Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D2AF/F3EFB898BCBA11ED9C9AFA25C4F9AE02/761318C4BCC011EDA67EF02DC4F9AE02.roa
File: 761318C4BCC011EDA67EF02DC4F9AE02.roa (raw, json)
Hash identifier: eI5apWR0zMm4xnDILGv49LNX7IaWBYgGW0HW5FhcVfo=
Subject key identifier: A5:90:F0:87:AA:79:D4:3F:D7:CC:CA:B9:D2:AD:8C:B1:DB:DE:56:61
Certificate issuer: /CN=A919D2AF/serialNumber=24B9EDE52C03A86E0F2128693B6C1E0A8724ED15
Certificate serial: 0168
Authority key identifier: 24:B9:ED:E5:2C:03:A8:6E:0F:21:28:69:3B:6C:1E:0A:87:24:ED:15
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JLnt5SwDqG4PIShpO2weCock7RU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919D2AF/F3EFB898BCBA11ED9C9AFA25C4F9AE02/761318C4BCC011EDA67EF02DC4F9AE02.roa
Signing time: Wed 01 Jan 2025 02:36:32 +0000
ROA not before: Wed 01 Jan 2025 02:36:32 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 135632
IP address blocks: 103.77.9.0/24 maxlen: 24
103.77.10.0/24 maxlen: 24
103.77.11.0/24 maxlen: 24
116.206.164.0/24 maxlen: 24
116.206.165.0/24 maxlen: 24
116.206.166.0/24 maxlen: 24
116.206.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360 (0x168)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919D2AF
Validity
Not Before: Jan 1 02:36:32 2025 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=6774aa30-422f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:aa:00:9b:2c:b8:f9:47:6f:9c:ca:1d:64:f8:
fd:21:5d:ef:bd:9e:68:81:4b:ae:cf:9d:a7:91:cd:
85:41:72:d0:49:87:99:50:01:51:e7:83:06:ed:7b:
dd:c5:14:39:58:86:54:aa:a1:6f:e5:fa:d2:4f:99:
3f:f1:4b:68:97:8b:b3:e5:71:8c:2e:3c:5f:5d:06:
d0:1f:ee:6b:01:0c:b0:46:fa:a6:6e:fd:cc:72:cd:
80:bb:7c:69:af:25:3c:3d:ad:ef:0f:45:11:ca:00:
28:9e:a5:62:2a:db:bb:20:cb:9c:c0:6c:c2:b9:ea:
64:23:07:e4:41:c4:f4:a4:df:c0:4e:d0:41:0f:13:
5c:57:88:fa:b3:e8:f6:67:e9:88:7e:c2:69:68:23:
51:df:1d:e1:c6:1f:86:98:b8:b1:00:95:ac:7a:e7:
f6:11:e1:8a:3b:c0:e9:08:87:4c:d8:5f:b2:08:e5:
13:17:54:cc:3a:6a:63:37:04:27:52:a3:be:61:60:
da:ac:37:6c:49:8f:59:a8:90:a3:cf:e4:e1:36:08:
f1:48:c1:76:01:59:68:00:29:83:ef:f0:cd:87:88:
b4:ae:ee:97:a5:a2:df:ce:ff:64:d4:ce:5b:c8:6c:
bb:37:7f:65:13:cd:72:21:b9:e0:67:2e:3c:9b:67:
64:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:90:F0:87:AA:79:D4:3F:D7:CC:CA:B9:D2:AD:8C:B1:DB:DE:56:61
X509v3 Authority Key Identifier:
keyid:24:B9:ED:E5:2C:03:A8:6E:0F:21:28:69:3B:6C:1E:0A:87:24:ED:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919D2AF/F3EFB898BCBA11ED9C9AFA25C4F9AE02/JLnt5SwDqG4PIShpO2weCock7RU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JLnt5SwDqG4PIShpO2weCock7RU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D2AF/F3EFB898BCBA11ED9C9AFA25C4F9AE02/761318C4BCC011EDA67EF02DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.77.9.0-103.77.11.255
116.206.164.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:d8:96:2d:dc:7a:d4:a6:c6:6a:07:52:90:fb:15:2b:13:7b:
b3:6c:f6:b2:82:42:97:6c:64:ce:ed:c5:cd:f3:dd:b0:9b:85:
b1:1b:8a:43:7e:01:e8:63:56:5b:3a:31:79:03:94:1e:de:a5:
88:21:8e:18:e7:d2:a6:28:9a:8c:c3:db:c7:54:bb:cf:61:68:
24:0d:eb:a1:3c:d0:f5:35:3b:37:a9:d6:98:93:4e:7c:8c:ab:
7c:d1:14:bb:1c:28:ed:e5:71:8f:05:ae:24:a3:bc:07:4d:64:
51:2e:3c:54:ca:e3:fb:a5:85:81:82:46:d4:7f:ae:02:81:ef:
07:bd:20:db:98:32:00:fb:5d:ad:a9:69:e8:39:08:47:68:41:
fd:2f:2c:88:9c:b0:f7:c3:32:d2:ca:30:8f:1e:33:94:5f:2c:
92:b9:8e:12:36:12:de:43:1a:23:80:41:cb:28:2b:23:61:8c:
80:51:50:a6:d6:c7:d2:f9:85:4d:62:f8:19:46:2f:19:11:73:
80:f8:5f:de:15:73:ca:61:28:95:79:ea:e2:85:21:9d:b3:dd:
21:b0:3e:43:95:26:95:c0:37:8b:8b:60:06:39:c9:af:73:3d:
5a:17:a7:38:bb:38:cf:fc:bc:b5:4a:62:dc:3e:a7:8a:72:b0:
15:61:f6:d5
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OUQyQUYxMTAvBgNVBAUTKDI0QjlFREU1MkMwM0E4NkUwRjIxMjg2OTNCNkMxRTBB
ODcyNEVEMTUwHhcNMjUwMTAxMDIzNjMyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02Nzc0YWEzMC00MjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA46oAmyy4+UdvnModZPj9IV3vvZ5ogUuuz52nkc2FQXLQSYeZUAFR54MG7Xvd
xRQ5WIZUqqFv5frST5k/8Utol4uz5XGMLjxfXQbQH+5rAQywRvqmbv3Mcs2Au3xp
ryU8Pa3vD0URygAonqViKtu7IMucwGzCuepkIwfkQcT0pN/ATtBBDxNcV4j6s+j2
Z+mIfsJpaCNR3x3hxh+GmLixAJWseuf2EeGKO8DpCIdM2F+yCOUTF1TMOmpjNwQn
UqO+YWDarDdsSY9ZqJCjz+ThNgjxSMF2AVloACmD7/DNh4i0ru6XpaLfzv9k1M5b
yGy7N39lE81yIbngZy48m2dktQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFKWQ8Ieq
edQ/18zKudKtjLHb3lZhMB8GA1UdIwQYMBaAFCS57eUsA6huDyEoaTtsHgqHJO0V
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDJBRi9GM0VGQjg5OEJD
QkExMUVEOUM5QUZBMjVDNEY5QUUwMi9KTG50NVN3RHFHNFBJU2hwTzJ3ZUNvY2s3
UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0pMbnQ1U3dEcUc0UElTaHBPMndlQ29jazdSVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OUQyQUYvRjNFRkI4OThCQ0JBMTFFRDlDOUFGQTI1QzRGOUFFMDIvNzYxMzE4QzRC
Q0MwMTFFREE2N0VGMDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E
HjAcMBoEAgABMBQwDAMEAGdNCQMEAmdNCAMEAnTOpDANBgkqhkiG9w0BAQsFAAOC
AQEAT9iWLdx61KbGagdSkPsVKxN7s2z2soJCl2xkzu3FzfPdsJuFsRuKQ34B6GNW
WzoxeQOUHt6liCGOGOfSpiiajMPbx1S7z2FoJA3roTzQ9TU7N6nWmJNOfIyrfNEU
uxwo7eVxjwWuJKO8B01kUS48VMrj+6WFgYJG1H+uAoHvB70g25gyAPtdralp6DkI
R2hB/S8siJyw98My0sowjx4zlF8skrmOEjYS3kMaI4BByygrI2GMgFFQptbH0vmF
TWL4GUYvGRFzgPhf3hVzymEolXnq4oUhnbPdIbA+Q5UmlcA3i4tgBjnJr3M9When
OLs4z/y8tUpi3D6ninKwFWH21Q==
-----END CERTIFICATE-----
Generated at Tue Apr 8 17:46:46 2025 by rpki-client