Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3398FCC085B211ECA4397F5CC4F9AE02.roa
File: 3398FCC085B211ECA4397F5CC4F9AE02.roa (raw, json)
Hash identifier: ekI3ryevqtabhnnMuUzmS65RWNzVOxHs+1KoeNx/WPQ=
Subject key identifier: 44:B6:3E:C1:71:B8:A4:7F:58:A8:91:91:33:2F:6D:E5:5C:6D:06:7C
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 5B6C
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3398FCC085B211ECA4397F5CC4F9AE02.roa
Signing time: Tue 16 Aug 2022 07:31:39 +0000
ROA not before: Tue 16 Aug 2022 07:31:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134049
IP address blocks: 103.180.222.0/24 maxlen: 24
2001:df0:61c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23404 (0x5b6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Aug 16 07:31:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62fb47da-224e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:bf:e5:a6:bd:a4:46:52:77:f8:ea:7b:4c:a2:
99:dd:aa:f5:c6:4c:2a:94:a1:97:d5:ff:7a:b7:10:
ff:b9:9f:42:68:69:a5:15:cd:9c:a0:4a:b1:6a:1a:
8f:c5:e3:30:8d:a5:54:55:c6:ac:4b:df:5b:f0:b5:
3a:cd:14:20:10:0e:a1:57:f1:c7:11:98:a9:0e:be:
ed:61:f1:03:e7:fe:dc:59:06:3b:93:43:68:7e:cc:
47:35:cb:f8:3b:a0:dc:1b:88:c5:6a:88:61:67:f1:
8e:85:75:9c:f8:a2:07:56:da:3c:a2:fa:67:5d:bf:
5c:9d:ad:39:cc:75:83:1d:7a:c2:1b:27:69:b0:79:
44:3f:12:d1:cd:aa:84:61:35:49:c3:08:77:52:46:
6e:22:1e:20:e0:2f:67:6a:aa:97:7b:66:a3:96:dd:
1c:7a:9b:28:15:c3:3f:ac:dd:84:c6:95:02:39:c6:
e7:c9:9c:1b:a1:5a:96:a5:a6:9e:a8:13:d7:a4:9d:
47:65:b5:25:22:41:f9:9a:ce:86:73:d2:bd:6d:26:
2e:cc:28:ab:89:71:0e:d8:61:42:4f:72:09:f0:f8:
37:90:7d:58:a0:9b:68:1d:66:cc:17:da:2b:55:dc:
85:65:9c:05:4f:4f:81:d2:ca:c4:de:77:d1:dc:fa:
91:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B6:3E:C1:71:B8:A4:7F:58:A8:91:91:33:2F:6D:E5:5C:6D:06:7C
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3398FCC085B211ECA4397F5CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.180.222.0/24
IPv6:
2001:df0:61c0::/48
Signature Algorithm: sha256WithRSAEncryption
33:46:8b:80:b5:55:87:b1:d3:37:0d:3f:71:29:72:b1:42:75:
03:09:a3:66:29:9a:ac:fa:05:ac:1c:f2:9d:2d:71:76:d4:ef:
42:10:6c:ad:97:c8:af:4a:6e:ed:b3:04:92:22:a2:54:78:08:
13:8b:59:1c:6f:fb:d2:46:be:55:69:13:05:00:82:a4:79:ee:
42:d9:8a:79:38:c5:61:4c:69:d1:07:49:cf:9c:48:86:e6:a0:
c5:3d:da:5d:f2:ee:82:88:64:95:75:d8:54:85:c1:84:46:49:
89:d8:ca:a9:af:d4:ec:90:1a:cd:1c:e3:df:60:97:2d:2e:47:
3d:ad:d6:e4:2b:e5:49:e0:c6:48:3a:89:9e:45:f1:14:73:f2:
00:81:3b:58:dc:90:5e:d5:fd:2e:4f:a2:08:84:bb:b6:93:02:
ac:56:32:8c:e6:7c:94:9c:49:8e:d1:3c:e6:d8:67:f6:1b:7e:
4b:96:78:36:2b:0b:42:98:1f:30:bd:a7:ae:8d:bc:0e:df:f0:
51:f0:26:44:f1:15:4a:61:9e:1d:c9:e1:e7:c2:20:da:e5:7a:
1e:6c:e7:9b:3f:b0:93:4b:9e:47:3e:78:b6:f1:ea:f1:b5:bc:
02:78:a2:60:2a:88:00:fe:af:f3:78:2f:bb:39:0a:5a:ce:65:
bc:d9:a8:57
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICW2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz
RTNBQkM4MjMwHhcNMjIwODE2MDczMTM5WhcNMjMwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MmZiNDdkYS0yMjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4L/lpr2kRlJ3+Op7TKKZ3ar1xkwqlKGX1f96txD/uZ9CaGmlFc2coEqxahqP
xeMwjaVUVcasS99b8LU6zRQgEA6hV/HHEZipDr7tYfED5/7cWQY7k0NofsxHNcv4
O6DcG4jFaohhZ/GOhXWc+KIHVto8ovpnXb9cna05zHWDHXrCGydpsHlEPxLRzaqE
YTVJwwh3UkZuIh4g4C9naqqXe2ajlt0cepsoFcM/rN2ExpUCOcbnyZwboVqWpaae
qBPXpJ1HZbUlIkH5ms6Gc9K9bSYuzCiriXEO2GFCT3IJ8Pg3kH1YoJtoHWbMF9or
VdyFZZwFT0+B0srE3nfR3PqR0wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFES2PsFx
uKR/WKiRkTMvbeVcbQZ8MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw
RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5
Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzM5OEZDQzA4
NUIyMTFFQ0E0Mzk3RjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBABntN4wDwQCAAIwCQMHACABDfBhwDANBgkqhkiG9w0BAQsF
AAOCAQEAM0aLgLVVh7HTNw0/cSlysUJ1AwmjZimarPoFrBzynS1xdtTvQhBsrZfI
r0pu7bMEkiKiVHgIE4tZHG/70ka+VWkTBQCCpHnuQtmKeTjFYUxp0QdJz5xIhuag
xT3aXfLugohklXXYVIXBhEZJidjKqa/U7JAazRzj32CXLS5HPa3W5CvlSeDGSDqJ
nkXxFHPyAIE7WNyQXtX9Lk+iCIS7tpMCrFYyjOZ8lJxJjtE85thn9ht+S5Z4NisL
QpgfML2nro28Dt/wUfAmRPEVSmGeHcnh58Ig2uV6Hmznmz+wk0ueRz54tvHq8bW8
AniiYCqIAP6v83gvuzkKWs5lvNmoVw==
-----END CERTIFICATE-----
Generated at Fri Apr 11 10:46:56 2025 by rpki-client