Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/122052A03DD811EBAE99F45CC4F9AE02.roa
File: 122052A03DD811EBAE99F45CC4F9AE02.roa (raw, json)
Hash identifier: QraXnZCET4DytM5/10lXcxYbwH8hmrtP3mDCaQ6jJXk=
Subject key identifier: 77:00:CD:F1:D1:2E:20:37:68:99:F8:37:98:F7:10:49:05:A8:D2:C4
Certificate issuer: /CN=A91CB816/serialNumber=BD06BDBF8B0EEDBC9F07395A65254FCB8583989D
Certificate serial: 06CD
Authority key identifier: BD:06:BD:BF:8B:0E:ED:BC:9F:07:39:5A:65:25:4F:CB:85:83:98:9D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQa9v4sO7byfBzlaZSVPy4WDmJ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/122052A03DD811EBAE99F45CC4F9AE02.roa
Signing time: Thu 02 Jan 2025 21:51:08 +0000
ROA not before: Thu 02 Jan 2025 21:51:08 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 139674
IP address blocks: 103.147.56.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1741 (0x6cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CB816
Validity
Not Before: Jan 2 21:51:08 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67770a4c-2001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f1:0c:2c:4e:e3:9c:af:b4:40:0b:9f:e2:55:
cf:17:02:bd:3a:27:cb:7b:f2:fd:96:71:61:6b:fa:
2f:75:f5:07:03:bc:b0:51:4e:66:1b:19:6a:df:28:
35:79:37:eb:24:18:8d:9e:73:93:74:03:fc:b1:a2:
21:51:64:48:5b:59:89:8c:2f:28:2e:e4:80:64:02:
56:85:08:ca:50:d8:fe:2b:28:cc:96:4e:87:eb:24:
6d:b2:a6:2d:24:b4:72:8a:c7:2c:33:30:23:71:e2:
6f:3f:46:9c:e0:ea:76:57:d9:29:0c:73:bd:04:7a:
71:8e:c9:bb:3f:fa:9a:c5:f6:db:6b:ad:c7:00:1d:
d3:25:ad:5f:ae:f7:89:1b:70:24:74:4f:75:47:03:
52:08:c2:dc:6b:d6:6a:33:1e:0a:2c:be:33:d1:c6:
f8:ae:73:8e:62:51:b9:4d:6f:4d:ef:9e:f9:8e:31:
19:00:15:77:46:e4:e0:65:7d:73:93:97:f2:a0:39:
ea:0b:4d:c8:ce:21:35:73:07:15:9b:f8:c7:20:68:
11:f3:bf:7b:6c:a9:7f:88:3d:15:81:0e:79:91:9a:
83:3d:1e:9d:d3:9b:ba:36:21:bd:67:98:63:99:d4:
d2:b1:6d:87:ff:35:62:fe:4d:91:70:7b:68:c8:2c:
f2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:00:CD:F1:D1:2E:20:37:68:99:F8:37:98:F7:10:49:05:A8:D2:C4
X509v3 Authority Key Identifier:
keyid:BD:06:BD:BF:8B:0E:ED:BC:9F:07:39:5A:65:25:4F:CB:85:83:98:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/vQa9v4sO7byfBzlaZSVPy4WDmJ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQa9v4sO7byfBzlaZSVPy4WDmJ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/122052A03DD811EBAE99F45CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.56.0/23
Signature Algorithm: sha256WithRSAEncryption
24:ae:b7:64:62:3b:f9:16:5f:76:ad:aa:f8:f6:5f:fa:a0:80:
b3:45:63:0f:1c:31:c8:57:dc:53:9b:d7:03:1c:ca:08:5f:c3:
99:50:c1:d7:d2:5a:6c:2f:57:88:61:d0:6a:34:ab:6c:97:b8:
f0:bd:5a:80:99:84:ac:8b:2d:28:34:bd:01:51:b8:f9:aa:17:
e6:c8:2a:87:91:c5:da:79:e0:fc:3b:45:ca:5f:74:80:96:a8:
46:09:e8:bc:bf:0b:75:67:c6:1b:95:9a:0b:1c:a9:6e:c5:21:
0a:fe:bb:55:bb:66:9c:b5:be:92:f3:0d:6f:15:99:47:44:12:
dc:54:41:be:1c:05:b7:4a:f5:a4:d2:cc:f7:d9:cc:dc:da:5d:
6c:c3:96:68:04:c6:4f:b9:bf:4c:5e:16:2b:a0:37:f8:66:7c:
8b:84:31:b9:0b:0e:35:f5:16:2c:c1:50:f6:32:89:f9:0a:93:
c0:f3:cd:90:da:8c:e3:f7:17:48:e3:ae:c4:d5:db:d1:2c:7d:
d8:a4:1c:c5:ff:2c:62:e4:d4:90:c3:bb:e9:05:80:4c:3b:bc:
95:03:a8:04:1d:0d:41:9c:e2:01:4f:24:f9:ee:13:13:62:58:
fb:ba:6b:43:b0:ae:69:25:ff:d8:2c:af:89:5e:6a:35:6c:88:
7f:63:55:46
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICBs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0I4MTYxMTAvBgNVBAUTKEJEMDZCREJGOEIwRUVEQkM5RjA3Mzk1QTY1MjU0RkNC
ODU4Mzk4OUQwHhcNMjUwMTAyMjE1MTA4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02Nzc3MGE0Yy0yMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAmfEMLE7jnK+0QAuf4lXPFwK9OifLe/L9lnFha/ovdfUHA7ywUU5mGxlq3yg1
eTfrJBiNnnOTdAP8saIhUWRIW1mJjC8oLuSAZAJWhQjKUNj+KyjMlk6H6yRtsqYt
JLRyiscsMzAjceJvP0ac4Op2V9kpDHO9BHpxjsm7P/qaxfbba63HAB3TJa1frveJ
G3AkdE91RwNSCMLca9ZqMx4KLL4z0cb4rnOOYlG5TW9N7575jjEZABV3RuTgZX1z
k5fyoDnqC03IziE1cwcVm/jHIGgR8797bKl/iD0VgQ55kZqDPR6d05u6NiG9Z5hj
mdTSsW2H/zVi/k2RcHtoyCzyAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHcAzfHR
LiA3aJn4N5j3EEkFqNLEMB8GA1UdIwQYMBaAFL0Gvb+LDu28nwc5WmUlT8uFg5id
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjgxNi82MTA0NjYxMDNE
RDYxMUVCQTA2MDJDNUJDNEY5QUUwMi92UWE5djRzTzdieWZCemxhWlNWUHk0V0Rt
SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3ZRYTl2NHNPN2J5ZkJ6bGFaU1ZQeTRXRG1KMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Q0I4MTYvNjEwNDY2MTAzREQ2MTFFQkEwNjAyQzVCQzRGOUFFMDIvMTIyMDUyQTAz
REQ4MTFFQkFFOTlGNDVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnkzgwDQYJKoZIhvcNAQELBQADggEBACSut2RiO/kWX3at
qvj2X/qggLNFYw8cMchX3FOb1wMcyghfw5lQwdfSWmwvV4hh0Go0q2yXuPC9WoCZ
hKyLLSg0vQFRuPmqF+bIKoeRxdp54Pw7RcpfdICWqEYJ6Ly/C3VnxhuVmgscqW7F
IQr+u1W7Zpy1vpLzDW8VmUdEEtxUQb4cBbdK9aTSzPfZzNzaXWzDlmgExk+5v0xe
FiugN/hmfIuEMbkLDjX1FizBUPYyifkKk8DzzZDajOP3F0jjrsTV29EsfdikHMX/
LGLk1JDDu+kFgEw7vJUDqAQdDUGc4gFPJPnuExNiWPu6a0Owrmkl/9gsr4leajVs
iH9jVUY=
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:22:47 2025 by rpki-client