Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/7633392033B411EB98035F74C4F9AE02.roa
File: 7633392033B411EB98035F74C4F9AE02.roa (raw, json)
Hash identifier: 2z51i9dV66CcllhW8qVIGTGYHAdnhuR+CInt6YNJqFk=
Subject key identifier: 62:21:26:EA:50:FD:14:DA:8A:CD:4B:87:59:F7:AB:DD:4E:1A:94:64
Certificate issuer: /CN=A91CCA34/serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B
Certificate serial: 06B2
Authority key identifier: BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/7633392033B411EB98035F74C4F9AE02.roa
Signing time: Tue 24 Sep 2024 22:12:00 +0000
ROA not before: Tue 24 Sep 2024 22:12:00 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 138339
IP address blocks: 103.130.148.0/22 maxlen: 22
2403:bc40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1714 (0x6b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CCA34
Validity
Not Before: Sep 24 22:12:00 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66f33930-e3b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:03:cc:98:dc:d1:fc:8c:cf:ed:c0:9a:e1:9d:
54:cb:48:10:39:74:38:ee:c4:8f:1e:0a:be:eb:6b:
6d:de:9e:8d:84:59:78:48:06:5e:a1:bd:15:08:1e:
8e:81:53:52:75:77:e4:8e:ae:75:82:26:a2:0f:71:
43:33:67:f9:0d:cd:0e:64:60:b3:e0:b5:18:5e:f4:
3d:6f:42:37:71:d6:5f:80:ac:fc:52:22:ae:27:f1:
37:f6:3a:7b:f3:b5:e9:e0:09:c1:82:67:c0:72:f6:
b7:86:8c:8c:b1:8d:db:2f:cb:9d:ec:ae:0a:3c:95:
04:52:51:8b:51:e5:b8:4d:be:33:a3:13:ae:8e:af:
8b:02:d6:6c:82:e3:77:48:8b:e5:87:da:e4:f6:d3:
be:1e:d9:c5:90:be:32:aa:fe:80:c7:52:ac:5e:56:
71:fb:1e:a2:3d:83:6b:21:2d:c8:89:f3:42:b6:8e:
99:fb:f5:03:2c:bd:f7:6d:a0:6e:66:67:3b:34:7d:
9b:d3:c6:8c:9e:be:df:34:b1:16:7d:74:90:0c:05:
f3:98:57:bb:b3:34:ed:9e:1e:01:40:69:14:67:56:
fd:18:dd:4c:36:e1:36:84:e1:ab:9f:d3:8f:88:08:
51:87:47:68:70:b2:35:a2:f8:c9:be:94:54:2d:cf:
76:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:21:26:EA:50:FD:14:DA:8A:CD:4B:87:59:F7:AB:DD:4E:1A:94:64
X509v3 Authority Key Identifier:
keyid:BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/7633392033B411EB98035F74C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.148.0/22
IPv6:
2403:bc40::/32
Signature Algorithm: sha256WithRSAEncryption
b6:fb:54:d2:1e:98:8f:33:20:56:4d:78:df:7b:d7:7a:34:77:
01:6c:7b:8f:c0:05:f8:af:93:72:03:18:ed:1b:95:57:03:af:
36:81:de:4d:f3:fc:4d:37:36:13:77:54:b4:93:97:f5:43:24:
76:d7:c8:cd:5b:12:c2:a2:e5:45:32:9d:e5:f8:bd:1c:e4:bc:
32:c4:42:44:a3:9d:64:97:12:3a:92:92:2e:36:cc:0b:99:b1:
01:99:9f:e1:e1:3e:2f:46:04:6b:db:17:ea:25:b3:a4:6f:e2:
b4:cf:38:c1:d7:45:bb:8a:6e:4f:46:4d:fb:eb:40:df:8e:5b:
a8:50:13:35:54:ce:71:79:f0:29:38:24:8a:b1:d7:a2:83:d2:
09:5c:0f:58:32:a0:cd:2e:52:70:be:bc:bd:56:89:21:c6:64:
d4:7c:b6:19:e4:73:73:2f:e2:08:36:7c:8a:70:a7:77:ec:66:
f5:0c:3c:63:10:f6:af:93:2c:45:75:1a:96:ad:d7:d0:05:0e:
33:1b:c2:31:19:4e:af:23:52:0e:39:8e:c0:29:fe:68:c0:d8:
73:47:50:ce:b2:05:65:23:fb:50:42:2e:ee:12:d9:75:a0:35:
b1:39:4a:12:c6:0b:05:58:dc:63:bb:35:f3:da:69:ce:95:a7:
c6:d7:fd:31
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0NBMzQxMTAvBgNVBAUTKEJDMTQ0OUVFOTc5MTExQUI3MEQ4REY5OERBQkE0RTI2
QkE2QkM2NUIwHhcNMjQwOTI0MjIxMjAwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmYzMzkzMC1lM2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA/APMmNzR/IzP7cCa4Z1Uy0gQOXQ47sSPHgq+62tt3p6NhFl4SAZeob0VCB6O
gVNSdXfkjq51giaiD3FDM2f5Dc0OZGCz4LUYXvQ9b0I3cdZfgKz8UiKuJ/E39jp7
87Xp4AnBgmfAcva3hoyMsY3bL8ud7K4KPJUEUlGLUeW4Tb4zoxOujq+LAtZsguN3
SIvlh9rk9tO+HtnFkL4yqv6Ax1KsXlZx+x6iPYNrIS3IifNCto6Z+/UDLL33baBu
Zmc7NH2b08aMnr7fNLEWfXSQDAXzmFe7szTtnh4BQGkUZ1b9GN1MNuE2hOGrn9OP
iAhRh0docLI1ovjJvpRULc927wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGIhJupQ
/RTais1Lh1n3q91OGpRkMB8GA1UdIwQYMBaAFLwUSe6XkRGrcNjfmNq6Tia6a8Zb
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0EzNC82RkFBMzY3ODMz
QjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVhdHcyTi1ZMnJwT0pycHJ4
bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3ZCUko3cGVSRWF0dzJOLVkycnBPSnJwcnhscy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Q0NBMzQvNkZBQTM2NzgzM0IyMTFFQkE4OEEwQTZGQzRGOUFFMDIvNzYzMzM5MjAz
M0I0MTFFQjk4MDM1Rjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E
HzAdMAwEAgABMAYDBAJngpQwDQQCAAIwBwMFACQDvEAwDQYJKoZIhvcNAQELBQAD
ggEBALb7VNIemI8zIFZNeN9713o0dwFse4/ABfivk3IDGO0blVcDrzaB3k3z/E03
NhN3VLSTl/VDJHbXyM1bEsKi5UUyneX4vRzkvDLEQkSjnWSXEjqSki42zAuZsQGZ
n+HhPi9GBGvbF+ols6Rv4rTPOMHXRbuKbk9GTfvrQN+OW6hQEzVUznF58Ck4JIqx
16KD0glcD1gyoM0uUnC+vL1WiSHGZNR8thnkc3Mv4gg2fIpwp3fsZvUMPGMQ9q+T
LEV1Gpat19AFDjMbwjEZTq8jUg45jsAp/mjA2HNHUM6yBWUj+1BCLu4S2XWgNbE5
ShLGCwVY3GO7NfPaac6Vp8bX/TE=
-----END CERTIFICATE-----
Generated at Sun Apr 6 01:46:49 2025 by rpki-client