Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/EE0C8EC2CD4311EC8DA37755C4F9AE02.roa
File: EE0C8EC2CD4311EC8DA37755C4F9AE02.roa (raw, json)
Hash identifier: wp8vuIMIgu9u8/7IDWCkvLi4+gnieeCEzclE+crwT1E=
Subject key identifier: 2E:CB:65:08:D2:22:EE:A2:7E:23:53:A9:FB:DC:B2:C7:4E:37:E1:7F
Certificate issuer: /CN=A917368A/serialNumber=70A1F4F55D61D321210815D11D9D5A228185E3D8
Certificate serial: 020E
Authority key identifier: 70:A1:F4:F5:5D:61:D3:21:21:08:15:D1:1D:9D:5A:22:81:85:E3:D8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cKH09V1h0yEhCBXRHZ1aIoGF49g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/EE0C8EC2CD4311EC8DA37755C4F9AE02.roa
Signing time: Wed 13 Dec 2023 03:34:48 +0000
ROA not before: Wed 13 Dec 2023 03:34:48 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 149171
IP address blocks: 103.177.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 526 (0x20e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917368A, serialNumber=70A1F4F55D61D321210815D11D9D5A228185E3D8
Validity
Not Before: Dec 13 03:34:48 2023 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=65792658-610e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3b:33:b0:a1:0c:9b:00:07:2d:43:b1:d2:1f:
75:75:83:da:13:2f:53:ee:f6:9e:d9:65:80:8a:04:
78:89:dc:88:85:30:02:f3:50:d5:c3:c1:f7:f2:11:
30:51:a7:30:c2:60:5c:64:de:bf:c6:c3:f1:20:d8:
b6:42:6d:31:35:f4:5e:39:e0:98:6b:de:e1:03:48:
c1:50:ea:b4:1d:cd:2d:d8:43:74:20:ad:19:f2:43:
be:56:f4:ca:ee:58:59:5f:a0:76:02:ae:5d:5c:c1:
6e:f3:ae:34:bd:c0:91:11:05:83:71:db:d7:78:14:
3f:e8:7f:cd:76:d3:bb:21:2d:b7:f2:a5:3b:a7:1e:
bd:bd:c2:0a:59:a7:b8:3a:6d:d8:10:bc:19:a3:44:
27:d5:1f:a5:6d:cd:6e:03:d6:c4:b1:38:01:e2:4b:
0b:95:5b:36:e8:fe:2c:5c:e2:89:84:39:78:c4:01:
12:3e:a4:5c:6d:c3:0f:11:c6:30:43:d8:a1:17:48:
5c:b8:01:ff:30:78:db:39:1c:5e:45:a3:a8:fb:8b:
81:ad:9e:de:f0:47:e9:54:34:94:81:3b:f6:e8:cb:
b0:96:ba:ae:2f:f1:d9:e8:0d:46:a0:19:ec:2e:c6:
35:22:d0:5e:bf:f1:fd:7b:69:5e:c9:4f:1f:34:db:
85:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:CB:65:08:D2:22:EE:A2:7E:23:53:A9:FB:DC:B2:C7:4E:37:E1:7F
X509v3 Authority Key Identifier:
keyid:70:A1:F4:F5:5D:61:D3:21:21:08:15:D1:1D:9D:5A:22:81:85:E3:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/cKH09V1h0yEhCBXRHZ1aIoGF49g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cKH09V1h0yEhCBXRHZ1aIoGF49g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/EE0C8EC2CD4311EC8DA37755C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.177.198.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:2c:a8:27:b5:49:a6:cc:8a:78:f1:7a:d1:16:e7:a8:c3:56:
13:8c:fa:92:db:a5:6f:0f:8e:fe:3d:19:22:4c:a0:d6:10:90:
6f:13:4d:23:b2:e1:32:33:25:59:0a:b9:d4:fa:0c:ee:c7:9d:
fe:50:49:23:c9:69:98:b6:cc:f9:ad:d7:f4:ea:0b:d6:f8:dd:
56:d5:f5:31:8d:17:31:08:49:45:30:92:8c:07:75:5c:a0:bb:
fa:01:fd:e3:47:86:b2:fa:ba:48:f2:dd:c7:a2:bc:2c:81:ef:
8d:1f:1c:9d:3c:92:57:58:b1:4a:d3:49:78:63:85:26:00:81:
b4:04:e2:cc:ba:66:c2:52:89:a3:dc:93:7a:c0:f2:15:95:bd:
a4:1d:45:ac:dc:9c:c0:8e:69:e1:a1:02:5e:58:7b:06:ac:5f:
a6:27:b2:4c:df:dd:0f:c8:1a:62:26:a8:5e:d1:f0:af:4a:07:
84:27:5b:53:0c:34:8d:2d:8c:c3:b7:0d:5b:29:a0:44:5e:fb:
74:66:52:61:d7:a3:e6:b6:83:6b:25:4b:61:9d:40:d2:b5:d6:
5e:90:7c:f9:0a:17:21:55:94:af:71:a8:1d:77:4a:0d:c4:53:
54:c2:f6:2c:df:07:14:5e:0a:49:89:93:01:17:80:a4:30:8b:
52:63:d4:61
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzM2OEExMTAvBgNVBAUTKDcwQTFGNEY1NUQ2MUQzMjEyMTA4MTVEMTFEOUQ1QTIy
ODE4NUUzRDgwHhcNMjMxMjEzMDMzNDQ4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTc5MjY1OC02MTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsjszsKEMmwAHLUOx0h91dYPaEy9T7vae2WWAigR4idyIhTAC81DVw8H38hEw
UacwwmBcZN6/xsPxINi2Qm0xNfReOeCYa97hA0jBUOq0Hc0t2EN0IK0Z8kO+VvTK
7lhZX6B2Aq5dXMFu8640vcCREQWDcdvXeBQ/6H/NdtO7IS238qU7px69vcIKWae4
Om3YELwZo0Qn1R+lbc1uA9bEsTgB4ksLlVs26P4sXOKJhDl4xAESPqRcbcMPEcYw
Q9ihF0hcuAH/MHjbORxeRaOo+4uBrZ7e8EfpVDSUgTv26MuwlrquL/HZ6A1GoBns
LsY1ItBev/H9e2leyU8fNNuFowIDAQABo4IClTCCApEwHQYDVR0OBBYEFC7LZQjS
Iu6ifiNTqfvcssdON+F/MB8GA1UdIwQYMBaAFHCh9PVdYdMhIQgV0R2dWiKBhePY
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzY4QS9BNTk5NkVBNkNE
M0IxMUVDOUQyNjIxNDVDNEY5QUUwMi9jS0gwOVYxaDB5RWhDQlhSSFoxYUlvR0Y0
OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2NLSDA5VjFoMHlFaENCWFJIWjFhSW9HRjQ5Zy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NzM2OEEvQTU5OTZFQTZDRDNCMTFFQzlEMjYyMTQ1QzRGOUFFMDIvRUUwQzhFQzJD
RDQzMTFFQzhEQTM3NzU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnscYwDQYJKoZIhvcNAQELBQADggEBAF0sqCe1SabMinjx
etEW56jDVhOM+pLbpW8Pjv49GSJMoNYQkG8TTSOy4TIzJVkKudT6DO7Hnf5QSSPJ
aZi2zPmt1/TqC9b43VbV9TGNFzEISUUwkowHdVygu/oB/eNHhrL6ukjy3ceivCyB
740fHJ08kldYsUrTSXhjhSYAgbQE4sy6ZsJSiaPck3rA8hWVvaQdRazcnMCOaeGh
Al5YewasX6Ynskzf3Q/IGmImqF7R8K9KB4QnW1MMNI0tjMO3DVspoERe+3RmUmHX
o+a2g2slS2GdQNK11l6QfPkKFyFVlK9xqB13Sg3EU1TC9izfBxReCkmJkwEXgKQw
i1Jj1GE=
-----END CERTIFICATE-----
Generated at Sun Apr 13 04:35:56 2025 by rpki-client