Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/6637CBD423C311ED9CF26A56C4F9AE02.roa
File: 6637CBD423C311ED9CF26A56C4F9AE02.roa (raw, json)
Hash identifier: DfRsMdJEDtch+C5Yk6n2+rHqExZkbfMsESmjI6z6r5c=
Subject key identifier: 5E:25:98:22:B5:FE:F9:3F:E9:EC:54:70:BA:80:7E:A3:F4:7A:AA:5B
Certificate issuer: /CN=A91AEB80/serialNumber=6F23F27F090BEF4531802072E1DACF210D9D423C
Certificate serial: 03C2
Authority key identifier: 6F:23:F2:7F:09:0B:EF:45:31:80:20:72:E1:DA:CF:21:0D:9D:42:3C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/6637CBD423C311ED9CF26A56C4F9AE02.roa
Signing time: Sun 29 Dec 2024 00:13:50 +0000
ROA not before: Sun 29 Dec 2024 00:13:50 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 149475
IP address blocks: 103.180.108.0/23 maxlen: 24
2001:df0:59c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 962 (0x3c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AEB80
Validity
Not Before: Dec 29 00:13:50 2024 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=6770943e-892b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:eb:11:08:8b:8d:20:a0:6e:3b:91:9b:56:fa:
d2:69:25:81:d4:e3:80:16:11:c9:a0:29:96:fb:1d:
16:2e:11:b9:e0:18:88:c9:da:9c:fa:1a:3c:e5:7e:
45:0b:c4:53:9c:8b:e0:82:d7:83:36:1b:ed:dc:0f:
04:72:9d:28:41:35:a9:93:1f:20:c4:f4:c0:d4:00:
8e:06:a3:83:08:67:7c:b1:f4:73:00:b3:92:4e:d6:
18:97:e9:da:a6:d9:a2:ae:ea:47:8a:74:26:ad:97:
61:cc:b4:94:b6:d7:83:da:34:a4:fa:71:1f:0c:e4:
b9:d8:5f:4f:9e:8a:f6:d9:9b:ab:6b:06:71:13:3a:
65:66:c4:9a:4b:d3:5e:27:f3:94:9c:cb:08:5e:ff:
42:2a:2b:3f:4f:4b:fe:5f:54:78:bf:f2:b8:3a:9f:
2f:54:0a:69:f6:a9:c6:19:ac:a5:77:c7:89:8f:bd:
b1:bb:0e:a9:a1:3f:26:88:0a:17:7b:06:07:8d:67:
f8:ea:6b:e1:0a:fd:ab:d7:85:80:bb:48:70:c0:34:
fe:d8:07:f5:c6:e3:50:9b:95:b8:23:10:41:ce:32:
5c:85:3c:f7:52:9f:dd:9a:8d:7f:86:33:74:4a:19:
63:31:32:cf:32:1c:25:49:e7:e7:f6:ed:9a:53:62:
e9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:25:98:22:B5:FE:F9:3F:E9:EC:54:70:BA:80:7E:A3:F4:7A:AA:5B
X509v3 Authority Key Identifier:
keyid:6F:23:F2:7F:09:0B:EF:45:31:80:20:72:E1:DA:CF:21:0D:9D:42:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/byPyfwkL70UxgCBy4drPIQ2dQjw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/6637CBD423C311ED9CF26A56C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.180.108.0/23
IPv6:
2001:df0:59c0::/48
Signature Algorithm: sha256WithRSAEncryption
ab:38:18:bf:b8:6f:af:c4:df:cc:d3:96:78:f9:14:c6:dd:fc:
e7:19:85:39:18:33:e3:95:f8:a8:c1:96:e4:1c:ae:c5:c6:d5:
d3:56:2a:d0:0a:e9:2e:19:4a:41:7a:22:ba:a5:90:d1:5c:c2:
9d:e0:0e:d5:af:e3:b8:ba:b2:cb:5e:07:73:5e:53:0d:2f:12:
f9:04:cb:05:77:45:b4:52:e5:9b:49:41:75:f5:c9:23:96:b7:
bb:3a:85:1e:f8:67:36:35:7e:c4:29:dc:7d:46:30:e0:3b:fa:
0f:f3:91:3c:9f:7a:14:d6:f5:23:8e:f4:e4:4e:16:a1:26:19:
0f:94:3c:ac:6c:d9:85:71:11:44:eb:3a:49:dd:5a:95:51:72:
b6:82:d1:f7:07:46:5c:1c:bb:1b:ec:c0:35:23:93:c7:7d:75:
8d:af:e8:de:d4:d1:30:a0:3f:b1:4a:be:f7:3b:ed:ed:7d:56:
f1:fb:c1:10:48:d6:cc:29:11:ae:f1:40:27:c8:cf:79:52:57:
51:0f:0c:01:76:35:00:d7:ea:dd:d0:aa:53:1d:df:3f:23:5e:
d2:54:27:0e:70:09:f4:f5:74:b9:b6:63:1b:18:90:43:4b:f0:
b9:d7:a1:46:c6:dc:26:e6:b7:54:60:25:d1:c7:e7:78:ec:75:
9a:62:66:0b
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICA8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QUVCODAxMTAvBgNVBAUTKDZGMjNGMjdGMDkwQkVGNDUzMTgwMjA3MkUxREFDRjIx
MEQ5RDQyM0MwHhcNMjQxMjI5MDAxMzUwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzcwOTQzZS04OTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6+sRCIuNIKBuO5GbVvrSaSWB1OOAFhHJoCmW+x0WLhG54BiIydqc+ho85X5F
C8RTnIvggteDNhvt3A8Ecp0oQTWpkx8gxPTA1ACOBqODCGd8sfRzALOSTtYYl+na
ptmirupHinQmrZdhzLSUtteD2jSk+nEfDOS52F9Pnor22ZurawZxEzplZsSaS9Ne
J/OUnMsIXv9CKis/T0v+X1R4v/K4Op8vVApp9qnGGayld8eJj72xuw6poT8miAoX
ewYHjWf46mvhCv2r14WAu0hwwDT+2Af1xuNQm5W4IxBBzjJchTz3Up/dmo1/hjN0
ShljMTLPMhwlSefn9u2aU2LpowIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFF4lmCK1
/vk/6exUcLqAfqP0eqpbMB8GA1UdIwQYMBaAFG8j8n8JC+9FMYAgcuHazyENnUI8
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUI4MC83NzYyRkM1QTdF
NkMxMUVDODczRDY3ODNDNEY5QUUwMi9ieVB5ZndrTDcwVXhnQ0J5NGRyUElRMmRR
ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2J5UHlmd2tMNzBVeGdDQnk0ZHJQSVEyZFFqdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QUVCODAvNzc2MkZDNUE3RTZDMTFFQzg3M0Q2NzgzQzRGOUFFMDIvNjYzN0NCRDQy
M0MzMTFFRDlDRjI2QTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBAFntGwwDwQCAAIwCQMHACABDfBZwDANBgkqhkiG9w0BAQsF
AAOCAQEAqzgYv7hvr8TfzNOWePkUxt385xmFORgz45X4qMGW5ByuxcbV01Yq0Arp
LhlKQXoiuqWQ0VzCneAO1a/juLqyy14Hc15TDS8S+QTLBXdFtFLlm0lBdfXJI5a3
uzqFHvhnNjV+xCncfUYw4Dv6D/ORPJ96FNb1I4705E4WoSYZD5Q8rGzZhXERROs6
Sd1alVFytoLR9wdGXBy7G+zANSOTx311ja/o3tTRMKA/sUq+9zvt7X1W8fvBEEjW
zCkRrvFAJ8jPeVJXUQ8MAXY1ANfq3dCqUx3fPyNe0lQnDnAJ9PV0ubZjGxiQQ0vw
udehRsbcJua3VGAl0cfneOx1mmJmCw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 02:57:36 2025 by rpki-client