Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/AF13726403AD11F0B5D12A81C4F9AE02.roa
File: AF13726403AD11F0B5D12A81C4F9AE02.roa (raw, json)
Hash identifier: XBaed8FJc7Gixv2UzCn4EyIQb1PKqJIn+WKksLyjxb8=
Subject key identifier: B1:B3:4C:C3:94:4E:C8:75:27:86:C3:FE:34:DA:81:11:E6:97:EE:74
Certificate issuer: /CN=A91BAD56/serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9
Certificate serial: 0243
Authority key identifier: 1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/AF13726403AD11F0B5D12A81C4F9AE02.roa
Signing time: Tue 18 Mar 2025 04:01:35 +0000
ROA not before: Tue 18 Mar 2025 04:01:35 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 153656
IP address blocks: 103.176.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 579 (0x243)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BAD56
Validity
Not Before: Mar 18 04:01:35 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67d8f01f-b0e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c9:1e:43:95:ae:dd:f7:7e:2b:1a:61:09:08:
a0:20:e6:ef:80:9f:e5:66:65:aa:f9:cf:1e:b3:d6:
63:fd:d0:7d:da:6f:77:99:66:ac:d9:34:16:07:a7:
fa:fe:32:fa:d6:95:0a:5d:bc:c5:fa:d5:26:81:46:
1c:fc:1f:a2:a4:ec:22:90:98:f3:20:63:38:d9:7d:
c0:55:1c:ee:d8:67:d0:5b:a6:38:56:ce:36:02:f6:
bc:d9:fc:38:1d:aa:ff:2d:ba:14:35:32:7b:b0:43:
fb:aa:dd:22:b3:05:f7:ad:d7:41:80:30:7c:25:b1:
d7:87:39:3c:36:3a:98:ae:6d:2f:dd:3c:5f:ba:3c:
f2:d1:13:eb:23:3f:54:6b:80:71:7b:5a:98:63:a5:
b8:fe:95:49:56:b0:52:bc:c6:1b:b5:cb:09:2b:aa:
d4:1d:86:fe:7c:76:7a:8c:0b:42:81:27:2b:60:0a:
68:cf:4f:42:f5:63:6d:4b:4d:33:84:e2:59:74:70:
8b:65:aa:c0:91:fb:98:f9:a8:42:f3:80:0d:5d:2b:
24:25:48:90:f8:d0:7a:9e:9c:5f:89:3e:0d:aa:0e:
44:f0:ea:c5:63:92:dd:4d:ae:e2:c1:46:9c:0a:04:
ea:33:69:9d:37:bc:32:52:eb:7c:6a:06:18:1d:f7:
bb:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:B3:4C:C3:94:4E:C8:75:27:86:C3:FE:34:DA:81:11:E6:97:EE:74
X509v3 Authority Key Identifier:
keyid:1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/AF13726403AD11F0B5D12A81C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.176.91.0/24
Signature Algorithm: sha256WithRSAEncryption
29:2e:06:93:a3:b7:23:83:fe:0b:20:c0:7e:67:d0:79:15:7b:
c6:60:a7:c8:14:fc:42:2c:7b:59:9a:7f:6b:a8:62:40:87:4c:
27:f8:21:dd:f4:21:01:91:da:1e:c3:79:c8:8b:2c:5e:08:88:
43:62:bf:57:21:35:a0:85:4b:c3:06:bf:1a:d8:af:22:5e:01:
46:18:2d:ca:22:a6:82:36:fc:35:3f:6e:5c:16:ce:6d:d4:1d:
ee:f4:80:28:c0:c0:af:36:01:c1:cb:a2:77:d4:45:03:21:fc:
7d:5f:4a:e1:ca:08:38:cf:f1:14:dc:45:72:b4:fc:3c:da:83:
83:84:89:09:83:b1:4b:25:29:91:46:5e:60:00:bd:f5:ec:53:
59:5a:9b:40:a5:f8:c1:f3:61:63:97:7b:14:67:35:2b:79:dd:
8c:4c:88:d4:d0:73:b8:be:96:a3:5c:08:72:0c:17:68:dc:f6:
ca:2a:50:46:25:ca:14:35:ce:06:58:c9:93:37:d3:c4:63:29:
45:00:4a:82:e6:da:bf:e4:da:c7:72:50:cc:cc:96:55:d8:b3:
0e:d6:bc:36:4e:b7:bd:e9:b6:3f:27:3c:a1:bd:0a:a1:71:3a:
e2:e8:8e:56:15:07:2f:74:67:b8:61:f2:15:d5:02:b4:36:15:
13:c4:66:be
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QkFENTYxMTAvBgNVBAUTKDFFRUNBMDNBNzc2NTJCOTA3MEI1RTEzMzgwOUEyMjM4
MzBDODlDRjkwHhcNMjUwMzE4MDQwMTM1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2Q4ZjAxZi1iMGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0ckeQ5Wu3fd+KxphCQigIObvgJ/lZmWq+c8es9Zj/dB92m93mWas2TQWB6f6
/jL61pUKXbzF+tUmgUYc/B+ipOwikJjzIGM42X3AVRzu2GfQW6Y4Vs42Ava82fw4
Har/LboUNTJ7sEP7qt0iswX3rddBgDB8JbHXhzk8NjqYrm0v3Txfujzy0RPrIz9U
a4Bxe1qYY6W4/pVJVrBSvMYbtcsJK6rUHYb+fHZ6jAtCgScrYApoz09C9WNtS00z
hOJZdHCLZarAkfuY+ahC84ANXSskJUiQ+NB6npxfiT4Nqg5E8OrFY5LdTa7iwUac
CgTqM2mdN7wyUut8agYYHfe7bQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLGzTMOU
Tsh1J4bD/jTagRHml+50MB8GA1UdIwQYMBaAFB7soDp3ZSuQcLXhM4CaIjgwyJz5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQ1Ni84MThCNEQwMjFB
QUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1Qnd0ZUV6Z0pvaU9ERElu
UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0h1eWdPbmRsSzVCd3RlRXpnSm9pT0RESW5Qay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QkFENTYvODE4QjREMDIxQUFFMTFFRDlCNzRBRTUxQzRGOUFFMDIvQUYxMzcyNjQw
M0FEMTFGMEI1RDEyQTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnsFswDQYJKoZIhvcNAQELBQADggEBACkuBpOjtyOD/gsg
wH5n0HkVe8Zgp8gU/EIse1maf2uoYkCHTCf4Id30IQGR2h7DeciLLF4IiENiv1ch
NaCFS8MGvxrYryJeAUYYLcoipoI2/DU/blwWzm3UHe70gCjAwK82AcHLonfURQMh
/H1fSuHKCDjP8RTcRXK0/Dzag4OEiQmDsUslKZFGXmAAvfXsU1lam0Cl+MHzYWOX
exRnNSt53YxMiNTQc7i+lqNcCHIMF2jc9soqUEYlyhQ1zgZYyZM308RjKUUASoLm
2r/k2sdyUMzMllXYsw7WvDZOt73ptj8nPKG9CqFxOuLojlYVBy90Z7hh8hXVArQ2
FRPEZr4=
-----END CERTIFICATE-----
Generated at Sat Apr 5 05:57:27 2025 by rpki-client