Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91A/61E70D86161811EE80B9414EC4F9AE02/ADAEBBD6161F11EE9C6E4529C4F9AE02.roa
File: ADAEBBD6161F11EE9C6E4529C4F9AE02.roa (raw, json)
Hash identifier: 7BVmNepQES6T7o+2bZV/zc2Q9T00B1Q0rsuk0jHEIvU=
Subject key identifier: 18:6B:9E:02:23:38:C2:02:28:06:D4:18:51:32:C2:78:9A:A9:26:37
Certificate issuer: /CN=A913C91A/serialNumber=AB8789C70C742EAF959F46A1B974E5454C0AFFAF
Certificate serial: 0161
Authority key identifier: AB:87:89:C7:0C:74:2E:AF:95:9F:46:A1:B9:74:E5:45:4C:0A:FF:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q4eJxwx0Lq-Vn0ahuXTlRUwK_68.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913C91A/61E70D86161811EE80B9414EC4F9AE02/ADAEBBD6161F11EE9C6E4529C4F9AE02.roa
Signing time: Thu 13 Mar 2025 04:24:49 +0000
ROA not before: Thu 13 Mar 2025 04:24:49 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 24305
IP address blocks: 103.215.15.0/24 maxlen: 24
202.0.75.0/24 maxlen: 24
203.8.161.0/24 maxlen: 24
203.26.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 353 (0x161)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913C91A
Validity
Not Before: Mar 13 04:24:49 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67d25e11-a884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:42:41:40:15:97:5c:4b:bc:80:35:4f:0f:da:
0f:10:d1:1c:e8:fc:1e:97:af:39:e2:ef:d6:70:bd:
9b:27:ee:e7:fc:62:a2:44:d4:20:cd:8e:30:ec:a1:
14:c6:b6:ce:1c:53:eb:35:c7:d5:21:4a:8c:4e:73:
53:a9:e7:77:da:17:de:9c:15:3d:5a:0d:59:27:61:
59:7f:fc:c2:fa:0e:27:fe:23:4a:c6:e3:b4:0b:f0:
80:ea:12:d2:c6:73:e0:7e:c1:90:f8:fb:a2:49:ed:
ec:b4:6d:4d:b2:b6:73:1b:b0:5e:b2:95:11:89:e0:
cf:bb:6e:a2:e9:4e:0e:dc:67:df:32:f7:46:1c:77:
ba:60:40:63:86:1c:23:57:2c:af:ab:f8:84:8e:f7:
fe:78:2f:11:af:5e:11:46:d2:ee:41:7d:70:db:15:
cf:2f:8c:ea:87:6a:35:b3:58:15:cf:6a:37:25:b0:
ed:6c:e7:ca:c2:a1:ad:e4:34:b9:9f:84:0f:fc:a8:
a5:1c:8f:21:54:2c:52:11:96:75:ab:0a:1f:5b:6e:
69:05:0c:d0:1e:3d:c1:54:70:ca:f7:4d:81:dd:d9:
82:fc:f4:5a:c9:04:1e:21:c8:a3:10:ff:8e:07:91:
e4:db:d6:8c:11:91:e7:57:62:d7:3d:83:20:81:b2:
1a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:6B:9E:02:23:38:C2:02:28:06:D4:18:51:32:C2:78:9A:A9:26:37
X509v3 Authority Key Identifier:
keyid:AB:87:89:C7:0C:74:2E:AF:95:9F:46:A1:B9:74:E5:45:4C:0A:FF:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913C91A/61E70D86161811EE80B9414EC4F9AE02/q4eJxwx0Lq-Vn0ahuXTlRUwK_68.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q4eJxwx0Lq-Vn0ahuXTlRUwK_68.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91A/61E70D86161811EE80B9414EC4F9AE02/ADAEBBD6161F11EE9C6E4529C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.215.15.0/24
202.0.75.0/24
203.8.161.0/24
203.26.79.0/24
Signature Algorithm: sha256WithRSAEncryption
e8:8c:36:75:65:09:3b:af:3e:bb:e0:bf:f1:32:b9:b6:20:50:
ce:c7:91:1e:e2:4c:f3:01:a5:2a:46:51:15:f8:87:fb:43:e1:
59:b4:58:32:73:41:66:87:e3:12:05:69:8d:af:90:92:a3:0f:
92:fa:ba:88:9e:3f:46:a8:3a:35:9f:d9:c8:0e:d7:53:09:3a:
54:62:9c:b3:79:a0:14:50:76:32:eb:e6:81:29:38:1e:2d:20:
e0:80:0c:4d:52:ee:dd:f6:17:1b:24:ea:6c:c3:12:16:bf:3f:
47:be:44:e4:3a:af:a7:36:c7:64:3e:76:fd:96:a7:d5:b3:93:
28:7a:ca:57:3b:82:73:54:3c:a3:ae:e9:1b:5c:4f:ed:5f:e3:
9f:67:e6:ac:e9:20:81:da:06:15:70:58:37:09:fd:17:87:af:
a9:43:17:f7:be:1f:c0:fe:73:dc:54:6b:30:cb:ee:30:0c:56:
10:83:cc:99:e1:a2:80:fb:f1:4f:50:6a:a3:6e:95:12:45:a2:
c9:1e:a6:e8:4b:cc:b2:14:c1:1f:d7:15:4a:34:e3:d7:60:6b:
c7:28:6f:ce:92:6d:d7:32:20:a3:b8:b1:72:f7:f9:82:e7:6e:
a2:72:45:8b:45:ac:ba:95:54:c0:ee:0c:ae:68:b8:c5:52:5d:
54:90:75:9f
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0M5MUExMTAvBgNVBAUTKEFCODc4OUM3MEM3NDJFQUY5NTlGNDZBMUI5NzRFNTQ1
NEMwQUZGQUYwHhcNMjUwMzEzMDQyNDQ5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2QyNWUxMS1hODg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvkJBQBWXXEu8gDVPD9oPENEc6Pwel6854u/WcL2bJ+7n/GKiRNQgzY4w7KEU
xrbOHFPrNcfVIUqMTnNTqed32hfenBU9Wg1ZJ2FZf/zC+g4n/iNKxuO0C/CA6hLS
xnPgfsGQ+PuiSe3stG1NsrZzG7BespURieDPu26i6U4O3GffMvdGHHe6YEBjhhwj
Vyyvq/iEjvf+eC8Rr14RRtLuQX1w2xXPL4zqh2o1s1gVz2o3JbDtbOfKwqGt5DS5
n4QP/KilHI8hVCxSEZZ1qwofW25pBQzQHj3BVHDK902B3dmC/PRayQQeIcijEP+O
B5Hk29aMEZHnV2LXPYMggbIaOQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFBhrngIj
OMICKAbUGFEywniaqSY3MB8GA1UdIwQYMBaAFKuHiccMdC6vlZ9Gobl05UVMCv+v
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxQS82MUU3MEQ4NjE2
MTgxMUVFODBCOTQxNEVDNEY5QUUwMi9xNGVKeHd4MExxLVZuMGFodVhUbFJVd0tf
NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3E0ZUp4d3gwTHEtVm4wYWh1WFRsUlV3S182OC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0M5MUEvNjFFNzBEODYxNjE4MTFFRTgwQjk0MTRFQzRGOUFFMDIvQURBRUJCRDYx
NjFGMTFFRTlDNkU0NTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E
IjAgMB4EAgABMBgDBABn1w8DBADKAEsDBADLCKEDBADLGk8wDQYJKoZIhvcNAQEL
BQADggEBAOiMNnVlCTuvPrvgv/EyubYgUM7HkR7iTPMBpSpGURX4h/tD4Vm0WDJz
QWaH4xIFaY2vkJKjD5L6uoieP0aoOjWf2cgO11MJOlRinLN5oBRQdjLr5oEpOB4t
IOCADE1S7t32Fxsk6mzDEha/P0e+ROQ6r6c2x2Q+dv2Wp9Wzkyh6ylc7gnNUPKOu
6RtcT+1f459n5qzpIIHaBhVwWDcJ/ReHr6lDF/e+H8D+c9xUazDL7jAMVhCDzJnh
ooD78U9QaqNulRJFoskepuhLzLIUwR/XFUo049dga8cob86SbdcyIKO4sXL3+YLn
bqJyRYtFrLqVVMDuDK5ouMVSXVSQdZ8=
-----END CERTIFICATE-----
Generated at Sat Apr 5 08:15:45 2025 by rpki-client