Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/21884064C42111ED91F8CA85C4F9AE02.roa
File: 21884064C42111ED91F8CA85C4F9AE02.roa (raw, json)
Hash identifier: KZHsDRGqdd/f348hXBZMfYznOssGXHXUcYW8KS99TJc=
Subject key identifier: 11:F0:C7:27:05:87:54:B4:2F:13:DF:57:11:C7:49:71:74:A6:DF:C9
Certificate issuer: /CN=A91975B6/serialNumber=E95FA0EDF1112E320C225E7B8D50418667A30ACF
Certificate serial: 012B
Authority key identifier: E9:5F:A0:ED:F1:11:2E:32:0C:22:5E:7B:8D:50:41:86:67:A3:0A:CF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V-g7fERLjIMIl57jVBBhmejCs8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/21884064C42111ED91F8CA85C4F9AE02.roa
Signing time: Sat 21 Sep 2024 03:26:20 +0000
ROA not before: Sat 21 Sep 2024 03:26:20 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 138914
IP address blocks: 103.236.132.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299 (0x12b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91975B6
Validity
Not Before: Sep 21 03:26:20 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66ee3cdc-0574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:26:43:b1:fb:15:5d:22:0e:6f:70:f5:68:00:
52:74:5b:15:8f:c6:7f:09:1e:ab:53:c4:c9:99:7b:
fa:06:af:4a:15:23:f8:22:a6:4c:ad:70:af:11:71:
88:4d:12:8a:9c:6e:19:9d:ce:94:ec:69:54:ed:f4:
1a:a4:1b:d1:da:38:6b:73:b7:1a:9f:86:65:e4:3c:
33:8e:10:11:c8:bb:41:94:76:0a:5d:dd:2a:6d:cd:
33:60:ae:f9:6c:27:87:06:09:9b:2c:ae:96:94:c3:
76:43:0d:0a:29:54:9e:27:f0:c0:f2:3d:2f:be:a9:
9f:a9:12:18:8c:8a:33:2b:a2:98:24:0e:07:bf:0e:
ed:6d:df:86:72:4f:ba:37:72:57:69:b8:7e:51:42:
15:7f:bd:2f:c9:79:1a:2f:c1:6d:0e:7a:03:d1:82:
c9:e8:a0:cf:2e:d5:a9:ce:5b:1d:92:68:20:16:85:
fd:2f:75:e7:1a:18:c0:7a:b1:95:60:dd:61:ff:6c:
0f:18:92:51:65:95:3d:9c:7b:b8:ef:be:63:6a:7b:
ee:db:49:a5:bf:b7:d3:9b:0a:56:d3:c7:49:70:bf:
27:fb:bb:f3:02:37:0f:91:9b:03:af:51:c9:cd:87:
6a:0c:23:b1:48:cb:e3:18:99:fa:83:10:05:47:39:
c8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F0:C7:27:05:87:54:B4:2F:13:DF:57:11:C7:49:71:74:A6:DF:C9
X509v3 Authority Key Identifier:
keyid:E9:5F:A0:ED:F1:11:2E:32:0C:22:5E:7B:8D:50:41:86:67:A3:0A:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/6V-g7fERLjIMIl57jVBBhmejCs8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V-g7fERLjIMIl57jVBBhmejCs8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/21884064C42111ED91F8CA85C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.236.132.0/22
Signature Algorithm: sha256WithRSAEncryption
38:22:56:e4:44:25:e8:a0:2e:fa:51:d9:dc:10:60:05:3e:bc:
10:9b:d2:80:f4:0f:3c:a7:bf:02:b7:94:09:84:66:00:38:83:
bf:f9:c9:86:57:e2:dd:d9:69:c6:9b:9d:b6:29:e7:f4:ad:0c:
8a:fb:d8:46:2a:39:fa:ce:41:03:c9:65:92:a7:33:20:c4:4e:
6a:89:d6:c0:40:e8:1b:95:5c:41:3d:5f:7d:e2:ba:34:af:9c:
20:4a:38:76:74:9c:bc:56:a3:09:ce:f3:14:85:15:28:e6:a3:
6f:8c:37:77:be:09:95:17:c7:05:14:e0:db:62:1d:75:f8:78:
29:62:77:5f:38:c0:ef:dd:f3:dc:d9:19:12:ca:a0:71:c4:f5:
2e:fc:20:2f:14:c9:b1:e1:22:0e:a8:62:74:04:8c:7f:93:7c:
02:4d:0e:25:6c:7a:c4:b1:63:f0:fd:0c:0a:b6:b9:d5:af:9a:
27:e6:02:2b:29:1e:7a:fc:0f:95:8d:dd:f7:56:f4:96:4e:65:
a8:3f:54:20:ec:06:0b:31:b4:a3:fb:7f:4c:22:2a:de:5f:da:
25:58:ad:29:37:64:21:08:af:36:0c:3e:cf:8f:a1:e1:d3:0e:
1b:7f:a5:f7:be:e0:51:b1:dd:a2:ab:02:32:2a:46:66:c6:ca:
74:ae:fd:e3
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTc1QjYxMTAvBgNVBAUTKEU5NUZBMEVERjExMTJFMzIwQzIyNUU3QjhENTA0MTg2
NjdBMzBBQ0YwHhcNMjQwOTIxMDMyNjIwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmVlM2NkYy0wNTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxSZDsfsVXSIOb3D1aABSdFsVj8Z/CR6rU8TJmXv6Bq9KFSP4IqZMrXCvEXGI
TRKKnG4Znc6U7GlU7fQapBvR2jhrc7can4Zl5DwzjhARyLtBlHYKXd0qbc0zYK75
bCeHBgmbLK6WlMN2Qw0KKVSeJ/DA8j0vvqmfqRIYjIozK6KYJA4Hvw7tbd+Gck+6
N3JXabh+UUIVf70vyXkaL8FtDnoD0YLJ6KDPLtWpzlsdkmggFoX9L3XnGhjAerGV
YN1h/2wPGJJRZZU9nHu4775janvu20mlv7fTmwpW08dJcL8n+7vzAjcPkZsDr1HJ
zYdqDCOxSMvjGJn6gxAFRznI5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBHwxycF
h1S0LxPfVxHHSXF0pt/JMB8GA1UdIwQYMBaAFOlfoO3xES4yDCJee41QQYZnowrP
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVCNi9CNTc2MkRENkMy
N0QxMUVEOTEyQjc3NEJDNEY5QUUwMi82Vi1nN2ZFUkxqSU1JbDU3alZCQmhtZWpD
czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzZWLWc3ZkVSTGpJTUlsNTdqVkJCaG1lakNzOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTc1QjYvQjU3NjJERDZDMjdEMTFFRDkxMkI3NzRCQzRGOUFFMDIvMjE4ODQwNjRD
NDIxMTFFRDkxRjhDQTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAJn7IQwDQYJKoZIhvcNAQELBQADggEBADgiVuREJeigLvpR
2dwQYAU+vBCb0oD0DzynvwK3lAmEZgA4g7/5yYZX4t3ZacabnbYp5/StDIr72EYq
OfrOQQPJZZKnMyDETmqJ1sBA6BuVXEE9X33iujSvnCBKOHZ0nLxWownO8xSFFSjm
o2+MN3e+CZUXxwUU4NtiHXX4eClid184wO/d89zZGRLKoHHE9S78IC8UybHhIg6o
YnQEjH+TfAJNDiVsesSxY/D9DAq2udWvmifmAispHnr8D5WN3fdW9JZOZag/VCDs
BgsxtKP7f0wiKt5f2iVYrSk3ZCEIrzYMPs+PoeHTDht/pfe+4FGx3aKrAjIqRmbG
ynSu/eM=
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:04:44 2025 by rpki-client