Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/E5BB4DB260E411EF83727F5CC4F9AE02.roa
File: E5BB4DB260E411EF83727F5CC4F9AE02.roa (raw, json)
Hash identifier: sjsLTuWeFwgevoPUUjQqWdyEX8OASo8b7yHbpb8l0pc=
Subject key identifier: D8:4B:BE:F1:2E:5E:85:6B:84:60:6D:40:BF:E3:B7:DE:5C:A9:AA:1C
Certificate issuer: /CN=A91CCD0C/serialNumber=352C2F42FFF66CB86A69C67EE61BAB6E11154ECB
Certificate serial: 85
Authority key identifier: 35:2C:2F:42:FF:F6:6C:B8:6A:69:C6:7E:E6:1B:AB:6E:11:15:4E:CB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/E5BB4DB260E411EF83727F5CC4F9AE02.roa
Signing time: Mon 03 Mar 2025 08:29:19 +0000
ROA not before: Mon 03 Mar 2025 08:29:19 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 38716
IP address blocks: 103.161.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133 (0x85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CCD0C
Validity
Not Before: Mar 3 08:29:19 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67c5685f-2712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9b:26:34:09:ee:c9:d6:20:b7:97:69:59:c1:
13:67:0d:50:e5:95:4d:5a:aa:ce:b6:d5:96:98:7f:
3e:d4:be:86:f5:12:17:1d:82:45:81:d3:3a:85:09:
10:80:c7:2a:b0:8c:f4:9f:bc:a2:c4:e1:9a:fc:29:
bc:21:ae:b5:14:90:4c:44:01:39:5a:1a:06:03:12:
c6:9b:ff:20:ac:02:21:25:1f:d9:7b:c5:a6:42:18:
4e:95:c7:01:06:26:02:8d:aa:74:fd:c2:8f:14:3b:
81:97:f9:ad:bc:0f:17:75:83:dc:45:e2:1e:11:fd:
6b:cc:eb:cf:13:03:64:8d:d5:5e:58:61:27:69:e2:
a7:9f:e8:ae:89:2e:66:43:9b:f8:24:03:2f:a5:3e:
f1:06:26:42:75:61:04:f6:0e:b5:e3:b7:8a:90:ed:
82:ba:68:f7:e7:d1:ce:31:9e:05:ca:e0:53:83:5c:
1a:39:fa:2f:20:22:b4:41:42:2d:4a:16:ae:72:2e:
d1:d1:08:38:3f:d3:33:5c:c0:3c:4d:ef:48:1d:56:
e4:85:c3:7c:01:16:98:b8:d6:99:7d:16:ae:5d:df:
3e:2b:d7:35:9f:57:08:d3:5b:25:5b:0f:21:77:92:
1f:44:f3:08:c5:4b:74:24:0c:ff:50:59:e2:c5:39:
a4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:4B:BE:F1:2E:5E:85:6B:84:60:6D:40:BF:E3:B7:DE:5C:A9:AA:1C
X509v3 Authority Key Identifier:
keyid:35:2C:2F:42:FF:F6:6C:B8:6A:69:C6:7E:E6:1B:AB:6E:11:15:4E:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/E5BB4DB260E411EF83727F5CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.161.227.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:b9:d3:f7:fe:c3:df:73:d1:24:17:05:c4:4f:5f:41:bb:54:
bb:57:ea:fe:73:85:df:b5:b1:b2:93:47:66:97:cb:54:b9:e3:
ba:ea:a7:f5:ad:9f:5b:97:33:63:b5:d2:a8:24:37:16:7f:a8:
bd:9f:a8:1e:31:cb:6b:ab:c5:59:56:19:d9:15:5b:f7:28:d7:
6a:81:c3:3e:98:b2:79:76:03:2e:01:d2:01:92:90:5e:87:9a:
a3:0c:13:aa:98:07:9b:c5:c7:67:3c:72:ac:aa:6d:ee:d7:82:
63:31:b7:45:72:5c:7d:8a:67:7f:3f:9b:96:47:e5:e7:05:bf:
63:8b:57:5a:28:3a:24:02:ee:37:ae:f5:da:13:4c:11:f9:0a:
00:30:55:b5:5e:c1:68:fe:f5:d9:63:25:8c:8e:ed:46:e7:22:
85:43:78:44:91:fa:83:e5:12:ec:c6:f0:87:44:da:52:cd:17:
34:be:f2:75:43:8f:70:37:4e:ce:a3:9d:aa:40:eb:bc:46:17:
b2:96:f5:d1:fc:a1:5c:33:b2:76:af:2c:9f:db:91:dd:2c:bc:
e5:1b:ac:33:2b:0a:51:a8:66:88:aa:fd:f4:e1:8a:a8:15:0f:
0c:c3:46:01:73:0f:9a:63:28:aa:87:53:57:16:80:fd:95:79:
a2:ac:bc:68
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0NEMEMxMTAvBgNVBAUTKDM1MkMyRjQyRkZGNjZDQjg2QTY5QzY3RUU2MUJBQjZF
MTExNTRFQ0IwHhcNMjUwMzAzMDgyOTE5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2M1Njg1Zi0yNzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr5smNAnuydYgt5dpWcETZw1Q5ZVNWqrOttWWmH8+1L6G9RIXHYJFgdM6hQkQ
gMcqsIz0n7yixOGa/Cm8Ia61FJBMRAE5WhoGAxLGm/8grAIhJR/Ze8WmQhhOlccB
BiYCjap0/cKPFDuBl/mtvA8XdYPcReIeEf1rzOvPEwNkjdVeWGEnaeKnn+iuiS5m
Q5v4JAMvpT7xBiZCdWEE9g6147eKkO2Cumj359HOMZ4FyuBTg1waOfovICK0QUIt
Shauci7R0Qg4P9MzXMA8Te9IHVbkhcN8ARaYuNaZfRauXd8+K9c1n1cI01slWw8h
d5IfRPMIxUt0JAz/UFnixTmkLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNhLvvEu
XoVrhGBtQL/jt95cqaocMB8GA1UdIwQYMBaAFDUsL0L/9my4amnGfuYbq24RFU7L
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0QwQy84MTlBMDIzNDMy
Q0IxMUVGOUVBMEM5NkFDNEY5QUUwMi9OU3d2UXZfMmJMaHFhY1otNWh1cmJoRVZU
c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL05Td3ZRdl8yYkxocWFjWi01aHVyYmhFVlRzcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Q0NEMEMvODE5QTAyMzQzMkNCMTFFRjlFQTBDOTZBQzRGOUFFMDIvRTVCQjREQjI2
MEU0MTFFRjgzNzI3RjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnoeMwDQYJKoZIhvcNAQELBQADggEBAK250/f+w99z0SQX
BcRPX0G7VLtX6v5zhd+1sbKTR2aXy1S547rqp/Wtn1uXM2O10qgkNxZ/qL2fqB4x
y2urxVlWGdkVW/co12qBwz6Ysnl2Ay4B0gGSkF6HmqMME6qYB5vFx2c8cqyqbe7X
gmMxt0VyXH2KZ38/m5ZH5ecFv2OLV1ooOiQC7jeu9doTTBH5CgAwVbVewWj+9dlj
JYyO7UbnIoVDeESR+oPlEuzG8IdE2lLNFzS+8nVDj3A3Ts6jnapA67xGF7KW9dH8
oVwzsnavLJ/bkd0svOUbrDMrClGoZoiq/fThiqgVDwzDRgFzD5pjKKqHU1cWgP2V
eaKsvGg=
-----END CERTIFICATE-----
Generated at Fri Apr 11 15:13:25 2025 by rpki-client