Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/5604A238BB1C11ECBF12EE13C4F9AE02.roa
File: 5604A238BB1C11ECBF12EE13C4F9AE02.roa (raw, json)
Hash identifier: NHWCUf8+AtbmzXnzmeZbtvKsPoQGJHCu3CTJE2iZ0Gs=
Subject key identifier: E6:24:3D:C8:A6:45:98:6E:30:9F:01:AB:77:70:57:B7:D8:56:67:AA
Certificate issuer: /CN=A913A8A4/serialNumber=4D176A0B457A6E5695D37A7ECB8DCB3A73CB4812
Certificate serial: 11C8
Authority key identifier: 4D:17:6A:0B:45:7A:6E:56:95:D3:7A:7E:CB:8D:CB:3A:73:CB:48:12
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRdqC0V6blaV03p-y43LOnPLSBI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/5604A238BB1C11ECBF12EE13C4F9AE02.roa
Signing time: Thu 28 Nov 2024 17:35:30 +0000
ROA not before: Thu 28 Nov 2024 17:35:30 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 64271
IP address blocks: 103.102.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4552 (0x11c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913A8A4
Validity
Not Before: Nov 28 17:35:30 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=6748a9e1-ae2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a9:09:06:08:ca:d4:69:b9:1c:20:a9:85:88:
9d:74:19:db:b6:c6:77:92:59:4f:b8:f4:f8:75:17:
a0:e5:d0:b5:0e:f2:74:5a:25:0c:da:5a:37:e0:9e:
e0:58:1a:cc:29:22:c6:2a:fb:42:2b:82:bc:2d:cd:
71:58:f2:b3:1e:99:49:27:83:e3:56:bc:f5:08:f9:
d3:36:62:de:42:a2:82:51:81:dd:3f:45:6e:53:35:
ea:a3:9d:92:24:1b:97:cd:6a:c9:30:ef:ae:6f:50:
25:41:3c:53:b1:f1:bd:88:1a:a1:8f:a9:4b:43:d1:
33:38:de:71:34:83:e6:2d:5e:ab:89:d0:cc:dd:39:
ea:27:d1:13:19:2f:b3:a7:08:c3:c1:9e:5e:9e:7b:
f0:52:28:90:e1:3b:85:10:a0:36:e4:6a:10:f2:a5:
3b:4c:f0:9a:7c:79:57:28:97:b5:ae:62:75:bc:0d:
50:e4:2f:a3:7a:61:db:fd:ac:ca:ab:a2:89:18:af:
23:85:36:50:58:43:de:35:ce:9e:3e:8c:88:98:75:
a6:93:91:5b:5d:a3:50:02:01:c8:b6:47:61:3b:1c:
91:d3:26:e3:58:54:7c:ae:16:a3:a1:55:18:e9:e6:
3f:72:e8:c1:df:fa:ae:ce:3e:45:54:3e:6b:63:4c:
cb:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:24:3D:C8:A6:45:98:6E:30:9F:01:AB:77:70:57:B7:D8:56:67:AA
X509v3 Authority Key Identifier:
keyid:4D:17:6A:0B:45:7A:6E:56:95:D3:7A:7E:CB:8D:CB:3A:73:CB:48:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/TRdqC0V6blaV03p-y43LOnPLSBI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRdqC0V6blaV03p-y43LOnPLSBI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/5604A238BB1C11ECBF12EE13C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.102.6.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:8e:f1:a7:3e:ac:69:a9:25:14:aa:15:a1:3c:5b:c0:55:f4:
35:2b:c2:62:9a:16:7c:27:b1:76:8f:f5:0a:d4:df:3b:6c:d0:
3a:da:b2:cf:a9:81:c6:e8:a5:b9:42:df:f3:10:dc:1a:ab:de:
d8:60:1e:7b:26:94:1b:c4:3d:1e:4c:c2:3c:2f:ab:cb:15:6b:
5e:4d:ad:ad:07:97:80:e0:9a:9e:bd:e3:b1:fa:75:d0:06:6d:
76:3e:c6:64:b4:e0:2e:a6:5f:72:ce:89:29:53:fa:96:39:c7:
d5:28:fc:cb:56:68:bd:1e:4b:6f:ca:02:29:77:88:20:03:be:
8e:2b:38:42:9d:0c:22:b4:a5:c4:de:01:49:9b:b9:39:b9:1c:
dd:a1:c7:92:97:ff:56:d2:f6:1a:6c:46:c4:1c:56:3b:2a:bb:
4f:85:13:2a:27:4a:7e:96:2a:b6:a9:cc:18:cc:4d:a6:e7:ef:
1e:1c:67:ec:03:32:e7:ac:0f:2c:fc:d7:b5:40:92:5d:a5:a0:
96:3b:2c:cf:be:10:a4:ab:3c:51:68:8d:e9:f6:c7:4e:b2:42:
6b:2e:7f:7b:42:7c:57:8b:35:06:43:10:15:08:5b:69:35:81:
87:e4:af:83:ed:d9:26:ec:70:e4:86:f9:c3:09:a7:a6:79:c5:
12:c5:20:87
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICEcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0E4QTQxMTAvBgNVBAUTKDREMTc2QTBCNDU3QTZFNTY5NUQzN0E3RUNCOERDQjNB
NzNDQjQ4MTIwHhcNMjQxMTI4MTczNTMwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzQ4YTllMS1hZTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwakJBgjK1Gm5HCCphYiddBnbtsZ3kllPuPT4dReg5dC1DvJ0WiUM2lo34J7g
WBrMKSLGKvtCK4K8Lc1xWPKzHplJJ4PjVrz1CPnTNmLeQqKCUYHdP0VuUzXqo52S
JBuXzWrJMO+ub1AlQTxTsfG9iBqhj6lLQ9EzON5xNIPmLV6ridDM3TnqJ9ETGS+z
pwjDwZ5ennvwUiiQ4TuFEKA25GoQ8qU7TPCafHlXKJe1rmJ1vA1Q5C+jemHb/azK
q6KJGK8jhTZQWEPeNc6ePoyImHWmk5FbXaNQAgHItkdhOxyR0ybjWFR8rhajoVUY
6eY/cujB3/quzj5FVD5rY0zL8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOYkPcim
RZhuMJ8Bq3dwV7fYVmeqMB8GA1UdIwQYMBaAFE0XagtFem5WldN6fsuNyzpzy0gS
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQThBNC83OTBFNjEwQ0U5
QzMxMUU4QTlDRUQ2NDhDNEY5QUUwMi9UUmRxQzBWNmJsYVYwM3AteTQzTE9uUExT
QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1RSZHFDMFY2YmxhVjAzcC15NDNMT25QTFNCSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0E4QTQvNzkwRTYxMENFOUMzMTFFOEE5Q0VENjQ4QzRGOUFFMDIvNTYwNEEyMzhC
QjFDMTFFQ0JGMTJFRTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnZgYwDQYJKoZIhvcNAQELBQADggEBACuO8ac+rGmpJRSq
FaE8W8BV9DUrwmKaFnwnsXaP9QrU3zts0Drass+pgcbopblC3/MQ3Bqr3thgHnsm
lBvEPR5Mwjwvq8sVa15Nra0Hl4Dgmp6947H6ddAGbXY+xmS04C6mX3LOiSlT+pY5
x9Uo/MtWaL0eS2/KAil3iCADvo4rOEKdDCK0pcTeAUmbuTm5HN2hx5KX/1bS9hps
RsQcVjsqu0+FEyonSn6WKrapzBjMTabn7x4cZ+wDMuesDyz817VAkl2loJY7LM++
EKSrPFFojen2x06yQmsuf3tCfFeLNQZDEBUIW2k1gYfkr4Pt2SbscOSG+cMJp6Z5
xRLFIIc=
-----END CERTIFICATE-----
Generated at Sat Apr 5 20:07:07 2025 by rpki-client