Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/74EAEAC41ED211EFA618AB5EC4F9AE02.roa
File: 74EAEAC41ED211EFA618AB5EC4F9AE02.roa (raw, json)
Hash identifier: TR/9w+oCqGCqjfN5wK6VX8rAdbT3DnBKMOm4/b1iJZA=
Subject key identifier: 8B:DE:C9:68:F1:28:94:A0:09:CA:C1:C2:C4:47:C0:6E:98:C6:EB:B2
Certificate issuer: /CN=A916879A/serialNumber=399A5E17D9CA43B6C33AC330206DCBDD935E7871
Certificate serial: 2B
Authority key identifier: 39:9A:5E:17:D9:CA:43:B6:C3:3A:C3:30:20:6D:CB:DD:93:5E:78:71
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/74EAEAC41ED211EFA618AB5EC4F9AE02.roa
Signing time: Sat 03 Aug 2024 07:57:53 +0000
ROA not before: Sat 03 Aug 2024 07:57:53 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 148968
IP address blocks: 103.118.161.0/24 maxlen: 24
2001:df5:d500::/48 maxlen: 48
2001:df5:d501::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43 (0x2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916879A
Validity
Not Before: Aug 3 07:57:53 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66ade300-c8f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:56:a3:a4:a2:f1:1d:42:0a:49:0e:ec:99:e0:
e2:1d:22:2e:ad:19:5d:bf:ae:be:0f:be:3b:07:0f:
c6:fc:bd:78:db:95:d0:ca:99:25:cf:52:c3:e2:b6:
5f:17:d3:06:6a:66:b1:bb:fd:73:bd:9a:84:89:17:
5e:25:d9:08:97:c0:ad:d3:13:20:67:12:88:44:22:
93:17:fd:ec:ee:c4:25:f4:51:17:51:e9:3d:90:7b:
3e:19:42:7a:b6:d6:fd:31:fb:93:b4:04:2f:48:32:
20:9e:e3:d0:ba:36:0c:43:0b:e7:6d:d2:01:ce:aa:
f6:0f:22:1d:d7:12:51:13:f2:4a:43:61:6b:bb:69:
79:70:87:d1:94:2e:44:69:e8:5f:eb:04:cf:3b:8d:
18:33:7a:85:32:25:6a:c4:d3:9a:55:72:bf:8c:1a:
4d:83:e7:15:ca:42:1d:0b:ba:6c:b7:6e:2c:0a:2b:
be:5b:a7:d8:ab:fb:99:92:93:9b:38:8e:fa:d6:94:
17:af:a7:7a:33:39:8b:cc:b0:f3:d6:90:77:cf:c1:
bb:18:10:34:28:a4:05:f8:57:f5:c0:f5:b2:24:f8:
4d:2d:26:8a:3d:a3:9d:21:56:1d:20:06:29:3a:ac:
9e:3e:ba:07:b5:59:9c:93:74:b2:87:b7:04:59:f6:
7d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DE:C9:68:F1:28:94:A0:09:CA:C1:C2:C4:47:C0:6E:98:C6:EB:B2
X509v3 Authority Key Identifier:
keyid:39:9A:5E:17:D9:CA:43:B6:C3:3A:C3:30:20:6D:CB:DD:93:5E:78:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/74EAEAC41ED211EFA618AB5EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.118.161.0/24
IPv6:
2001:df5:d500::/47
Signature Algorithm: sha256WithRSAEncryption
ab:42:b5:3c:11:de:ab:68:de:42:78:94:18:0e:0e:cb:a0:23:
e7:da:97:d0:13:50:52:72:6c:05:ac:03:0b:a6:5c:7d:8f:ec:
e5:b3:49:c5:c8:de:27:2d:86:21:43:13:92:78:8d:55:d8:b5:
a4:8c:b0:42:8f:14:d8:64:b1:16:6a:e9:9a:b7:1f:7c:48:89:
4e:f2:ce:06:86:90:aa:de:15:56:32:bb:e7:d4:6d:9a:ef:14:
da:b5:7b:63:db:05:30:fb:5a:2c:ad:84:41:18:ba:43:3c:3b:
7e:a7:18:e7:be:ec:ed:c4:00:24:ec:f8:6b:eb:ae:e3:a7:e6:
2d:46:02:2b:51:de:2c:3a:0d:97:b1:fe:83:40:ae:7d:8d:ee:
0f:35:e6:0d:aa:e0:ac:0d:6f:df:d3:55:8a:df:f6:fd:37:8a:
e4:c0:8e:ad:85:24:01:91:de:22:d8:32:5f:10:ba:9e:17:89:
2b:94:ba:54:f8:1b:1a:a2:a1:f8:27:0c:70:a8:1f:24:0f:45:
b8:fa:5b:a4:64:eb:b0:c6:9a:74:ba:97:39:4b:7e:7f:fb:84:
26:71:8d:aa:9e:d8:49:15:2b:80:95:2d:e4:3d:fa:a9:24:14:
e1:c1:84:d1:d1:c2:15:84:68:a4:24:5c:e1:6d:79:22:53:16:
52:9e:15:9c
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2
ODc5QTExMC8GA1UEBRMoMzk5QTVFMTdEOUNBNDNCNkMzM0FDMzMwMjA2RENCREQ5
MzVFNzg3MTAeFw0yNDA4MDMwNzU3NTNaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV
BAMTDTY2YWRlMzAwLWM4ZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDLVqOkovEdQgpJDuyZ4OIdIi6tGV2/rr4PvjsHD8b8vXjbldDKmSXPUsPitl8X
0wZqZrG7/XO9moSJF14l2QiXwK3TEyBnEohEIpMX/ezuxCX0URdR6T2Qez4ZQnq2
1v0x+5O0BC9IMiCe49C6NgxDC+dt0gHOqvYPIh3XElET8kpDYWu7aXlwh9GULkRp
6F/rBM87jRgzeoUyJWrE05pVcr+MGk2D5xXKQh0Lumy3biwKK75bp9ir+5mSk5s4
jvrWlBevp3ozOYvMsPPWkHfPwbsYEDQopAX4V/XA9bIk+E0tJoo9o50hVh0gBik6
rJ4+uge1WZyTdLKHtwRZ9n2rAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUi97JaPEo
lKAJysHCxEfAbpjG67IwHwYDVR0jBBgwFoAUOZpeF9nKQ7bDOsMwIG3L3ZNeeHEw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4NzlBL0I2NzAxNzNDMUM5
QjExRUY4RjQ1Q0M3REM0RjlBRTAyL09acGVGOW5LUTdiRE9zTXdJRzNMM1pOZWVI
RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvT1pwZUY5bktRN2JET3NNd0lHM0wzWk5lZUhFLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
ODc5QS9CNjcwMTczQzFDOUIxMUVGOEY0NUNDN0RDNEY5QUUwMi83NEVBRUFDNDFF
RDIxMUVGQTYxOEFCNUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh
MB8wDAQCAAEwBgMEAGd2oTAPBAIAAjAJAwcBIAEN9dUAMA0GCSqGSIb3DQEBCwUA
A4IBAQCrQrU8Ed6raN5CeJQYDg7LoCPn2pfQE1BScmwFrAMLplx9j+zls0nFyN4n
LYYhQxOSeI1V2LWkjLBCjxTYZLEWaumatx98SIlO8s4GhpCq3hVWMrvn1G2a7xTa
tXtj2wUw+1osrYRBGLpDPDt+pxjnvuztxAAk7Phr667jp+YtRgIrUd4sOg2Xsf6D
QK59je4PNeYNquCsDW/f01WK3/b9N4rkwI6thSQBkd4i2DJfELqeF4krlLpU+Bsa
oqH4JwxwqB8kD0W4+lukZOuwxpp0upc5S35/+4QmcY2qnthJFSuAlS3kPfqpJBTh
wYTR0cIVhGikJFzhbXkiUxZSnhWc
-----END CERTIFICATE-----
Generated at Sun Apr 6 16:34:07 2025 by rpki-client