
Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/9398F508619611EBA485B448C4F9AE02.roa
File: 9398F508619611EBA485B448C4F9AE02.roa (raw, json)
Hash identifier: Nd8Cn8Kc0/NAG96VlpahXIFBzBlttK0FrKVnW80S2cI=
Subject key identifier: D9:5B:79:E7:EC:72:75:9D:B7:54:A0:3D:C7:29:4D:6C:EB:25:BA:6F
Certificate issuer: /CN=A9190960/serialNumber=2A900734C5E3B93ACA9470E3F5ADDADC2F215B31
Certificate serial: 0646
Authority key identifier: 2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/9398F508619611EBA485B448C4F9AE02.roa
Signing time: Mon 14 Oct 2024 22:22:12 +0000
ROA not before: Mon 14 Oct 2024 22:22:12 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 141187
IP address blocks: 103.155.244.0/24 maxlen: 24
103.155.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1606 (0x646)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9190960
Validity
Not Before: Oct 14 22:22:12 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=670d9993-cd6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:18:6c:97:d6:82:78:2a:60:27:79:9e:04:82:
b0:1f:62:d6:b5:a0:25:85:e1:72:41:d8:9b:6e:bf:
1c:da:d8:79:6f:d6:13:5b:c2:03:de:83:0b:e9:54:
5f:c4:be:82:2e:2b:2a:a8:40:24:16:e2:be:b2:32:
56:d3:a1:3a:95:c3:43:65:da:bc:59:1f:64:b7:6b:
8e:7e:46:4f:f2:8d:ba:77:74:23:88:e3:de:bb:6b:
b0:4b:bc:d1:b3:a4:bf:03:95:33:c4:18:e7:5f:fd:
e2:8d:ba:61:77:f9:20:f7:e5:47:3b:dc:47:e9:c4:
89:f6:a5:95:78:8a:70:fd:86:09:6f:5e:6f:49:6c:
93:f4:1d:9b:7e:87:46:a4:d7:80:b1:b1:4f:b4:ae:
25:fa:20:34:2f:96:68:71:66:d4:c3:ff:74:80:56:
d4:58:d6:5f:12:90:7f:a9:08:8b:53:5c:1c:a9:b4:
07:e2:45:a0:7e:db:26:28:78:f7:0d:94:09:76:81:
7e:7c:c7:36:62:80:62:cc:66:ec:5e:7e:6d:c4:d2:
0c:92:06:2e:e8:09:bf:40:c3:9b:77:4f:25:6d:ed:
7f:88:f6:81:85:2a:b8:f4:3d:99:97:91:03:d7:21:
35:b5:f0:50:57:5e:a9:ac:25:5e:25:f7:0e:3f:7e:
b9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:5B:79:E7:EC:72:75:9D:B7:54:A0:3D:C7:29:4D:6C:EB:25:BA:6F
X509v3 Authority Key Identifier:
keyid:2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/9398F508619611EBA485B448C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.155.244.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:4c:49:81:af:65:cd:6b:0a:36:40:b2:2a:ae:79:94:4c:83:
fb:e9:d5:aa:db:f9:75:5c:a2:85:d0:04:be:32:c7:5f:3c:05:
c8:07:10:63:9c:b8:47:04:61:27:46:35:56:ef:51:7a:7b:46:
cf:5a:c1:b4:e4:e3:39:70:2e:3d:fe:8e:5b:90:86:5e:04:b4:
56:61:1c:8e:0b:ea:c3:e1:6f:cf:3d:26:f9:f4:93:9d:9f:d0:
ac:62:70:27:79:4e:ac:b8:64:ba:47:80:99:19:15:5d:08:36:
1b:c6:c9:44:1b:89:87:53:2e:72:9b:10:a8:42:92:89:94:6c:
a7:0f:9d:21:9c:24:b8:39:4c:b4:2f:bd:c1:87:f7:00:86:d2:
88:7f:fd:65:fd:95:e6:62:bd:b4:18:fb:e3:fa:4d:78:f3:33:
ca:9c:78:e4:72:58:82:8e:50:41:4d:54:da:11:10:21:41:23:
2c:51:47:96:e7:16:b8:51:7f:7a:46:1c:07:e5:41:bb:f7:b0:
f8:e5:20:c5:9c:ab:93:74:5f:49:4d:e2:ca:ac:c2:05:80:12:
f1:a6:8b:c5:9e:b9:f1:15:a4:2d:8d:b0:28:a6:ea:82:5f:b5:
99:ad:e0:8f:e6:3e:55:98:56:9b:e0:6e:c1:bf:03:09:4e:d1:
5b:20:88:c5
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICBkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTA5NjAxMTAvBgNVBAUTKDJBOTAwNzM0QzVFM0I5M0FDQTk0NzBFM0Y1QUREQURD
MkYyMTVCMzEwHhcNMjQxMDE0MjIyMjEyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzBkOTk5My1jZDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA5xhsl9aCeCpgJ3meBIKwH2LWtaAlheFyQdibbr8c2th5b9YTW8ID3oML6VRf
xL6CLisqqEAkFuK+sjJW06E6lcNDZdq8WR9kt2uOfkZP8o26d3QjiOPeu2uwS7zR
s6S/A5UzxBjnX/3ijbphd/kg9+VHO9xH6cSJ9qWVeIpw/YYJb15vSWyT9B2bfodG
pNeAsbFPtK4l+iA0L5ZocWbUw/90gFbUWNZfEpB/qQiLU1wcqbQH4kWgftsmKHj3
DZQJdoF+fMc2YoBizGbsXn5txNIMkgYu6Am/QMObd08lbe1/iPaBhSq49D2Zl5ED
1yE1tfBQV16prCVeJfcOP365fQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNlbeefs
cnWdt1SgPccpTWzrJbpvMB8GA1UdIwQYMBaAFCqQBzTF47k6ypRw4/Wt2twvIVsx
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDk2MC85QzZGN0JFQTYx
OTQxMUVCQkZEMkFBMkFDNEY5QUUwMi9LcEFITk1YanVUcktsSERqOWEzYTNDOGhX
ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0twQUhOTVhqdVRyS2xIRGo5YTNhM0M4aFd6RS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTA5NjAvOUM2RjdCRUE2MTk0MTFFQkJGRDJBQTJBQzRGOUFFMDIvOTM5OEY1MDg2
MTk2MTFFQkE0ODVCNDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnm/QwDQYJKoZIhvcNAQELBQADggEBAG9MSYGvZc1rCjZA
siqueZRMg/vp1arb+XVcooXQBL4yx188BcgHEGOcuEcEYSdGNVbvUXp7Rs9awbTk
4zlwLj3+jluQhl4EtFZhHI4L6sPhb889Jvn0k52f0KxicCd5Tqy4ZLpHgJkZFV0I
NhvGyUQbiYdTLnKbEKhCkomUbKcPnSGcJLg5TLQvvcGH9wCG0oh//WX9leZivbQY
++P6TXjzM8qceORyWIKOUEFNVNoRECFBIyxRR5bnFrhRf3pGHAflQbv3sPjlIMWc
q5N0X0lN4sqswgWAEvGmi8WeufEVpC2NsCim6oJftZmt4I/mPlWYVpvgbsG/AwlO
0VsgiMU=
-----END CERTIFICATE-----
Generated at Sun Apr 6 03:01:13 2025 by rpki-client