Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE749/BD6441909FA411E4B8DFDD37C4F9AE02/348DC12668DD11EB8FD0C216C4F9AE02.roa
File: 348DC12668DD11EB8FD0C216C4F9AE02.roa (raw, json)
Hash identifier: kbsF8PHu6V59RYLSrQTNaSw8iYe4AlFfgnk3x/h8KwU=
Subject key identifier: 01:40:56:F9:21:E0:EE:78:0B:FE:07:71:99:8E:A7:99:D3:A3:BC:D4
Certificate issuer: /CN=A91FE749/serialNumber=F00E7E4C8053CFFA068EB73E958892DD8BE61A8C
Certificate serial: 276B
Authority key identifier: F0:0E:7E:4C:80:53:CF:FA:06:8E:B7:3E:95:88:92:DD:8B:E6:1A:8C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8A5-TIBTz_oGjrc-lYiS3YvmGow.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FE749/BD6441909FA411E4B8DFDD37C4F9AE02/348DC12668DD11EB8FD0C216C4F9AE02.roa
Signing time: Wed 28 Jun 2023 16:02:34 +0000
ROA not before: Wed 28 Jun 2023 16:02:34 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 212708
IP address blocks: 122.254.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10091 (0x276b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FE749/serialNumber=F00E7E4C8053CFFA068EB73E958892DD8BE61A8C
Validity
Not Before: Jun 28 16:02:34 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=649c599a-d4ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d3:48:0d:99:27:06:30:bc:5f:88:16:9e:3c:
4c:36:86:56:b5:c7:9a:ad:42:20:d3:4c:76:ad:13:
d8:37:85:45:f9:2d:17:8d:3b:03:00:23:47:f9:c9:
6e:4d:17:cf:d8:f3:3d:a4:c8:67:78:78:4b:79:6c:
b8:84:75:7b:a5:d6:90:84:a4:09:c9:83:3c:3b:a0:
b2:ae:30:7a:29:c4:50:98:a0:5c:04:5b:17:cc:ac:
d8:4a:ca:b8:25:f5:b3:26:6c:45:80:0b:cb:d6:ee:
d0:36:0a:60:04:f1:c7:18:d7:cd:9c:3a:3e:cd:da:
74:95:3a:a8:00:bc:41:57:d8:b2:80:8a:3d:93:8d:
e8:90:3b:31:34:2c:4b:d8:18:d2:be:a0:38:10:14:
ae:7a:97:e0:68:49:c7:e0:58:41:bc:e9:7f:5a:8c:
7a:04:67:f1:53:d3:72:ce:15:a8:cf:b6:de:88:d2:
4a:a4:ec:ba:72:84:c0:ab:c4:e2:4e:f2:e0:31:16:
ba:a3:3c:c3:28:bc:3a:77:68:47:30:b2:93:48:1e:
ac:2c:11:5f:6d:9b:1a:f2:69:4a:82:5e:1b:5a:5e:
74:8b:52:5a:b9:23:97:e4:da:e1:aa:aa:c4:f8:12:
03:b4:f3:05:bb:bb:9f:23:75:fa:23:91:34:ee:8e:
8e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:40:56:F9:21:E0:EE:78:0B:FE:07:71:99:8E:A7:99:D3:A3:BC:D4
X509v3 Authority Key Identifier:
keyid:F0:0E:7E:4C:80:53:CF:FA:06:8E:B7:3E:95:88:92:DD:8B:E6:1A:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FE749/BD6441909FA411E4B8DFDD37C4F9AE02/8A5-TIBTz_oGjrc-lYiS3YvmGow.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8A5-TIBTz_oGjrc-lYiS3YvmGow.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE749/BD6441909FA411E4B8DFDD37C4F9AE02/348DC12668DD11EB8FD0C216C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
122.254.76.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:08:55:8a:d4:b5:fe:ed:61:a3:08:91:21:de:ca:d9:13:ec:
96:d4:89:dd:ef:3f:2d:11:12:d4:72:ec:ff:3f:1b:fe:4b:db:
7d:79:97:32:fe:35:f6:cc:34:59:ce:e1:d1:35:0b:e7:23:c1:
6b:b4:cd:1b:f8:da:d7:50:91:a6:3d:26:1a:79:d3:98:b4:d9:
aa:d6:e1:1d:fe:cf:0d:2d:73:4a:dd:52:68:8d:34:de:10:c4:
33:36:4d:1a:1b:ee:73:a1:11:2c:fe:a9:82:47:4b:06:aa:7d:
e7:b0:ac:73:ee:23:32:9d:6f:b4:d6:7e:d3:c5:9c:2e:8b:1e:
fb:f8:c0:b2:58:bf:41:67:bf:3d:1b:a8:2f:bb:17:de:b9:3b:
18:7d:ad:35:47:25:d3:1c:d5:3b:f3:7c:c8:01:7c:3f:34:3e:
56:f1:96:03:c5:08:2a:fb:53:3b:08:ad:db:06:8d:0a:3f:97:
14:62:5f:69:62:a8:94:5d:35:3b:d9:dd:49:d6:96:08:0f:5f:
50:cd:ee:35:17:a1:6d:84:42:fa:27:bd:c2:b0:10:17:f1:85:
2d:c9:d0:89:91:f9:d2:04:a1:1f:4a:6c:0d:5f:4e:10:e8:d4:
dc:06:79:ea:c2:b0:97:f4:cf:d8:f6:ec:16:4d:f6:1c:2c:b5:
e9:4b:ee:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:52 2024 by rpki-client on console-fra.rpki-client.org