Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91282C6/9CE3AFB6367411EFADB5201CC4F9AE02/0F0D45D0373711EF896FCE68C4F9AE02.roa
File: 0F0D45D0373711EF896FCE68C4F9AE02.roa (raw, json)
Hash identifier: 8SD/beYd/nx0hbzhIjleBbHgR6i9e/DB5zLCO7k3URU=
Subject key identifier: 4D:28:54:8B:07:D0:15:14:EE:88:06:4D:35:BD:21:FB:3D:A0:C1:FF
Certificate issuer: /CN=A91282C6/serialNumber=16925A5F9486BFC3F11B518F0DF8473A02ABB85B
Certificate serial: 50
Authority key identifier: 16:92:5A:5F:94:86:BF:C3:F1:1B:51:8F:0D:F8:47:3A:02:AB:B8:5B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FpJaX5SGv8PxG1GPDfhHOgKruFs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91282C6/9CE3AFB6367411EFADB5201CC4F9AE02/0F0D45D0373711EF896FCE68C4F9AE02.roa
Signing time: Tue 19 Nov 2024 05:28:51 +0000
ROA not before: Tue 19 Nov 2024 05:28:51 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 134744
IP address blocks: 103.199.0.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80 (0x50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91282C6
Validity
Not Before: Nov 19 05:28:51 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=673c2213-5b79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9c:36:94:3b:9e:52:8c:33:45:3d:60:33:d0:
c5:dd:95:e9:62:1c:c3:6c:df:d0:82:56:bd:cf:11:
53:98:6a:d0:5b:19:9b:cc:7e:95:32:9b:5a:25:2b:
56:fa:50:38:a3:b6:c2:0b:29:df:3b:81:3d:5f:e1:
1e:36:24:cf:0d:8c:d7:e3:7c:43:bf:11:e2:fc:73:
ac:a0:f5:ef:30:e9:1d:23:9b:46:a8:18:48:72:1e:
c5:bb:2c:c5:b3:b1:f6:3f:ce:06:57:f4:35:2c:c2:
96:97:8a:23:e7:0d:e8:c5:91:fb:0c:94:86:1f:c8:
13:7b:d3:1d:fd:d6:2e:d4:88:a2:1d:dc:79:5c:f3:
86:c8:ad:79:92:8e:1b:a7:e9:8b:ce:81:3c:48:97:
9e:50:dd:9d:76:56:e6:95:26:7c:10:42:d6:25:14:
af:58:d5:1b:5b:59:2f:5e:c1:23:3a:b1:b9:fc:a0:
44:71:55:a5:9b:65:a8:ab:15:54:a8:dc:2e:2c:83:
02:02:40:fb:37:21:57:1a:1d:bf:a7:d2:4f:bb:db:
b7:80:31:5a:14:85:43:24:13:04:1c:20:fc:80:ef:
6f:05:01:6f:6b:cb:f2:b4:fd:d0:03:19:55:cb:60:
bc:4b:a3:5e:39:e1:73:ca:34:92:7f:86:af:24:4e:
91:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:28:54:8B:07:D0:15:14:EE:88:06:4D:35:BD:21:FB:3D:A0:C1:FF
X509v3 Authority Key Identifier:
keyid:16:92:5A:5F:94:86:BF:C3:F1:1B:51:8F:0D:F8:47:3A:02:AB:B8:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91282C6/9CE3AFB6367411EFADB5201CC4F9AE02/FpJaX5SGv8PxG1GPDfhHOgKruFs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FpJaX5SGv8PxG1GPDfhHOgKruFs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91282C6/9CE3AFB6367411EFADB5201CC4F9AE02/0F0D45D0373711EF896FCE68C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.199.0.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:fc:34:56:f3:e8:76:15:ba:44:6f:76:96:2d:73:ba:89:87:
a7:47:7c:3f:1b:4e:c5:08:55:f5:08:db:e7:f9:cd:f7:3b:33:
ab:34:58:44:2d:af:dd:b5:94:5d:94:ed:3c:4f:b6:7c:59:8a:
c2:8d:97:39:02:91:75:01:ad:8a:63:9e:df:5f:9f:58:24:58:
e3:c3:af:65:ef:fb:be:a5:68:f7:25:b7:07:56:66:9c:cf:ec:
0b:ea:bf:bc:8d:55:9c:ad:5f:5e:2a:9e:2e:20:c3:09:2f:ab:
1d:0a:64:da:60:52:36:55:8c:47:75:3d:ea:7e:21:26:0f:8e:
5e:5c:8a:2c:6f:55:6f:cf:9f:78:a2:9d:41:0b:20:d2:64:09:
a7:3a:a6:0f:27:52:70:7f:2b:0a:ab:73:ef:4e:53:bb:3b:d3:
33:7e:ec:4c:43:5f:cf:c8:4f:20:1f:c1:5a:63:28:25:bf:15:
9a:e6:df:ca:bb:34:32:64:5b:81:0f:b2:0c:4f:7a:1b:66:7f:
63:26:cb:59:38:fa:fe:0f:14:8d:96:3b:4c:d3:15:b4:c4:0c:
82:e3:03:50:9f:1d:99:de:0a:6a:fa:2e:58:b2:bf:57:0b:d4:
7b:8d:fc:4a:10:44:1b:e0:0f:41:a0:56:bc:6d:f4:00:54:2c:
54:b2:74:9b
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy
ODJDNjExMC8GA1UEBRMoMTY5MjVBNUY5NDg2QkZDM0YxMUI1MThGMERGODQ3M0Ew
MkFCQjg1QjAeFw0yNDExMTkwNTI4NTFaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY3M2MyMjEzLTViNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCvnDaUO55SjDNFPWAz0MXdleliHMNs39CCVr3PEVOYatBbGZvMfpUym1olK1b6
UDijtsILKd87gT1f4R42JM8NjNfjfEO/EeL8c6yg9e8w6R0jm0aoGEhyHsW7LMWz
sfY/zgZX9DUswpaXiiPnDejFkfsMlIYfyBN70x391i7UiKId3Hlc84bIrXmSjhun
6YvOgTxIl55Q3Z12VuaVJnwQQtYlFK9Y1RtbWS9ewSM6sbn8oERxVaWbZairFVSo
3C4sgwICQPs3IVcaHb+n0k+727eAMVoUhUMkEwQcIPyA728FAW9ry/K0/dADGVXL
YLxLo1454XPKNJJ/hq8kTpFtAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUTShUiwfQ
FRTuiAZNNb0h+z2gwf8wHwYDVR0jBBgwFoAUFpJaX5SGv8PxG1GPDfhHOgKruFsw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4MkM2LzlDRTNBRkI2MzY3
NDExRUZBREI1MjAxQ0M0RjlBRTAyL0ZwSmFYNVNHdjhQeEcxR1BEZmhIT2dLcnVG
cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvRnBKYVg1U0d2OFB4RzFHUERmaEhPZ0tydUZzLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
ODJDNi85Q0UzQUZCNjM2NzQxMUVGQURCNTIwMUNDNEY5QUUwMi8wRjBENDVEMDM3
MzcxMUVGODk2RkNFNjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAWfHADANBgkqhkiG9w0BAQsFAAOCAQEArPw0VvPodhW6RG92
li1zuomHp0d8PxtOxQhV9Qjb5/nN9zszqzRYRC2v3bWUXZTtPE+2fFmKwo2XOQKR
dQGtimOe31+fWCRY48OvZe/7vqVo9yW3B1ZmnM/sC+q/vI1VnK1fXiqeLiDDCS+r
HQpk2mBSNlWMR3U96n4hJg+OXlyKLG9Vb8+feKKdQQsg0mQJpzqmDydScH8rCqtz
705TuzvTM37sTENfz8hPIB/BWmMoJb8Vmubfyrs0MmRbgQ+yDE96G2Z/YybLWTj6
/g8UjZY7TNMVtMQMguMDUJ8dmd4KavouWLK/VwvUe438ShBEG+APQaBWvG30AFQs
VLJ0mw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:05:37 2025 by rpki-client