Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/34386BAAB90A11EF97D24653C4F9AE02.roa
File: 34386BAAB90A11EF97D24653C4F9AE02.roa (raw, json)
Hash identifier: gXomgC3UWF4hRBWpPOIJ1KbjovqaJl+GP7rjTy7IiYk=
Subject key identifier: E1:5D:FD:66:59:5B:41:74:2D:2C:80:36:95:9D:BD:EA:08:B5:70:31
Certificate issuer: /CN=A9148D61/serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486
Certificate serial: 0191
Authority key identifier: 69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/34386BAAB90A11EF97D24653C4F9AE02.roa
Signing time: Fri 13 Dec 2024 04:24:55 +0000
ROA not before: Fri 13 Dec 2024 04:24:55 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 151354
IP address blocks: 103.210.115.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401 (0x191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9148D61
Validity
Not Before: Dec 13 04:24:55 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=675bb717-390c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:6d:31:cb:96:4f:dd:cf:91:f4:84:8a:6d:fd:
54:3e:40:0c:d7:24:22:ae:23:51:ba:be:10:f1:a3:
6f:56:7d:f4:8a:b8:96:07:42:7e:5e:dc:50:c3:5b:
f8:16:0c:9d:a0:76:ba:1d:59:31:d0:71:9d:48:d9:
3d:72:4f:62:20:0a:76:42:1a:c0:c8:61:11:a9:51:
40:3b:16:ce:ec:5b:2a:89:4e:a1:3c:c3:dc:c3:0b:
bb:6f:71:93:f2:a6:f4:e4:02:ab:6d:c1:48:cc:b9:
5f:97:dd:bd:31:f2:1f:df:89:06:96:95:13:7f:56:
18:65:46:40:66:85:5f:10:09:07:5b:07:c8:6b:a1:
cd:4e:88:81:38:cc:80:19:8a:72:64:89:31:1c:25:
b1:69:fd:d6:e3:fd:ec:fb:2f:a3:28:c3:3a:b7:ce:
4a:76:ad:48:1e:fe:ca:b8:bf:8c:4b:f9:73:cd:c5:
d0:a7:3e:ea:d5:11:1a:07:f3:d4:96:6b:17:57:46:
51:b3:89:f7:1e:e2:fc:fb:90:3c:f2:71:92:c7:ed:
19:a3:c6:cb:49:40:9c:68:87:73:f6:92:48:34:13:
a9:94:2d:48:aa:e0:91:21:08:6c:a2:39:75:e2:6a:
01:38:d1:23:e4:9f:a9:03:32:0c:68:ea:ff:85:b7:
7e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:5D:FD:66:59:5B:41:74:2D:2C:80:36:95:9D:BD:EA:08:B5:70:31
X509v3 Authority Key Identifier:
keyid:69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/34386BAAB90A11EF97D24653C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.210.115.0/24
Signature Algorithm: sha256WithRSAEncryption
31:f0:5d:e9:a0:98:d0:3c:af:13:eb:30:21:0b:9b:bb:72:6e:
f0:24:5c:93:dd:0d:00:ff:99:52:81:1c:c5:b9:01:03:59:39:
30:62:ea:6e:85:8d:f0:1a:4a:33:fa:10:87:4f:da:66:fb:cb:
6d:87:d1:73:f2:da:56:97:91:7d:ac:66:79:0e:3d:ab:ba:de:
aa:fa:54:cf:3c:52:71:a4:ac:bf:77:d1:cc:b9:73:22:c8:90:
b8:6b:86:b5:84:c7:f3:55:0b:80:5e:3d:8f:b9:ec:a5:c8:d9:
4d:8b:ae:6d:93:fe:ad:ee:3b:f2:b5:64:46:6f:6f:b0:0e:de:
c9:0d:36:02:16:50:07:5d:63:71:b0:98:c4:44:1d:c2:99:27:
19:85:a6:a0:2d:7a:24:eb:38:8b:13:fa:b7:8e:be:d0:18:5b:
5a:d3:b6:13:9e:f3:5f:a9:c0:1a:f1:a1:af:66:4b:e9:b2:82:
2d:ea:c1:3a:74:0a:6f:74:13:c9:f8:b0:da:da:09:dc:6e:76:
11:86:ba:14:0c:5f:5d:35:f4:65:c7:c9:c8:d6:1f:1f:f5:06:
6b:95:cc:45:62:c8:0e:ba:9f:21:c7:4a:37:ab:7d:17:2b:e7:
e4:2d:d7:b3:62:b8:13:c3:14:0d:98:f9:6f:6f:b8:4d:30:c3:
66:71:18:68
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDhENjExMTAvBgNVBAUTKDY5RkY2OEQzOUFDMTc3M0UyOEE4NTc4NUM3OTFCNEE4
RDlCMzg0ODYwHhcNMjQxMjEzMDQyNDU1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzViYjcxNy0zOTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA5m0xy5ZP3c+R9ISKbf1UPkAM1yQiriNRur4Q8aNvVn30iriWB0J+XtxQw1v4
FgydoHa6HVkx0HGdSNk9ck9iIAp2QhrAyGERqVFAOxbO7FsqiU6hPMPcwwu7b3GT
8qb05AKrbcFIzLlfl929MfIf34kGlpUTf1YYZUZAZoVfEAkHWwfIa6HNToiBOMyA
GYpyZIkxHCWxaf3W4/3s+y+jKMM6t85Kdq1IHv7KuL+MS/lzzcXQpz7q1REaB/PU
lmsXV0ZRs4n3HuL8+5A88nGSx+0Zo8bLSUCcaIdz9pJINBOplC1IquCRIQhsojl1
4moBONEj5J+pAzIMaOr/hbd+jwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOFd/WZZ
W0F0LSyANpWdveoItXAxMB8GA1UdIwQYMBaAFGn/aNOawXc+KKhXhceRtKjZs4SG
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ2MS8yOTVFNEM3NjYw
MUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6NG9xRmVGeDVHMHFObXpo
SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2FmOW8wNXJCZHo0b3FGZUZ4NUcwcU5temhJWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDhENjEvMjk1RTRDNzY2MDFCMTFFREE1QzcyNzZFQzRGOUFFMDIvMzQzODZCQUFC
OTBBMTFFRjk3RDI0NjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABn0nMwDQYJKoZIhvcNAQELBQADggEBADHwXemgmNA8rxPr
MCELm7tybvAkXJPdDQD/mVKBHMW5AQNZOTBi6m6FjfAaSjP6EIdP2mb7y22H0XPy
2laXkX2sZnkOPau63qr6VM88UnGkrL930cy5cyLIkLhrhrWEx/NVC4BePY+57KXI
2U2Lrm2T/q3uO/K1ZEZvb7AO3skNNgIWUAddY3GwmMREHcKZJxmFpqAteiTrOIsT
+reOvtAYW1rTthOe81+pwBrxoa9mS+mygi3qwTp0Cm90E8n4sNraCdxudhGGuhQM
X1019GXHycjWHx/1BmuVzEViyA66nyHHSjerfRcr5+Qt17NiuBPDFA2Y+W9vuE0w
w2ZxGGg=
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:16:51 2025 by rpki-client