B87B64FC6F4811E8B1585164C4F9AE02/7D4BBC28E11E11ECAF070351C4F9AE02.roa
File: 7D4BBC28E11E11ECAF070351C4F9AE02.roa (raw, json)
Hash identifier: yTatWt93kjoMear2km14AT6WM3KEEKWOZvWNIQh3dlU=
Subject key identifier: F5:DF:7F:8B:45:64:89:1E:81:95:FE:A5:81:54:14:B8:F6:5F:C3:88
Certificate issuer: /CN=A91F635F/serialNumber=936A0FAEF7A6FD83C26CEE1E5CFB3A42FF48E180
Certificate serial: 120E
Authority key identifier: 93:6A:0F:AE:F7:A6:FD:83:C2:6C:EE:1E:5C:FB:3A:42:FF:48:E1:80
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2oPrvem_YPCbO4eXPs6Qv9I4YA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F635F/B87B64FC6F4811E8B1585164C4F9AE02/7D4BBC28E11E11ECAF070351C4F9AE02.roa
Signing time: Tue 31 May 2022 20:16:01 +0000
ROA not before: Tue 31 May 2022 20:16:01 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 14618
IP address blocks: 43.249.44.0/22 maxlen: 24
2406:da00:ff00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4622 (0x120e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F/serialNumber=936A0FAEF7A6FD83C26CEE1E5CFB3A42FF48E180
Validity
Not Before: May 31 20:16:01 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=62967781-17f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:92:31:50:f2:5e:20:a3:10:e2:a7:ba:db:b1:
a3:93:e6:f2:71:dd:2e:c6:81:8b:a8:fa:ba:57:c8:
35:b2:a0:d3:70:d2:fb:2f:29:db:31:74:f1:95:4c:
af:aa:c0:3a:b3:01:5d:34:cf:ec:28:4c:99:18:e2:
86:fc:a5:6e:25:64:f6:05:17:c9:6b:da:94:35:bb:
73:9d:35:21:ef:05:46:a2:ef:2b:79:33:59:c9:e9:
28:cb:9a:04:e1:b2:0b:40:c8:d8:80:59:07:1d:ef:
fd:06:26:b7:e9:1a:0e:0b:45:b5:ea:6d:b9:8a:04:
44:df:e7:c7:30:5f:2d:9c:12:84:38:d8:38:46:a0:
52:7e:07:ae:4b:94:bf:ce:42:6a:e3:c6:93:0b:7e:
db:27:9f:ea:94:36:b7:e9:15:5d:80:02:32:c8:1d:
4c:c0:47:86:29:5c:ff:85:19:28:c8:bf:40:eb:c8:
18:6b:43:47:64:02:de:42:56:f6:a9:75:8a:0b:9a:
9b:1a:11:1e:b3:5a:87:38:4d:21:c6:bd:9c:70:bb:
8b:fc:46:08:46:3b:8d:32:fe:17:02:1a:de:98:8e:
a5:42:58:52:52:aa:0c:db:f1:c1:db:cd:76:d0:2d:
3a:f6:26:ca:ca:05:ee:67:37:0d:c0:8b:37:b8:0d:
d0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:DF:7F:8B:45:64:89:1E:81:95:FE:A5:81:54:14:B8:F6:5F:C3:88
X509v3 Authority Key Identifier:
keyid:93:6A:0F:AE:F7:A6:FD:83:C2:6C:EE:1E:5C:FB:3A:42:FF:48:E1:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F635F/B87B64FC6F4811E8B1585164C4F9AE02/k2oPrvem_YPCbO4eXPs6Qv9I4YA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2oPrvem_YPCbO4eXPs6Qv9I4YA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F635F/B87B64FC6F4811E8B1585164C4F9AE02/7D4BBC28E11E11ECAF070351C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.249.44.0/22
IPv6:
2406:da00:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
29:63:d0:b1:e2:fe:c0:6a:f4:bc:eb:8b:9e:b3:8d:de:11:88:
b9:6a:9d:5a:f9:66:35:f0:9a:a0:c4:33:d9:ff:ff:c5:63:a3:
18:1a:a8:ae:64:a2:2a:77:ee:18:e2:f2:ff:0c:64:35:62:45:
2c:23:74:6d:32:d8:d1:c7:18:0b:aa:00:8c:c7:31:75:46:86:
41:5e:28:35:41:72:7d:1a:03:7a:1b:21:d8:8d:40:93:6c:4f:
b0:cd:bd:ce:49:7e:98:ae:78:e2:b8:48:08:2f:78:bf:70:11:
d3:38:b9:cc:5e:af:d8:b8:39:5f:25:6b:77:6f:8d:05:47:61:
d3:88:60:b5:86:8b:8a:85:7e:ed:bd:4f:ed:da:83:45:c2:62:
84:49:71:59:18:f7:4d:ac:73:4e:3d:8f:46:c3:dd:e0:f6:c4:
45:c6:98:f9:27:83:34:04:75:e2:c8:20:49:3f:5b:c7:56:89:
9c:c3:5a:47:76:83:ba:8f:a3:04:f7:6c:fa:d7:ae:b6:1e:9d:
eb:9e:b8:fd:28:75:6c:93:35:53:ac:7f:21:ad:a8:1e:f7:05:
1a:ae:a9:05:ce:39:14:00:01:3b:e6:6a:a7:13:92:ec:d6:a3:
c3:d5:62:28:23:b2:a8:5c:58:03:29:9b:09:c3:5f:86:66:3a:
8e:5d:e5:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:38 2024 by rpki-client on console-ams.rpki-client.org