Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/0A918056D24C11EFB8B5C95EC4F9AE02.roa
File: 0A918056D24C11EFB8B5C95EC4F9AE02.roa (raw, json)
Hash identifier: dReX35F9Xgv2vYdWUkskW43wT5+d/4LX4ncKLKYKkSg=
Subject key identifier: 7E:32:9B:87:E3:FE:56:18:16:12:1E:94:AC:E8:71:66:47:A4:22:21
Certificate issuer: /CN=A91B0380/serialNumber=5BD324A69BD26EDDADF5129CD18F77A1D80523B6
Certificate serial: 3D
Authority key identifier: 5B:D3:24:A6:9B:D2:6E:DD:AD:F5:12:9C:D1:8F:77:A1:D8:05:23:B6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9MkppvSbt2t9RKc0Y93odgFI7Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/0A918056D24C11EFB8B5C95EC4F9AE02.roa
Signing time: Tue 14 Jan 2025 07:49:11 +0000
ROA not before: Tue 14 Jan 2025 07:49:11 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 0
IP address blocks: 103.239.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61 (0x3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B0380
Validity
Not Before: Jan 14 07:49:11 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=678616f7-cc18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6b:f3:ec:ba:2c:fb:28:d5:71:6c:35:f4:91:
6d:c3:a2:43:0e:0a:a7:cf:31:76:74:49:8a:cd:bd:
27:02:1d:06:40:6d:ea:c4:5b:33:bc:db:cb:55:52:
af:07:2d:f1:b8:43:00:b0:72:db:3f:3c:5c:1a:3c:
d3:ce:2d:95:25:b8:7c:db:c8:e7:24:3f:47:56:02:
19:c3:61:5e:d8:bc:9d:50:e9:3f:d4:4a:2c:6b:3b:
d0:2c:bf:4d:aa:02:e3:1e:96:bd:c6:b2:b1:9c:5d:
dd:d1:6f:d6:ae:73:b9:c9:20:98:ff:25:44:27:f5:
01:03:5a:c9:e8:67:bd:d9:9a:8d:46:9f:56:cd:ec:
f8:ac:21:cb:b2:31:ec:1a:a2:e6:30:46:92:d6:00:
60:ea:1a:f0:7d:65:f1:97:2c:ab:72:b4:c1:5f:ee:
ff:19:88:e2:9b:4f:3c:c8:15:25:e5:35:04:88:66:
bc:ab:71:de:0b:32:56:39:db:30:3a:75:fc:2d:03:
e5:97:e7:c6:bb:cf:1f:76:ed:ed:15:46:8b:d0:67:
cc:70:83:5d:6f:9e:18:1b:af:35:db:71:f8:f4:0b:
59:04:ab:b2:f6:b2:57:63:79:c3:15:c3:79:16:72:
5a:7d:59:7d:b8:d4:b4:e9:f1:96:7f:cf:46:4d:ac:
0f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:32:9B:87:E3:FE:56:18:16:12:1E:94:AC:E8:71:66:47:A4:22:21
X509v3 Authority Key Identifier:
keyid:5B:D3:24:A6:9B:D2:6E:DD:AD:F5:12:9C:D1:8F:77:A1:D8:05:23:B6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/W9MkppvSbt2t9RKc0Y93odgFI7Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9MkppvSbt2t9RKc0Y93odgFI7Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/0A918056D24C11EFB8B5C95EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.239.128.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:84:bc:e0:1a:d5:a9:f8:37:29:98:93:3a:dc:ae:37:f6:1c:
ec:3d:ec:21:cf:30:2f:05:f6:33:fb:06:25:52:d2:84:a8:16:
62:5c:3a:b5:b8:11:de:b4:e7:5c:2b:8b:b4:ad:bf:28:e5:ed:
aa:5a:73:a0:ef:4a:a5:b6:05:30:bd:d7:ca:a7:e0:a5:a6:21:
21:94:35:19:98:7c:b0:f6:ae:85:6d:53:fe:6a:4f:38:c4:78:
41:ea:02:23:e5:f2:71:67:16:46:f8:a9:ef:1d:44:75:0e:58:
de:a7:2d:bc:c2:57:47:df:73:f6:2d:91:92:e5:bb:6d:76:5c:
0c:4a:84:cd:06:96:9b:bf:88:c1:32:1b:5a:c3:f0:33:dc:0b:
7e:b8:82:67:87:43:54:a2:8e:f8:9f:99:c8:55:e0:51:75:fe:
66:24:dc:37:ad:42:8c:69:4e:25:68:a2:20:0c:3f:93:60:1b:
5b:27:d1:4a:dc:c1:47:20:f3:5d:81:c7:47:c6:b9:d8:73:59:
e8:35:82:26:1e:d0:79:1d:b1:c5:46:8b:17:9b:a9:5f:0e:ba:
b6:12:d4:e3:29:32:e6:4d:50:a9:6d:82:b9:3a:3c:6c:cf:b8:
69:da:4c:a6:6a:95:12:ec:ee:f3:f4:0c:2c:ee:ea:bd:d1:58:
a8:f1:fa:dd
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC
MDM4MDExMC8GA1UEBRMoNUJEMzI0QTY5QkQyNkVEREFERjUxMjlDRDE4Rjc3QTFE
ODA1MjNCNjAeFw0yNTAxMTQwNzQ5MTFaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY3ODYxNmY3LWNjMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCia/Psuiz7KNVxbDX0kW3DokMOCqfPMXZ0SYrNvScCHQZAberEWzO828tVUq8H
LfG4QwCwcts/PFwaPNPOLZUluHzbyOckP0dWAhnDYV7YvJ1Q6T/USixrO9Asv02q
AuMelr3GsrGcXd3Rb9auc7nJIJj/JUQn9QEDWsnoZ73Zmo1Gn1bN7PisIcuyMewa
ouYwRpLWAGDqGvB9ZfGXLKtytMFf7v8ZiOKbTzzIFSXlNQSIZryrcd4LMlY52zA6
dfwtA+WX58a7zx927e0VRovQZ8xwg11vnhgbrzXbcfj0C1kEq7L2sldjecMVw3kW
clp9WX241LTp8ZZ/z0ZNrA/FAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUfjKbh+P+
VhgWEh6UrOhxZkekIiEwHwYDVR0jBBgwFoAUW9MkppvSbt2t9RKc0Y93odgFI7Yw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwMzgwLzc3MjI0RTk0N0JD
QjExRUZBMjQ4OTIxMUM0RjlBRTAyL1c5TWtwcHZTYnQydDlSS2MwWTkzb2RnRkk3
WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvVzlNa3BwdlNidDJ0OVJLYzBZOTNvZGdGSTdZLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
MDM4MC83NzIyNEU5NDdCQ0IxMUVGQTI0ODkyMTFDNEY5QUUwMi8wQTkxODA1NkQy
NEMxMUVGQjhCNUM5NUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAGfvgDANBgkqhkiG9w0BAQsFAAOCAQEAPoS84BrVqfg3KZiT
OtyuN/Yc7D3sIc8wLwX2M/sGJVLShKgWYlw6tbgR3rTnXCuLtK2/KOXtqlpzoO9K
pbYFML3XyqfgpaYhIZQ1GZh8sPauhW1T/mpPOMR4QeoCI+XycWcWRvip7x1EdQ5Y
3qctvMJXR99z9i2RkuW7bXZcDEqEzQaWm7+IwTIbWsPwM9wLfriCZ4dDVKKO+J+Z
yFXgUXX+ZiTcN61CjGlOJWiiIAw/k2AbWyfRStzBRyDzXYHHR8a52HNZ6DWCJh7Q
eR2xxUaLF5upXw66thLU4yky5k1QqW2CuTo8bM+4adpMpmqVEuzu8/QMLO7qvdFY
qPH63Q==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:03:23 2025 by rpki-client