Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A618B/9BA2B254803F11EA97B43D62C4F9AE02/594ECE96804011EA9B73BC62C4F9AE02.roa
File: 594ECE96804011EA9B73BC62C4F9AE02.roa (raw, json)
Hash identifier: EKd9VQ360ebUJ8WlZXHE7k1r87p0QtlOPC8jxoN1cJc=
Subject key identifier: A7:5E:C2:2E:B9:5E:9C:55:A1:D1:DB:FA:56:8F:9A:14:A4:D0:CC:51
Certificate issuer: /CN=A91A618B/serialNumber=69691F55164952F2F4F1FEE804AA15835FFE86D5
Certificate serial: 09A2
Authority key identifier: 69:69:1F:55:16:49:52:F2:F4:F1:FE:E8:04:AA:15:83:5F:FE:86:D5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWkfVRZJUvL08f7oBKoVg1_-htU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A618B/9BA2B254803F11EA97B43D62C4F9AE02/594ECE96804011EA9B73BC62C4F9AE02.roa
Signing time: Tue 04 Mar 2025 20:58:31 +0000
ROA not before: Tue 04 Mar 2025 20:58:31 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 63950
IP address blocks: 103.49.16.0/23 maxlen: 24
2001:df2:3c00::/45 maxlen: 46
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2466 (0x9a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A618B
Validity
Not Before: Mar 4 20:58:31 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67c76977-d7bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4c:eb:bc:a1:fe:db:95:d6:ea:cc:f0:eb:65:
33:e4:a5:6e:fc:ac:8b:43:56:67:ac:0b:99:31:a1:
9e:d7:2b:83:36:dc:78:51:2c:7a:17:3f:b3:a5:fc:
75:49:e8:d7:70:8c:32:8e:26:ce:ba:c8:c7:e9:5c:
1a:d0:ca:3c:25:f7:97:c3:4a:81:19:0d:32:14:3d:
fc:c7:ad:aa:74:b5:a6:df:9a:fe:29:41:f4:31:f4:
8a:72:4b:10:6f:30:66:84:1b:ca:ed:67:4f:ad:b6:
7f:65:da:a0:d8:6c:ab:41:e5:6d:db:35:7b:d1:e9:
7c:d3:db:01:64:bf:b9:92:d2:9d:80:69:f4:d2:48:
b9:6e:0a:d4:50:92:b5:eb:a4:98:60:c8:61:9f:fe:
49:0a:f3:f3:4f:d0:7c:e4:70:8b:77:a7:fa:d3:3f:
b6:29:50:41:93:ad:96:58:a3:34:e6:4d:6f:d7:c3:
16:ed:14:ec:f0:05:d2:7b:d9:cd:e6:49:14:99:a4:
85:c0:bc:12:85:86:98:5f:69:31:a3:0c:70:11:e1:
24:f3:77:27:96:d0:0a:b2:73:6a:67:f0:3a:b3:35:
e7:43:dc:e8:fc:00:e6:03:4a:8b:74:88:26:72:b6:
3c:f5:55:11:42:46:6e:15:1d:5b:71:c0:f7:1a:9f:
73:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:5E:C2:2E:B9:5E:9C:55:A1:D1:DB:FA:56:8F:9A:14:A4:D0:CC:51
X509v3 Authority Key Identifier:
keyid:69:69:1F:55:16:49:52:F2:F4:F1:FE:E8:04:AA:15:83:5F:FE:86:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A618B/9BA2B254803F11EA97B43D62C4F9AE02/aWkfVRZJUvL08f7oBKoVg1_-htU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWkfVRZJUvL08f7oBKoVg1_-htU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A618B/9BA2B254803F11EA97B43D62C4F9AE02/594ECE96804011EA9B73BC62C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.49.16.0/23
IPv6:
2001:df2:3c00::/45
Signature Algorithm: sha256WithRSAEncryption
35:5d:c1:d9:7e:aa:50:47:6c:60:37:a5:9e:ec:8d:2e:34:a8:
b1:d3:d6:b9:2e:6b:02:bc:eb:3b:19:4c:a5:56:7a:91:4c:82:
67:a4:16:17:ae:15:6d:a2:48:28:59:16:b2:91:37:c8:42:3f:
02:4a:28:62:2c:6f:70:0a:e6:6f:7b:c9:b3:70:6b:b1:ff:bd:
f1:96:21:1c:52:a0:26:8a:3a:32:cc:0e:01:52:ee:2a:a0:1a:
4e:ee:91:14:0b:3a:66:c7:3c:6c:40:d1:5c:c1:2d:cd:24:5b:
21:90:97:c0:a2:e1:58:c2:9d:54:ed:3a:98:08:1c:27:42:28:
b2:f8:3d:ab:a8:a2:d0:8c:6c:4c:61:d3:42:84:29:a0:e0:87:
a1:97:c4:fd:77:fb:f2:9d:f8:bb:0d:27:92:62:97:69:15:f2:
1a:88:ab:89:4d:2d:9e:28:91:b9:e5:65:77:35:7d:ce:80:25:
aa:53:58:02:3d:04:55:20:68:f0:5c:12:e4:95:78:7b:53:61:
aa:21:17:86:09:c1:60:6c:9e:0a:ef:ab:f3:ba:f9:6b:69:04:
37:01:8f:b2:05:11:37:f5:63:fe:1b:81:25:9a:1c:a4:50:7f:
f0:26:aa:81:54:7d:47:69:d2:53:26:24:8a:67:ea:89:19:98:
53:31:0b:69
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICCaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTYxOEIxMTAvBgNVBAUTKDY5NjkxRjU1MTY0OTUyRjJGNEYxRkVFODA0QUExNTgz
NUZGRTg2RDUwHhcNMjUwMzA0MjA1ODMxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2M3Njk3Ny1kN2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2EzrvKH+25XW6szw62Uz5KVu/KyLQ1ZnrAuZMaGe1yuDNtx4USx6Fz+zpfx1
SejXcIwyjibOusjH6Vwa0Mo8JfeXw0qBGQ0yFD38x62qdLWm35r+KUH0MfSKcksQ
bzBmhBvK7WdPrbZ/Zdqg2GyrQeVt2zV70el809sBZL+5ktKdgGn00ki5bgrUUJK1
66SYYMhhn/5JCvPzT9B85HCLd6f60z+2KVBBk62WWKM05k1v18MW7RTs8AXSe9nN
5kkUmaSFwLwShYaYX2kxowxwEeEk83cnltAKsnNqZ/A6szXnQ9zo/ADmA0qLdIgm
crY89VURQkZuFR1bccD3Gp9zxQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKdewi65
XpxVodHb+laPmhSk0MxRMB8GA1UdIwQYMBaAFGlpH1UWSVLy9PH+6ASqFYNf/obV
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjE4Qi85QkEyQjI1NDgw
M0YxMUVBOTdCNDNENjJDNEY5QUUwMi9hV2tmVlJaSlV2TDA4ZjdvQktvVmcxXy1o
dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2FXa2ZWUlpKVXZMMDhmN29CS29WZzFfLWh0VS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTYxOEIvOUJBMkIyNTQ4MDNGMTFFQTk3QjQzRDYyQzRGOUFFMDIvNTk0RUNFOTY4
MDQwMTFFQTlCNzNCQzYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBAFnMRAwDwQCAAIwCQMHAyABDfI8ADANBgkqhkiG9w0BAQsF
AAOCAQEANV3B2X6qUEdsYDelnuyNLjSosdPWuS5rArzrOxlMpVZ6kUyCZ6QWF64V
baJIKFkWspE3yEI/AkooYixvcArmb3vJs3Brsf+98ZYhHFKgJoo6MswOAVLuKqAa
Tu6RFAs6Zsc8bEDRXMEtzSRbIZCXwKLhWMKdVO06mAgcJ0Iosvg9q6ii0IxsTGHT
QoQpoOCHoZfE/Xf78p34uw0nkmKXaRXyGoiriU0tniiRueVldzV9zoAlqlNYAj0E
VSBo8FwS5JV4e1NhqiEXhgnBYGyeCu+r87r5a2kENwGPsgURN/Vj/huBJZocpFB/
8CaqgVR9R2nSUyYkimfqiRmYUzELaQ==
-----END CERTIFICATE-----
Generated at Mon Apr 7 03:11:17 2025 by rpki-client