Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE26/A7C1610CAF1011EABF61D33AC4F9AE02/CD095756AF1211EAA486D140C4F9AE02.roa
File: CD095756AF1211EAA486D140C4F9AE02.roa (raw, json)
Hash identifier: Z259vozdwtPUaPkxXgMTZo8w1xwG+zonsUhvjUkyWKg=
Subject key identifier: E7:E3:F3:EB:21:03:5B:FB:E6:1C:0C:72:73:CB:29:06:40:AD:2E:A1
Certificate issuer: /CN=A91AEE26/serialNumber=50FA8E8D4E2997FF5DE608DA78CAC654CCD169B6
Certificate serial: 0851
Authority key identifier: 50:FA:8E:8D:4E:29:97:FF:5D:E6:08:DA:78:CA:C6:54:CC:D1:69:B6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPqOjU4pl_9d5gjaeMrGVMzRabY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE26/A7C1610CAF1011EABF61D33AC4F9AE02/CD095756AF1211EAA486D140C4F9AE02.roa
Signing time: Fri 02 Aug 2024 21:39:00 +0000
ROA not before: Fri 02 Aug 2024 21:39:00 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 139194
IP address blocks: 103.139.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2129 (0x851)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AEE26
Validity
Not Before: Aug 2 21:39:00 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66ad51f3-a417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f8:f2:39:c4:3e:0a:84:85:97:e5:26:75:76:
6c:5f:c8:47:b9:0d:d7:35:6a:63:2c:81:ed:3b:9b:
d4:b0:af:2d:a0:a1:29:56:cd:0b:13:15:e0:99:79:
c0:aa:4d:1d:fd:c0:a7:da:33:c6:d1:14:4f:bf:86:
1d:dd:85:32:47:73:eb:ae:27:ca:51:5a:8a:0f:52:
8e:29:ec:12:03:8e:4d:29:47:f5:69:a5:e9:9e:4a:
ae:c1:ec:77:e7:30:53:88:f0:8b:78:73:72:ed:86:
41:07:76:21:be:75:70:63:57:5c:b3:7d:99:cf:7e:
57:7b:5f:55:aa:72:41:c8:82:0b:07:56:71:e6:ab:
a7:de:9e:69:94:89:e5:df:f7:73:a9:41:49:cb:44:
36:c0:4b:38:ba:cb:e8:12:77:b0:b5:02:ed:09:57:
07:87:6a:40:73:88:35:66:35:04:be:5a:8f:22:74:
72:35:c8:7c:ee:78:d1:97:bb:e7:de:4b:38:4e:b7:
43:37:d3:72:2e:b7:25:da:69:e7:30:6f:38:00:35:
7c:18:8e:8a:25:98:bf:e2:a0:de:df:3b:5d:bd:40:
71:d1:cf:cf:14:b6:6a:62:2f:f3:67:6f:2e:fb:b2:
0e:fe:0a:4b:ec:43:43:90:f8:94:b7:93:18:e9:1e:
58:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E3:F3:EB:21:03:5B:FB:E6:1C:0C:72:73:CB:29:06:40:AD:2E:A1
X509v3 Authority Key Identifier:
keyid:50:FA:8E:8D:4E:29:97:FF:5D:E6:08:DA:78:CA:C6:54:CC:D1:69:B6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AEE26/A7C1610CAF1011EABF61D33AC4F9AE02/UPqOjU4pl_9d5gjaeMrGVMzRabY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPqOjU4pl_9d5gjaeMrGVMzRabY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE26/A7C1610CAF1011EABF61D33AC4F9AE02/CD095756AF1211EAA486D140C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.139.151.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:ea:26:7c:d4:cd:c4:9f:4d:12:b9:68:f9:8f:d2:a9:33:b4:
b2:ba:2a:00:fb:a0:0a:f6:37:97:ee:26:fe:18:6b:3a:fa:31:
7d:d5:cd:fd:63:ab:70:cf:f9:b0:00:34:e7:97:93:2e:da:10:
41:e8:67:df:fc:50:10:21:ac:1e:4e:f6:93:f7:b1:63:2e:e2:
78:0a:f0:7f:de:e9:42:ac:82:2e:78:a7:c6:99:19:21:11:d1:
b0:61:09:e1:ca:ea:eb:e2:2d:ea:76:ff:9f:17:8c:e9:c0:fe:
b2:6c:0f:15:04:bd:08:3f:b7:6b:24:18:97:26:0b:09:2a:29:
b5:3f:ba:3a:49:e4:f5:be:47:b7:af:0e:96:ca:4c:82:5f:4d:
8e:ca:59:c7:b8:59:3b:b9:3c:3a:30:30:32:60:5c:2e:50:42:
c9:ff:a5:5c:78:27:e7:f2:7a:0d:a3:20:51:a3:35:c2:93:7e:
f0:58:3e:0a:48:6a:39:61:db:70:1b:a5:66:43:e8:61:05:9b:
4b:f5:66:20:02:b2:58:34:56:93:31:75:e9:9f:84:9b:26:04:
f6:10:7e:4d:a6:9d:3c:62:8f:f1:17:dd:ff:8a:3b:a0:94:ed:
3a:02:f5:b8:bd:bd:ce:b2:8d:ea:65:19:35:c2:6b:86:48:94:
8b:1d:b3:2c
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QUVFMjYxMTAvBgNVBAUTKDUwRkE4RThENEUyOTk3RkY1REU2MDhEQTc4Q0FDNjU0
Q0NEMTY5QjYwHhcNMjQwODAyMjEzOTAwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmFkNTFmMy1hNDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyPjyOcQ+CoSFl+UmdXZsX8hHuQ3XNWpjLIHtO5vUsK8toKEpVs0LExXgmXnA
qk0d/cCn2jPG0RRPv4Yd3YUyR3PrrifKUVqKD1KOKewSA45NKUf1aaXpnkquwex3
5zBTiPCLeHNy7YZBB3YhvnVwY1dcs32Zz35Xe19VqnJByIILB1Zx5qun3p5plInl
3/dzqUFJy0Q2wEs4usvoEnewtQLtCVcHh2pAc4g1ZjUEvlqPInRyNch87njRl7vn
3ks4TrdDN9NyLrcl2mnnMG84ADV8GI6KJZi/4qDe3ztdvUBx0c/PFLZqYi/zZ28u
+7IO/gpL7ENDkPiUt5MY6R5YTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOfj8+sh
A1v75hwMcnPLKQZArS6hMB8GA1UdIwQYMBaAFFD6jo1OKZf/XeYI2njKxlTM0Wm2
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUUyNi9BN0MxNjEwQ0FG
MTAxMUVBQkY2MUQzM0FDNEY5QUUwMi9VUHFPalU0cGxfOWQ1Z2phZU1yR1ZNelJh
YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1VQcU9qVTRwbF85ZDVnamFlTXJHVk16UmFiWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QUVFMjYvQTdDMTYxMENBRjEwMTFFQUJGNjFEMzNBQzRGOUFFMDIvQ0QwOTU3NTZB
RjEyMTFFQUE0ODZEMTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABni5cwDQYJKoZIhvcNAQELBQADggEBAKXqJnzUzcSfTRK5
aPmP0qkztLK6KgD7oAr2N5fuJv4Yazr6MX3Vzf1jq3DP+bAANOeXky7aEEHoZ9/8
UBAhrB5O9pP3sWMu4ngK8H/e6UKsgi54p8aZGSER0bBhCeHK6uviLep2/58XjOnA
/rJsDxUEvQg/t2skGJcmCwkqKbU/ujpJ5PW+R7evDpbKTIJfTY7KWce4WTu5PDow
MDJgXC5QQsn/pVx4J+fyeg2jIFGjNcKTfvBYPgpIajlh23AbpWZD6GEFm0v1ZiAC
slg0VpMxdemfhJsmBPYQfk2mnTxij/EX3f+KO6CU7ToC9bi9vc6yjeplGTXCa4ZI
lIsdsyw=
-----END CERTIFICATE-----
Generated at Fri Apr 11 10:37:39 2025 by rpki-client