Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/B523DAE68C9211EABC682867C4F9AE02.roa
File: B523DAE68C9211EABC682867C4F9AE02.roa (raw, json)
Hash identifier: O1kd0Y8YHGAuQNE1wq4lO26tfNPiZv4mNi6pAigMPUU=
Subject key identifier: 6C:89:74:8D:DF:0C:6B:76:D3:57:DD:29:9A:0C:44:D5:A9:8A:B5:61
Certificate issuer: /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3
Certificate serial: 0C71
Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/B523DAE68C9211EABC682867C4F9AE02.roa
Signing time: Tue 02 Jul 2024 18:46:11 +0000
ROA not before: Tue 02 Jul 2024 18:46:11 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 63991
IP address blocks: 103.58.144.0/23 maxlen: 24
103.127.62.0/23 maxlen: 24
2405:55c0::/32 maxlen: 32
2405:55c0::/48 maxlen: 48
2405:55c0:3c::/48 maxlen: 48
2405:55c0:3f::/48 maxlen: 48
2405:55c0:54::/48 maxlen: 48
2405:55c0:55::/48 maxlen: 48
2405:55c0:80::/48 maxlen: 48
2405:55c0:81::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3185 (0xc71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9140EE2
Validity
Not Before: Jul 2 18:46:11 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66844af2-6a35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:09:0d:84:92:81:bb:4b:14:75:b9:b3:ef:15:
2e:01:16:c5:d5:d4:6e:5a:49:5d:77:5a:81:51:a4:
47:4e:f2:ef:45:f4:b6:37:17:91:f4:79:4d:ef:5a:
27:25:47:76:d6:ac:ae:49:5d:31:98:32:7b:f8:46:
05:d8:18:2c:70:02:8d:5b:30:78:68:f2:02:71:e8:
b2:97:49:a9:7a:1b:9f:0e:b7:ac:16:73:eb:49:f5:
6a:e2:a1:91:1d:09:07:1f:1f:d6:f6:2f:dd:9a:e3:
d6:6d:c6:97:8e:07:6e:6b:b9:10:75:e3:3d:37:56:
8a:b6:d7:44:91:83:83:79:35:64:68:ff:2f:75:b3:
88:f0:6e:6e:d6:a7:17:6a:99:5d:5f:9f:a3:60:a7:
31:be:6e:25:7b:3f:49:27:17:24:68:71:e1:e8:0a:
9c:d1:e1:3f:bc:6f:76:0c:20:dc:3b:16:4f:3b:fd:
b6:88:9d:d0:58:23:23:70:5b:42:34:8e:68:af:c8:
a5:9a:fe:e1:0b:a9:fe:20:59:dd:04:d2:cd:10:25:
e3:d0:91:26:1d:06:59:74:42:65:7b:9f:b8:52:86:
99:35:0e:77:c8:5f:67:11:ee:ee:20:b7:d9:c9:a4:
19:bb:3a:6b:21:e1:ad:b3:53:df:b8:70:00:bc:fe:
d6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:89:74:8D:DF:0C:6B:76:D3:57:DD:29:9A:0C:44:D5:A9:8A:B5:61
X509v3 Authority Key Identifier:
keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/B523DAE68C9211EABC682867C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.58.144.0/23
103.127.62.0/23
IPv6:
2405:55c0::/32
Signature Algorithm: sha256WithRSAEncryption
7b:e1:db:34:f9:4e:a9:47:79:22:10:4d:84:2e:7c:8f:12:35:
e1:28:11:4b:16:b1:09:e4:0f:42:65:4f:6f:a6:6a:c6:6d:dd:
86:f9:15:a6:58:30:3c:6f:25:d9:07:43:80:db:10:a2:ea:74:
7f:82:4e:7e:27:f6:97:c1:5b:aa:eb:aa:27:74:29:10:ad:53:
d3:37:cc:8c:4d:80:a8:55:c6:2d:c4:6b:fc:7e:e9:a0:dd:8a:
3d:f4:31:d2:be:c7:2f:8e:55:d6:2f:5b:44:c9:91:b3:c7:94:
c6:60:ff:e2:02:cd:88:8c:99:0c:dd:76:ab:36:34:d1:e1:46:
07:10:e3:43:62:1a:c8:3e:73:91:d9:ca:e0:7c:cf:51:68:fd:
02:8b:93:c6:d5:b9:42:8e:33:82:a8:04:25:b4:2f:56:c1:e5:
a1:33:75:c6:a8:ed:87:62:f7:c1:b5:cf:0a:6b:7b:46:75:fb:
4b:58:83:da:78:19:57:95:d0:44:75:df:2b:9b:6c:b4:06:eb:
86:a1:58:a1:a9:ac:a1:28:31:ad:b0:88:4c:22:5b:84:87:00:
6a:e1:c8:ce:9a:0b:08:46:75:d8:3f:d2:2d:a7:af:72:33:1b:
52:03:6a:60:86:f0:02:69:94:98:69:5d:cd:67:97:4a:bd:17:
58:cf:dd:7d
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgICDHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDBFRTIxMTAvBgNVBAUTKDQ3NTI1MEU2QTA1NTQ3OEY0QUMxRUFGMUVEMzJENTY3
MkMzQ0QxQjMwHhcNMjQwNzAyMTg0NjExWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02Njg0NGFmMi02YTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1gkNhJKBu0sUdbmz7xUuARbF1dRuWkldd1qBUaRHTvLvRfS2NxeR9HlN71on
JUd21qyuSV0xmDJ7+EYF2BgscAKNWzB4aPICceiyl0mpehufDresFnPrSfVq4qGR
HQkHHx/W9i/dmuPWbcaXjgdua7kQdeM9N1aKttdEkYODeTVkaP8vdbOI8G5u1qcX
apldX5+jYKcxvm4lez9JJxckaHHh6Aqc0eE/vG92DCDcOxZPO/22iJ3QWCMjcFtC
NI5or8ilmv7hC6n+IFndBNLNECXj0JEmHQZZdEJle5+4UoaZNQ53yF9nEe7uILfZ
yaQZuzprIeGts1PfuHAAvP7WCQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGyJdI3f
DGt201fdKZoMRNWpirVhMB8GA1UdIwQYMBaAFEdSUOagVUePSsHq8e0y1WcsPNGz
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEVFMi9FQTAxRDU1QURG
NzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0OUt3ZXJ4N1RMVlp5dzgw
Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1IxSlE1cUJWUjQ5S3dlcng3VExWWnl3ODBiTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDBFRTIvRUEwMUQ1NUFERjczMTFFOUFCRUJENDNCQzRGOUFFMDIvQjUyM0RBRTY4
QzkyMTFFQUJDNjgyODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E
JTAjMBIEAgABMAwDBAFnOpADBAFnfz4wDQQCAAIwBwMFACQFVcAwDQYJKoZIhvcN
AQELBQADggEBAHvh2zT5TqlHeSIQTYQufI8SNeEoEUsWsQnkD0JlT2+masZt3Yb5
FaZYMDxvJdkHQ4DbEKLqdH+CTn4n9pfBW6rrqid0KRCtU9M3zIxNgKhVxi3Ea/x+
6aDdij30MdK+xy+OVdYvW0TJkbPHlMZg/+ICzYiMmQzddqs2NNHhRgcQ40NiGsg+
c5HZyuB8z1Fo/QKLk8bVuUKOM4KoBCW0L1bB5aEzdcao7Ydi98G1zwpre0Z1+0tY
g9p4GVeV0ER13yubbLQG64ahWKGprKEoMa2wiEwiW4SHAGrhyM6aCwhGddg/0i2n
r3IzG1IDamCG8AJplJhpXc1nl0q9F1jP3X0=
-----END CERTIFICATE-----
Generated at Sat Apr 5 19:27:42 2025 by rpki-client