Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/B3682FEC21D711EB9CFAC46EC4F9AE02.roa
File: B3682FEC21D711EB9CFAC46EC4F9AE02.roa (raw, json)
Hash identifier: 77t9c6veUMOt4XPOFIwWe8FztnDBdg3DuRHonRmM4pA=
Subject key identifier: 86:3F:98:08:94:A4:FF:C3:34:DF:10:56:F3:07:AA:BE:89:04:0F:55
Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28
Certificate serial: 0F77
Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/B3682FEC21D711EB9CFAC46EC4F9AE02.roa
Signing time: Thu 06 Mar 2025 18:06:25 +0000
ROA not before: Thu 06 Mar 2025 18:06:25 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 18013
IP address blocks: 103.133.176.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3959 (0xf77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9131690
Validity
Not Before: Mar 6 18:06:25 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67c9e421-a097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:94:88:fe:f5:0e:17:3d:a3:52:d8:cb:6e:3c:
2c:00:c7:0d:f0:b9:e9:39:b2:32:f6:97:80:43:1d:
46:a3:c1:76:17:69:b9:77:4f:1e:69:69:d1:8f:db:
0e:98:1b:20:1d:ed:92:bd:ee:fc:21:f5:46:ba:19:
ff:02:03:b0:a2:52:83:3a:82:be:93:af:6c:b4:11:
67:6a:8a:1d:9e:6d:4c:a9:29:5d:16:65:13:04:95:
b0:e2:c6:08:c9:fb:b1:23:29:cd:bf:a9:ea:55:6d:
25:07:20:5c:24:2e:ca:38:d6:da:d5:fe:d0:1e:59:
a1:7b:6b:61:38:5a:67:b0:4d:e0:a9:29:c1:db:6c:
44:41:f7:23:32:2d:53:42:79:95:33:59:48:0f:02:
f9:44:7f:77:b2:4f:ff:4f:e2:76:2d:ce:c7:c2:d3:
43:69:63:92:ad:01:60:44:e2:3c:08:1c:f6:14:be:
01:73:db:f6:b5:09:4d:16:c4:75:d9:d8:e5:af:bf:
c8:a5:30:cd:e4:fe:86:18:d3:69:60:63:27:af:85:
05:13:20:ef:20:e1:ec:55:97:b8:8b:37:7b:dc:2b:
d7:93:ed:76:f6:44:53:6e:7a:57:09:78:04:51:ae:
36:8d:39:71:1a:89:17:a4:c0:8f:63:f0:e9:06:2b:
61:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:3F:98:08:94:A4:FF:C3:34:DF:10:56:F3:07:AA:BE:89:04:0F:55
X509v3 Authority Key Identifier:
keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/B3682FEC21D711EB9CFAC46EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.176.0/22
Signature Algorithm: sha256WithRSAEncryption
43:3b:04:75:d6:f2:60:09:c2:fd:72:a5:5e:27:6a:e7:08:2f:
be:44:b9:44:1d:87:03:a8:d8:0f:95:03:33:d5:90:0c:dd:11:
eb:72:d3:c9:7b:bc:29:7a:29:c0:26:d7:8f:45:f0:43:3a:a5:
12:e8:87:36:67:3b:98:73:31:90:eb:e8:f7:22:c8:72:76:71:
22:d9:89:aa:dc:73:b3:e1:b8:3d:f7:d7:73:2a:26:a5:4a:f4:
f1:68:36:ce:75:ac:9a:e7:6b:e8:f3:d4:46:d4:b8:6e:03:2f:
f3:a4:d3:4d:e5:c8:14:a6:06:af:4e:7a:76:ce:18:1d:cd:36:
c4:8f:f2:75:a8:dd:c0:a6:36:e8:41:6e:2c:86:5c:71:af:f0:
a8:b2:a4:2e:91:e4:f7:89:96:0f:68:ba:33:7b:b8:d2:b3:58:
b5:6c:03:bf:a5:9e:57:ab:21:4c:bc:39:cf:11:49:ab:3c:2c:
b6:d3:f1:d8:cb:9a:c1:2d:ea:ce:94:5a:7c:1f:b0:ae:e4:73:
14:9a:e7:be:24:f7:da:dd:2f:5b:8b:86:22:64:93:99:18:fb:
6a:c5:1c:81:73:0c:30:a5:0b:9b:fa:6c:e0:19:95:c6:15:7d:
2c:4f:9d:16:90:b7:89:b7:0f:30:3c:fb:bf:c1:1c:1e:ce:55:
8a:fa:de:4f
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICD3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD
RDM0MEFCMjgwHhcNMjUwMzA2MTgwNjI1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2M5ZTQyMS1hMDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAv5SI/vUOFz2jUtjLbjwsAMcN8LnpObIy9peAQx1Go8F2F2m5d08eaWnRj9sO
mBsgHe2Sve78IfVGuhn/AgOwolKDOoK+k69stBFnaoodnm1MqSldFmUTBJWw4sYI
yfuxIynNv6nqVW0lByBcJC7KONba1f7QHlmhe2thOFpnsE3gqSnB22xEQfcjMi1T
QnmVM1lIDwL5RH93sk//T+J2Lc7HwtNDaWOSrQFgROI8CBz2FL4Bc9v2tQlNFsR1
2djlr7/IpTDN5P6GGNNpYGMnr4UFEyDvIOHsVZe4izd73CvXk+129kRTbnpXCXgE
Ua42jTlxGokXpMCPY/DpBith0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIY/mAiU
pP/DNN8QVvMHqr6JBA9VMB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz
RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx
eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MzE2OTAvMTVCNDFCODg2M0YzMTFFOUEwODU0QzQ3QzRGOUFFMDIvQjM2ODJGRUMy
MUQ3MTFFQjlDRkFDNDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAJnhbAwDQYJKoZIhvcNAQELBQADggEBAEM7BHXW8mAJwv1y
pV4naucIL75EuUQdhwOo2A+VAzPVkAzdEety08l7vCl6KcAm149F8EM6pRLohzZn
O5hzMZDr6PciyHJ2cSLZiarcc7PhuD3313MqJqVK9PFoNs51rJrna+jz1EbUuG4D
L/Ok003lyBSmBq9OenbOGB3NNsSP8nWo3cCmNuhBbiyGXHGv8KiypC6R5PeJlg9o
ujN7uNKzWLVsA7+lnlerIUy8Oc8RSas8LLbT8djLmsEt6s6UWnwfsK7kcxSa574k
99rdL1uLhiJkk5kY+2rFHIFzDDClC5v6bOAZlcYVfSxPnRaQt4m3DzA8+7/BHB7O
VYr63k8=
-----END CERTIFICATE-----
Generated at Sat Apr 5 05:55:15 2025 by rpki-client