Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/38378A3EBA3411EBB94A527CC4F9AE02.roa
File: 38378A3EBA3411EBB94A527CC4F9AE02.roa (raw, json)
Hash identifier: bXfsV+JRththOFdM9JTTJyhVvibLKGVpju+gIvVc/Sk=
Subject key identifier: 4B:CC:D1:69:1A:BD:FE:C1:00:67:F9:CE:01:89:AF:8E:96:05:EE:A2
Certificate issuer: /CN=A91C1814/serialNumber=EF27E3C9F15B583B15CA9CCC3C905D229CE2F0D0
Certificate serial: 0596
Authority key identifier: EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/38378A3EBA3411EBB94A527CC4F9AE02.roa
Signing time: Thu 16 Jan 2025 23:12:36 +0000
ROA not before: Thu 16 Jan 2025 23:12:36 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 137197
IP address blocks: 103.104.184.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1430 (0x596)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C1814
Validity
Not Before: Jan 16 23:12:36 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67899263-5365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8d:4b:2e:cf:75:78:e6:0d:54:13:7a:ce:0b:
a0:18:29:bd:3f:07:4c:31:41:26:b0:d7:c7:a3:1f:
e8:1c:a4:43:8a:4f:14:8e:f0:91:7d:71:a6:59:6e:
ab:1c:24:86:9c:4c:1a:84:03:63:f7:60:19:b3:b8:
81:4a:fc:bc:cc:01:f2:00:14:26:37:f8:33:4c:a6:
b1:78:e9:9f:29:68:7d:af:11:56:e5:3e:7a:a5:33:
3e:17:6d:95:c7:62:a8:c1:b5:62:7c:df:21:3e:54:
1a:58:85:51:7c:66:dc:c8:f4:8d:08:aa:6e:48:f0:
21:7e:c8:b1:ed:d6:8b:20:69:84:37:c3:c0:4a:2a:
86:2e:07:0a:94:88:98:bf:74:26:d6:b3:1f:7f:d0:
1a:da:ec:cf:54:4e:e9:cf:44:36:14:87:71:34:10:
b6:46:34:af:e2:96:68:dd:76:ba:70:21:e5:d0:6c:
40:68:63:04:0c:88:70:cd:eb:41:07:4f:01:1f:a6:
ef:49:79:85:5b:dc:62:da:01:c1:3d:ff:dd:06:39:
4a:88:ba:6d:ed:e7:e2:34:e7:f3:2e:8d:ba:33:44:
2b:b5:df:d4:59:9f:26:66:93:d4:28:37:7f:62:48:
c8:90:78:3f:91:ce:09:c3:45:6a:e3:98:7f:c4:f6:
c3:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:CC:D1:69:1A:BD:FE:C1:00:67:F9:CE:01:89:AF:8E:96:05:EE:A2
X509v3 Authority Key Identifier:
keyid:EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/38378A3EBA3411EBB94A527CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.104.184.0/22
Signature Algorithm: sha256WithRSAEncryption
48:82:99:d3:00:70:26:7b:cc:20:bb:40:cd:6d:05:89:09:3f:
9e:58:e4:29:fc:ff:07:f9:ba:36:b7:f6:25:a2:b3:dc:51:2b:
46:3e:4a:3a:74:02:85:f0:4c:f6:05:73:10:ee:64:db:d1:97:
77:ae:78:7c:d7:66:da:e2:89:dd:c5:db:e4:aa:57:58:01:0c:
18:b1:94:ae:42:bf:65:c0:1b:58:fa:42:71:5a:09:e0:5a:07:
de:55:a9:68:f0:90:6a:e5:35:e8:20:1c:e3:00:4f:b7:e7:9a:
f5:e7:60:e1:4a:05:3d:ba:b7:c6:a0:c4:91:ed:e7:c6:92:f6:
70:ef:1d:57:ca:22:41:87:cb:9c:0b:95:1d:b3:94:c9:f7:14:
dd:5f:09:3f:16:11:f3:9c:bd:d3:16:3d:7f:f7:07:6d:6f:53:
24:09:83:5a:50:b4:a1:77:b7:f8:e0:54:a5:f4:4b:3a:5c:fa:
85:9b:cd:e6:7a:90:59:04:d9:bf:52:31:ea:88:d3:a5:af:2a:
c3:ca:ac:a6:c3:40:74:bc:3b:57:d4:1e:db:f4:7b:a5:0b:06:
29:27:c6:cc:f7:67:46:bd:cf:88:8d:f1:b5:c1:3c:d8:e9:49:
0f:28:de:9f:f1:11:9b:9d:1b:a2:30:a3:a0:fa:64:53:d9:4b:
89:86:cb:93
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICBZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzE4MTQxMTAvBgNVBAUTKEVGMjdFM0M5RjE1QjU4M0IxNUNBOUNDQzNDOTA1RDIy
OUNFMkYwRDAwHhcNMjUwMTE2MjMxMjM2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02Nzg5OTI2My01MzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqI1LLs91eOYNVBN6zgugGCm9PwdMMUEmsNfHox/oHKRDik8UjvCRfXGmWW6r
HCSGnEwahANj92AZs7iBSvy8zAHyABQmN/gzTKaxeOmfKWh9rxFW5T56pTM+F22V
x2KowbVifN8hPlQaWIVRfGbcyPSNCKpuSPAhfsix7daLIGmEN8PASiqGLgcKlIiY
v3Qm1rMff9Aa2uzPVE7pz0Q2FIdxNBC2RjSv4pZo3Xa6cCHl0GxAaGMEDIhwzetB
B08BH6bvSXmFW9xi2gHBPf/dBjlKiLpt7efiNOfzLo26M0Qrtd/UWZ8mZpPUKDd/
YkjIkHg/kc4Jw0Vq45h/xPbD2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEvM0Wka
vf7BAGf5zgGJr46WBe6iMB8GA1UdIwQYMBaAFO8n48nxW1g7FcqczDyQXSKc4vDQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTgxNC9GM0M4NTM5RUJB
MzExMUVCOUM2OUMxNzhDNEY5QUUwMi83eWZqeWZGYldEc1Z5cHpNUEpCZElwemk4
TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzd5Zmp5ZkZiV0RzVnlwek1QSkJkSXB6aThOQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QzE4MTQvRjNDODUzOUVCQTMxMTFFQjlDNjlDMTc4QzRGOUFFMDIvMzgzNzhBM0VC
QTM0MTFFQkI5NEE1MjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAJnaLgwDQYJKoZIhvcNAQELBQADggEBAEiCmdMAcCZ7zCC7
QM1tBYkJP55Y5Cn8/wf5uja39iWis9xRK0Y+Sjp0AoXwTPYFcxDuZNvRl3eueHzX
Ztriid3F2+SqV1gBDBixlK5Cv2XAG1j6QnFaCeBaB95VqWjwkGrlNeggHOMAT7fn
mvXnYOFKBT26t8agxJHt58aS9nDvHVfKIkGHy5wLlR2zlMn3FN1fCT8WEfOcvdMW
PX/3B21vUyQJg1pQtKF3t/jgVKX0Szpc+oWbzeZ6kFkE2b9SMeqI06WvKsPKrKbD
QHS8O1fUHtv0e6ULBiknxsz3Z0a9z4iN8bXBPNjpSQ8o3p/xEZudG6Iwo6D6ZFPZ
S4mGy5M=
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:08:04 2025 by rpki-client