Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/D49D6040912311EB9DCD2A33C4F9AE02.roa
File: D49D6040912311EB9DCD2A33C4F9AE02.roa (raw, json)
Hash identifier: aGdwS0nqIDPQmrDed9aL2d/6MVOmtEOC5VWnxIsYspE=
Subject key identifier: 95:A7:57:58:89:CD:9B:C5:D1:16:DA:78:77:8B:68:9D:83:E4:26:85
Certificate issuer: /CN=A9196C96/serialNumber=04627DCC9B80842D436371C4CDC73D19AB7E5DBB
Certificate serial: 05E9
Authority key identifier: 04:62:7D:CC:9B:80:84:2D:43:63:71:C4:CD:C7:3D:19:AB:7E:5D:BB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/D49D6040912311EB9DCD2A33C4F9AE02.roa
Signing time: Fri 06 Dec 2024 22:41:57 +0000
ROA not before: Fri 06 Dec 2024 22:41:57 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 136005
IP address blocks: 103.79.119.0/24 maxlen: 24
2001:df6:a600::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1513 (0x5e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9196C96
Validity
Not Before: Dec 6 22:41:57 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67537db5-d634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:47:db:e6:bc:28:46:b5:97:42:de:bd:70:47:
8a:75:c4:5a:0a:ab:db:45:08:73:6e:35:6d:ac:0d:
57:bc:bc:4f:07:b7:cb:a7:ab:fb:78:3e:bf:56:90:
c4:54:63:25:d7:1e:31:32:23:54:db:25:9c:d0:c0:
b1:43:e0:49:55:2d:2b:37:37:ff:ad:67:9a:d7:43:
3b:a3:d4:21:66:d7:47:95:8e:48:71:22:1a:15:21:
0c:36:7f:5b:fd:a9:b6:b0:44:57:89:e6:68:a8:c5:
86:29:ad:23:58:a0:4f:9a:6c:fe:0e:0a:b5:db:b5:
ad:9a:11:c3:bd:44:3a:36:0f:a7:aa:17:c5:a8:9d:
f1:88:2c:81:0e:28:d0:54:9e:28:0a:ed:ab:52:55:
1b:ca:e3:29:c2:64:e3:e5:bf:b7:78:71:ff:12:d1:
e9:2d:c0:ce:95:60:40:bf:f2:ef:46:83:4a:e3:4c:
cd:ff:e5:15:87:2a:5c:69:18:b3:01:fa:83:4f:fc:
6c:92:c1:ef:98:06:06:a0:2e:d6:63:be:a2:b6:41:
02:33:ea:b9:f6:01:fd:02:0f:fe:57:0b:60:06:fc:
ac:2a:f0:df:01:ae:27:4f:4e:e5:e0:76:77:d1:c0:
24:6a:68:14:19:26:71:66:72:95:d4:e7:2b:c8:d6:
43:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A7:57:58:89:CD:9B:C5:D1:16:DA:78:77:8B:68:9D:83:E4:26:85
X509v3 Authority Key Identifier:
keyid:04:62:7D:CC:9B:80:84:2D:43:63:71:C4:CD:C7:3D:19:AB:7E:5D:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/D49D6040912311EB9DCD2A33C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.79.119.0/24
IPv6:
2001:df6:a600::/48
Signature Algorithm: sha256WithRSAEncryption
3e:97:1e:27:55:76:86:d0:c2:36:20:d6:50:9b:09:77:e1:ef:
fd:5b:1c:78:e2:13:ba:9f:70:63:78:96:67:4a:0e:cc:66:22:
99:0c:6e:eb:30:53:9a:8c:c4:05:dc:6b:ef:9a:29:ef:ee:41:
c5:9c:d1:31:f7:38:53:ca:f6:e4:f0:cc:be:dd:89:2a:12:5b:
67:d3:5f:9f:33:e6:ec:ef:4e:3a:9f:53:82:a2:f1:99:59:84:
12:0d:d6:a7:0b:d7:04:20:bc:09:25:81:00:22:c3:60:13:5f:
51:d4:14:08:36:d5:d4:52:eb:c1:c4:37:fe:4e:40:8e:12:28:
f0:fc:c3:be:bb:59:e5:ec:65:0a:47:ea:14:22:d8:44:b6:f4:
d4:cb:d0:6b:12:42:8f:75:c0:5a:53:d9:60:9a:58:7e:43:da:
96:98:c9:ae:ae:b9:a9:e6:e8:ea:4e:52:3e:c1:71:70:4d:53:
53:79:a8:93:e8:8d:20:84:c1:6b:81:90:de:7e:f7:dd:11:fd:
52:2c:23:9f:10:3d:e1:ed:f3:92:04:9e:e9:d3:54:1d:6b:ad:
70:68:d3:5d:12:38:4f:61:e7:1c:ff:ff:26:1c:f0:57:ac:9d:
4f:68:17:f9:eb:ab:4b:4d:30:5b:1c:0e:a1:94:dc:06:38:39:
b2:64:0e:9b
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICBekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTZDOTYxMTAvBgNVBAUTKDA0NjI3RENDOUI4MDg0MkQ0MzYzNzFDNENEQzczRDE5
QUI3RTVEQkIwHhcNMjQxMjA2MjI0MTU3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzUzN2RiNS1kNjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxUfb5rwoRrWXQt69cEeKdcRaCqvbRQhzbjVtrA1XvLxPB7fLp6v7eD6/VpDE
VGMl1x4xMiNU2yWc0MCxQ+BJVS0rNzf/rWea10M7o9QhZtdHlY5IcSIaFSEMNn9b
/am2sERXieZoqMWGKa0jWKBPmmz+Dgq127WtmhHDvUQ6Ng+nqhfFqJ3xiCyBDijQ
VJ4oCu2rUlUbyuMpwmTj5b+3eHH/EtHpLcDOlWBAv/LvRoNK40zN/+UVhypcaRiz
AfqDT/xsksHvmAYGoC7WY76itkECM+q59gH9Ag/+VwtgBvysKvDfAa4nT07l4HZ3
0cAkamgUGSZxZnKV1OcryNZDUwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJWnV1iJ
zZvF0RbaeHeLaJ2D5CaFMB8GA1UdIwQYMBaAFARifcybgIQtQ2NxxM3HPRmrfl27
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkM5Ni9BOEFFMEY5NDkw
NDYxMUVCQkI4NEIyMjdDNEY5QUUwMi9CR0o5ekp1QWhDMURZM0hFemNjOUdhdC1Y
YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0JHSjl6SnVBaEMxRFkzSEV6Y2M5R2F0LVhicy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTZDOTYvQThBRTBGOTQ5MDQ2MTFFQkJCODRCMjI3QzRGOUFFMDIvRDQ5RDYwNDA5
MTIzMTFFQjlEQ0QyQTMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBABnT3cwDwQCAAIwCQMHACABDfamADANBgkqhkiG9w0BAQsF
AAOCAQEAPpceJ1V2htDCNiDWUJsJd+Hv/VsceOITup9wY3iWZ0oOzGYimQxu6zBT
mozEBdxr75op7+5BxZzRMfc4U8r25PDMvt2JKhJbZ9NfnzPm7O9OOp9TgqLxmVmE
Eg3WpwvXBCC8CSWBACLDYBNfUdQUCDbV1FLrwcQ3/k5AjhIo8PzDvrtZ5exlCkfq
FCLYRLb01MvQaxJCj3XAWlPZYJpYfkPalpjJrq65qebo6k5SPsFxcE1TU3mok+iN
IITBa4GQ3n733RH9UiwjnxA94e3zkgSe6dNUHWutcGjTXRI4T2HnHP//JhzwV6yd
T2gX+eurS00wWxwOoZTcBjg5smQOmw==
-----END CERTIFICATE-----
Generated at Fri Apr 11 20:09:02 2025 by rpki-client