Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F635F/B87B64FC6F4811E8B1585164C4F9AE02/BDEF6FCA7BEE11EDB0C43C11C4F9AE02.roa
File: BDEF6FCA7BEE11EDB0C43C11C4F9AE02.roa (raw, json)
Hash identifier: tFO8MoJoEFh3Zu0EPW7FG0mmeB9rOlL48pmiOaYS+LA=
Subject key identifier: 11:3D:43:A1:60:10:3B:4E:24:6F:1C:8A:85:CD:8E:55:95:96:2B:CC
Certificate issuer: /CN=A91F635F/serialNumber=936A0FAEF7A6FD83C26CEE1E5CFB3A42FF48E180
Certificate serial: 1330
Authority key identifier: 93:6A:0F:AE:F7:A6:FD:83:C2:6C:EE:1E:5C:FB:3A:42:FF:48:E1:80
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2oPrvem_YPCbO4eXPs6Qv9I4YA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F635F/B87B64FC6F4811E8B1585164C4F9AE02/BDEF6FCA7BEE11EDB0C43C11C4F9AE02.roa
Signing time: Wed 14 Dec 2022 20:34:44 +0000
ROA not before: Wed 14 Dec 2022 20:34:44 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 38895
IP address blocks: 27.0.0.0/22 maxlen: 24
2406:daa0:4040::/46 maxlen: 48
2406:daa0:4044::/46 maxlen: 48
2406:daa0:4048::/46 maxlen: 48
2406:daa0:404c::/46 maxlen: 48
2406:daa0:4060::/46 maxlen: 48
2406:daa0:4064::/46 maxlen: 48
2406:daa0:4068::/46 maxlen: 48
2406:daa0:406c::/46 maxlen: 48
2406:daa0:4080::/46 maxlen: 48
2406:daa0:4084::/46 maxlen: 48
2406:daa0:4088::/46 maxlen: 48
2406:daa0:408c::/46 maxlen: 48
2406:daa0:6080::/46 maxlen: 48
2406:daa0:6084::/46 maxlen: 48
2406:daa0:6088::/46 maxlen: 48
2406:daa0:608c::/46 maxlen: 48
2406:daa0:8020::/46 maxlen: 48
2406:daa0:8024::/46 maxlen: 48
2406:daa0:8028::/46 maxlen: 48
2406:daa0:802c::/46 maxlen: 48
2406:daa0:8080::/46 maxlen: 48
2406:daa0:8084::/46 maxlen: 48
2406:daa0:8088::/46 maxlen: 48
2406:daa0:808c::/46 maxlen: 48
2406:daa0:80c0::/46 maxlen: 48
2406:daa0:80c4::/46 maxlen: 48
2406:daa0:80c8::/46 maxlen: 48
2406:daa0:80cc::/46 maxlen: 48
2406:daa0:a040::/46 maxlen: 48
2406:daa0:a044::/46 maxlen: 48
2406:daa0:a048::/46 maxlen: 48
2406:daa0:a04c::/46 maxlen: 48
2406:daa0:a080::/46 maxlen: 48
2406:daa0:a084::/46 maxlen: 48
2406:daa0:a088::/46 maxlen: 48
2406:daa0:a08c::/46 maxlen: 48
2406:daa0:a0c0::/46 maxlen: 48
2406:daa0:a0c4::/46 maxlen: 48
2406:daa0:a0c8::/46 maxlen: 48
2406:daa0:a0cc::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4912 (0x1330)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F/serialNumber=936A0FAEF7A6FD83C26CEE1E5CFB3A42FF48E180
Validity
Not Before: Dec 14 20:34:44 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=639a3364-576a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7b:65:6a:8f:ee:85:b5:49:29:e0:d0:44:03:
6d:25:fe:47:7d:e0:49:87:17:6a:c7:7e:4d:f1:f1:
92:90:e1:cb:de:b7:16:f3:7d:cb:b6:4a:f9:8b:66:
c2:13:8d:48:c3:e4:25:ae:60:0b:35:e2:d6:7d:2c:
a2:ff:ef:67:0c:62:af:a5:c6:83:8b:1d:c7:27:f1:
6d:a4:4d:da:8b:02:c6:ed:28:a8:5f:05:6f:f3:d4:
6e:c6:8e:d5:fd:ba:c9:e8:58:b4:c6:1d:b7:53:c3:
0c:5b:03:d1:b2:8f:7f:b2:35:40:f6:1f:d8:35:31:
56:8a:e3:4b:d0:45:ec:64:5a:33:68:45:2c:f4:53:
11:08:1f:89:57:62:36:34:bb:0a:79:ca:06:7d:f4:
81:b6:29:35:90:48:f0:bc:3f:02:7c:3d:be:e2:d8:
9b:33:e1:13:05:b2:93:72:b4:ba:c3:55:36:94:34:
1c:59:ca:fb:46:45:a6:f2:4f:ac:10:0e:c8:99:05:
c2:f5:e0:8a:27:35:70:c0:be:3f:cf:f7:c7:b2:de:
e1:3f:e0:56:87:6c:0c:d8:4d:10:45:db:dd:05:86:
e9:2a:08:1a:f6:52:aa:e3:bf:bd:63:f8:51:37:22:
8a:6d:43:a1:d3:b9:94:50:a8:30:c1:bc:7a:40:79:
21:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:3D:43:A1:60:10:3B:4E:24:6F:1C:8A:85:CD:8E:55:95:96:2B:CC
X509v3 Authority Key Identifier:
keyid:93:6A:0F:AE:F7:A6:FD:83:C2:6C:EE:1E:5C:FB:3A:42:FF:48:E1:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F635F/B87B64FC6F4811E8B1585164C4F9AE02/k2oPrvem_YPCbO4eXPs6Qv9I4YA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2oPrvem_YPCbO4eXPs6Qv9I4YA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F635F/B87B64FC6F4811E8B1585164C4F9AE02/BDEF6FCA7BEE11EDB0C43C11C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.0.0.0/22
IPv6:
2406:daa0:4040::/44
2406:daa0:4060::/44
2406:daa0:4080::/44
2406:daa0:6080::/44
2406:daa0:8020::/44
2406:daa0:8080::/44
2406:daa0:80c0::/44
2406:daa0:a040::/44
2406:daa0:a080::/44
2406:daa0:a0c0::/44
Signature Algorithm: sha256WithRSAEncryption
79:cc:19:dd:d8:77:e1:6a:9c:18:53:30:f6:9d:45:56:f6:38:
00:61:11:fc:a9:21:e7:c5:b5:a1:0c:3b:ec:c0:53:2a:6d:2e:
fd:27:5f:ee:ad:84:fa:32:11:8f:94:db:c4:af:e3:52:3a:45:
2a:73:96:72:bb:cd:91:90:b3:b9:b5:fa:0c:df:6a:14:c5:fb:
d4:1b:76:88:a3:f0:91:c9:d6:8c:f1:0f:70:47:0e:ca:57:81:
0a:3d:7f:7d:87:7e:56:ab:ef:2b:b9:3e:96:a2:db:e8:71:86:
6b:02:99:ae:7b:e8:60:18:a6:cb:4a:f9:ce:38:db:4b:84:77:
76:c7:b0:c2:b7:88:d2:fa:3b:67:e8:08:eb:ae:ad:85:cb:f9:
6a:8d:2e:01:42:62:72:91:fc:00:55:ad:f1:71:92:04:ee:10:
39:2d:3b:4b:c0:be:55:f0:5b:f5:8d:27:8b:cb:83:31:b1:bc:
9a:2b:7f:9f:86:88:17:1a:e5:35:8c:8b:58:c0:a9:f3:91:7b:
7b:7e:43:fc:98:0d:35:c0:2a:84:f9:01:1f:d0:15:de:66:9a:
97:22:61:1a:01:7e:b3:c6:18:b4:93:57:e4:43:f0:67:57:22:
6f:f4:f0:7d:f7:71:e0:00:10:3b:ef:bf:b6:4b:5c:91:fd:9b:
5b:45:31:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:51 2024 by rpki-client on console-fra.rpki-client.org