Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/412DD396EE3B11EC8EE6DA63C4F9AE02.roa
File: 412DD396EE3B11EC8EE6DA63C4F9AE02.roa (raw, json)
Hash identifier: 90iQ52pzi3F+reOCS+hcjY5A8xSUULeYkZXVo6UNIXg=
Subject key identifier: 80:4C:13:AA:E4:28:7E:DC:A3:A5:96:B1:BD:73:32:F2:A9:42:CA:66
Certificate issuer: /CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847
Certificate serial: 026D
Authority key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/412DD396EE3B11EC8EE6DA63C4F9AE02.roa
Signing time: Thu 05 Dec 2024 01:45:00 +0000
ROA not before: Thu 05 Dec 2024 01:45:00 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 149027
IP address blocks: 103.176.226.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 621 (0x26d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91975F1
Validity
Not Before: Dec 5 01:45:00 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=6751059c-328d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:87:9a:d8:ce:af:11:bf:ca:be:ac:f5:b8:d4:
03:85:ef:8f:eb:56:fc:67:51:33:0a:c2:4e:8b:46:
cf:56:c5:ef:d7:5a:c8:96:e4:3d:79:c7:e8:db:48:
14:03:9a:92:1a:8b:2d:5a:65:ed:d0:65:8b:14:bd:
4a:a3:d4:f4:7d:7a:9b:b0:46:70:c3:c7:25:41:9b:
a6:c8:ee:53:81:3a:6d:35:e3:e0:35:19:af:b3:f7:
b1:29:f2:a9:b8:ad:22:78:10:57:46:13:47:47:09:
0a:9a:ff:dc:14:0f:34:05:5e:c5:50:9a:9d:7b:72:
e1:c1:3d:c5:b8:03:ed:0d:82:cc:20:28:d6:9e:d5:
7f:69:d9:1e:b6:bd:27:f9:67:cb:93:45:11:0f:2b:
55:a7:db:c2:48:4b:7d:95:ed:55:3f:c4:9e:ca:31:
75:97:1e:ca:31:86:bb:8d:af:68:d0:c7:c0:b9:a5:
0f:21:ff:72:fd:8b:3b:9d:98:96:ef:4e:83:8a:ef:
be:86:92:0c:67:35:fc:56:34:e1:38:5d:82:99:d0:
6a:ce:c8:9b:f1:c9:30:55:24:42:4e:63:87:48:35:
94:42:72:e7:6d:95:4e:dd:23:58:6c:5d:44:24:4d:
db:89:01:6c:22:ec:76:04:5d:41:03:8b:47:27:0b:
7a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:4C:13:AA:E4:28:7E:DC:A3:A5:96:B1:BD:73:32:F2:A9:42:CA:66
X509v3 Authority Key Identifier:
keyid:52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/412DD396EE3B11EC8EE6DA63C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.176.226.0/24
Signature Algorithm: sha256WithRSAEncryption
83:af:b8:75:ba:88:18:2d:9b:3a:72:60:61:9a:9b:f6:36:86:
fe:48:3f:e1:21:9e:a3:54:aa:15:db:08:1a:ee:64:65:9a:cc:
cd:a0:0e:d9:b5:e0:19:12:0e:47:05:ca:78:75:73:19:ba:ec:
cf:d2:b2:91:ca:91:37:a5:06:1d:8b:43:b8:d5:e0:9a:9f:fd:
aa:29:8a:87:79:8d:3a:b7:6f:f8:12:b5:04:6a:2d:9d:57:43:
46:df:93:06:3a:5a:94:83:bd:83:cc:a6:00:ff:33:bc:9e:c0:
d3:b7:3d:a3:42:a8:f8:f8:de:3a:9a:d1:d4:1a:16:35:b7:9a:
c5:64:8b:7e:5b:9d:3a:3c:a5:2f:1d:45:fc:a1:2d:0e:12:c3:
3b:1d:30:7a:3a:eb:e5:93:38:2f:4e:d4:64:1f:8b:0f:fb:ea:
6d:48:60:cd:89:15:a9:d2:19:02:3d:ac:40:d5:06:14:62:d0:
51:a8:da:8d:d1:d4:a5:0b:ba:c2:33:d6:9d:12:3b:48:89:5b:
d0:b4:bd:ec:87:1a:9f:53:c7:a3:b4:9d:9b:d2:84:12:41:51:
43:64:56:aa:fb:a1:c0:6a:ef:3e:13:9a:6f:c6:15:b0:62:59:
68:a1:71:be:c9:41:7a:35:a8:ed:39:e7:60:b9:ed:73:5c:f1:
f9:26:1d:09
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTc1RjExMTAvBgNVBAUTKDUyNUVBMjZCNkE2MTdFNUFBRkMwNTQyM0NDRTU4OERF
MTlFQzU4NDcwHhcNMjQxMjA1MDE0NTAwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzUxMDU5Yy0zMjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtoea2M6vEb/Kvqz1uNQDhe+P61b8Z1EzCsJOi0bPVsXv11rIluQ9ecfo20gU
A5qSGostWmXt0GWLFL1Ko9T0fXqbsEZww8clQZumyO5TgTptNePgNRmvs/exKfKp
uK0ieBBXRhNHRwkKmv/cFA80BV7FUJqde3LhwT3FuAPtDYLMICjWntV/adketr0n
+WfLk0URDytVp9vCSEt9le1VP8SeyjF1lx7KMYa7ja9o0MfAuaUPIf9y/Ys7nZiW
706Diu++hpIMZzX8VjThOF2CmdBqzsib8ckwVSRCTmOHSDWUQnLnbZVO3SNYbF1E
JE3biQFsIux2BF1BA4tHJwt64QIDAQABo4IClTCCApEwHQYDVR0OBBYEFIBME6rk
KH7co6WWsb1zMvKpQspmMB8GA1UdIwQYMBaAFFJeomtqYX5ar8BUI8zliN4Z7FhH
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVGMS9DQjY2MzMwQUVF
MkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZscXZ3RlFqek9XSTNobnNX
RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1VsNmlhMnBoZmxxdndGUWp6T1dJM2huc1dFYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTc1RjEvQ0I2NjMzMEFFRTJDMTFFQzk1NkIyQzRGQzRGOUFFMDIvNDEyREQzOTZF
RTNCMTFFQzhFRTZEQTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnsOIwDQYJKoZIhvcNAQELBQADggEBAIOvuHW6iBgtmzpy
YGGam/Y2hv5IP+EhnqNUqhXbCBruZGWazM2gDtm14BkSDkcFynh1cxm67M/SspHK
kTelBh2LQ7jV4Jqf/aopiod5jTq3b/gStQRqLZ1XQ0bfkwY6WpSDvYPMpgD/M7ye
wNO3PaNCqPj43jqa0dQaFjW3msVki35bnTo8pS8dRfyhLQ4SwzsdMHo66+WTOC9O
1GQfiw/76m1IYM2JFanSGQI9rEDVBhRi0FGo2o3R1KULusIz1p0SO0iJW9C0veyH
Gp9Tx6O0nZvShBJBUUNkVqr7ocBq7z4Tmm/GFbBiWWihcb7JQXo1qO0552C57XNc
8fkmHQk=
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:21:20 2025 by rpki-client