Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9164F37/706D447E336F11E3AF64E98F5911EA32/5BCC8446B13D11E59299870AC4F9AE02.roa
File: 5BCC8446B13D11E59299870AC4F9AE02.roa (raw, json)
Hash identifier: kaYs1wetE9SXhuGdy5elgLw5V5I1ttatqtrKdQbO6lA=
Subject key identifier: 23:05:5A:30:48:9D:B7:4A:45:6F:94:00:AA:F2:FC:76:61:83:46:85
Certificate issuer: /CN=A9164F37/serialNumber=0BD0AF88270198E406D2EAE9DCAEC9FB0EBB80C5
Certificate serial: 2EC2
Authority key identifier: 0B:D0:AF:88:27:01:98:E4:06:D2:EA:E9:DC:AE:C9:FB:0E:BB:80:C5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9CviCcBmOQG0urp3K7J-w67gMU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9164F37/706D447E336F11E3AF64E98F5911EA32/5BCC8446B13D11E59299870AC4F9AE02.roa
Signing time: Sat 30 Nov 2024 15:32:09 +0000
ROA not before: Sat 30 Nov 2024 15:32:09 +0000
ROA not after: Sun 30 Mar 2025 00:00:00 +0000
asID: 131454
IP address blocks: 103.242.40.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11970 (0x2ec2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9164F37
Validity
Not Before: Nov 30 15:32:09 2024 GMT
Not After : Mar 30 00:00:00 2025 GMT
Subject: CN=674b2ff9-797e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:53:3a:03:f5:6c:5a:d6:bc:22:f0:a6:06:08:
3d:56:f2:81:9f:30:14:6e:52:00:f6:c8:a9:6c:41:
06:5b:c8:8a:b6:2a:b9:2a:a0:ca:ad:7a:20:67:c4:
23:bd:2f:c7:c3:a2:48:a9:d9:55:0b:96:b6:50:a7:
a4:d3:4e:d0:05:d2:05:a6:65:13:eb:60:8c:f2:b1:
42:ca:ec:8b:cb:fd:c1:46:8c:8a:a6:35:ab:cb:47:
2b:30:f3:38:fe:18:80:12:05:35:c7:3e:fc:20:b3:
40:5a:43:4b:4b:d2:2f:b0:42:6f:ac:e6:22:25:85:
9b:7a:e3:cb:49:00:21:c2:f8:99:6b:7d:c2:c1:31:
f9:2b:94:d7:cc:22:9a:36:44:c4:e9:e5:88:4c:76:
06:fd:74:70:9b:04:92:5c:2c:17:f2:ed:f0:17:2d:
eb:bd:a9:cf:ee:de:b6:6d:9a:99:f0:90:c1:98:ec:
de:f3:83:e8:da:5e:e8:1a:d5:47:53:e0:7d:6c:77:
cf:0a:e7:7b:19:53:ee:65:08:d7:85:56:42:dd:93:
c8:76:df:4c:f4:88:10:2d:98:96:29:21:68:5c:00:
f8:e8:bb:00:4c:62:75:13:6d:cb:e6:e4:c2:78:1c:
f6:da:e1:b5:7e:9a:02:45:3e:61:dc:9c:3c:fb:d2:
67:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:05:5A:30:48:9D:B7:4A:45:6F:94:00:AA:F2:FC:76:61:83:46:85
X509v3 Authority Key Identifier:
keyid:0B:D0:AF:88:27:01:98:E4:06:D2:EA:E9:DC:AE:C9:FB:0E:BB:80:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9164F37/706D447E336F11E3AF64E98F5911EA32/C9CviCcBmOQG0urp3K7J-w67gMU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9CviCcBmOQG0urp3K7J-w67gMU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164F37/706D447E336F11E3AF64E98F5911EA32/5BCC8446B13D11E59299870AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.242.40.0/22
Signature Algorithm: sha256WithRSAEncryption
47:e9:f4:cb:ae:de:03:45:7f:29:d7:cd:61:02:15:65:7c:63:
7e:93:ff:80:65:22:f8:27:31:98:0a:f0:3b:65:14:f1:bb:85:
d9:e8:7d:79:fa:d6:d7:4f:a0:d8:b1:ab:69:7a:d1:bc:90:14:
fc:47:17:67:97:6b:e6:12:a4:cd:75:4f:80:2e:9d:77:e3:13:
7a:c9:4e:fb:d4:8c:c5:d5:a8:6f:23:e2:b4:01:82:19:61:c7:
d7:21:85:76:92:02:93:ff:5b:ff:97:62:59:ed:d1:b1:72:94:
1d:85:64:e7:22:b1:7d:e6:36:c4:b4:18:74:2d:f3:3d:71:99:
29:a8:5f:25:a5:aa:d4:7c:0c:a7:24:7f:ea:d0:a7:01:54:da:
3d:a1:b1:7e:ff:b2:8f:e9:35:c2:49:25:44:10:c2:1d:7a:fc:
9f:3c:63:b5:41:ef:52:3b:f4:cd:8c:f6:e9:73:1a:12:c1:14:
73:8d:19:4b:ce:04:11:ab:51:68:81:79:14:bd:a5:a7:ab:46:
93:83:4f:6f:1e:75:63:50:3b:48:ab:a1:ee:4f:ad:21:38:7c:
cd:16:24:04:e2:c4:11:3e:10:c0:14:c7:fa:76:ed:14:f9:f9:
9d:48:ff:20:af:b4:2d:ee:98:53:15:38:76:2c:28:90:ea:86:
29:88:95:c9
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICLsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjRGMzcxMTAvBgNVBAUTKDBCRDBBRjg4MjcwMTk4RTQwNkQyRUFFOURDQUVDOUZC
MEVCQjgwQzUwHhcNMjQxMTMwMTUzMjA5WhcNMjUwMzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzRiMmZmOS03OTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA11M6A/VsWta8IvCmBgg9VvKBnzAUblIA9sipbEEGW8iKtiq5KqDKrXogZ8Qj
vS/Hw6JIqdlVC5a2UKek007QBdIFpmUT62CM8rFCyuyLy/3BRoyKpjWry0crMPM4
/hiAEgU1xz78ILNAWkNLS9IvsEJvrOYiJYWbeuPLSQAhwviZa33CwTH5K5TXzCKa
NkTE6eWITHYG/XRwmwSSXCwX8u3wFy3rvanP7t62bZqZ8JDBmOze84Po2l7oGtVH
U+B9bHfPCud7GVPuZQjXhVZC3ZPIdt9M9IgQLZiWKSFoXAD46LsATGJ1E23L5uTC
eBz22uG1fpoCRT5h3Jw8+9JnSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCMFWjBI
nbdKRW+UAKry/HZhg0aFMB8GA1UdIwQYMBaAFAvQr4gnAZjkBtLq6dyuyfsOu4DF
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEYzNy83MDZENDQ3RTMz
NkYxMUUzQUY2NEU5OEY1OTExRUEzMi9DOUN2aUNjQm1PUUcwdXJwM0s3Si13Njdn
TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0M5Q3ZpQ2NCbU9RRzB1cnAzSzdKLXc2N2dNVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NjRGMzcvNzA2RDQ0N0UzMzZGMTFFM0FGNjRFOThGNTkxMUVBMzIvNUJDQzg0NDZC
MTNEMTFFNTkyOTk4NzBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAJn8igwDQYJKoZIhvcNAQELBQADggEBAEfp9Muu3gNFfynX
zWECFWV8Y36T/4BlIvgnMZgK8DtlFPG7hdnofXn61tdPoNixq2l60byQFPxHF2eX
a+YSpM11T4AunXfjE3rJTvvUjMXVqG8j4rQBghlhx9chhXaSApP/W/+XYlnt0bFy
lB2FZOcisX3mNsS0GHQt8z1xmSmoXyWlqtR8DKckf+rQpwFU2j2hsX7/so/pNcJJ
JUQQwh16/J88Y7VB71I79M2M9ulzGhLBFHONGUvOBBGrUWiBeRS9paerRpODT28e
dWNQO0iroe5PrSE4fM0WJATixBE+EMAUx/p27RT5+Z1I/yCvtC3umFMVOHYsKJDq
himIlck=
-----END CERTIFICATE-----
Generated at Sun Apr 6 22:20:52 2025 by rpki-client