Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/4EEE01FCE15611EF9560323EC4F9AE02.roa
File: 4EEE01FCE15611EF9560323EC4F9AE02.roa (raw, json)
Hash identifier: x8jTl1An+uSOMMAGf8hO7SL91nc57EGm6DraZTYeQXE=
Subject key identifier: 6C:FC:0A:88:32:1A:F6:C1:DF:2E:03:7C:64:22:10:08:62:CE:6E:48
Certificate issuer: /CN=A91CD096/serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33
Certificate serial: 0D42
Authority key identifier: 0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/4EEE01FCE15611EF9560323EC4F9AE02.roa
Signing time: Sun 02 Feb 2025 11:10:28 +0000
ROA not before: Sun 02 Feb 2025 11:10:28 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138983
IP address blocks: 103.138.30.0/24 maxlen: 24
103.138.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3394 (0xd42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD096
Validity
Not Before: Feb 2 11:10:28 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=679f52a4-ce8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a1:8a:94:35:b0:9a:cf:ac:8a:30:26:7f:1a:
00:8a:98:f3:f3:c5:87:f3:6d:b5:c9:37:9c:24:53:
0e:db:e4:1b:25:8a:ee:57:0f:b9:12:af:61:97:60:
a2:d6:28:17:73:4f:c1:e1:3c:53:58:51:47:4d:dd:
17:fe:6b:93:bd:fd:cb:92:cd:17:b9:fd:9e:96:83:
60:c8:96:b7:c6:7f:95:5e:b9:4d:0f:ca:23:46:85:
b1:15:3a:d2:22:ec:ff:3a:fa:10:ea:b2:0d:5c:bd:
2a:6d:98:18:e9:75:ea:4f:40:8d:02:e2:54:82:69:
b1:f8:5d:da:47:1c:a4:53:cc:b1:7b:12:eb:ef:6e:
5f:96:a7:25:01:43:d5:f5:61:a6:ee:51:31:54:7f:
cf:a5:7c:3d:91:b2:7d:f3:06:6c:f5:4a:76:fd:8a:
1f:41:0f:b2:33:7f:21:da:69:c1:55:29:fb:bc:21:
c7:99:62:30:e4:5b:39:68:d3:83:02:c6:dd:b7:86:
d1:23:f9:99:fb:1c:19:ec:9d:0c:29:78:70:67:48:
59:83:07:71:23:21:12:d7:10:86:3d:42:1a:6b:95:
df:73:8b:b2:b1:f2:07:2a:c3:be:b9:31:c8:8c:3c:
ee:ea:b7:fa:99:c4:4a:5d:70:6d:d6:09:fa:32:b1:
65:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:FC:0A:88:32:1A:F6:C1:DF:2E:03:7C:64:22:10:08:62:CE:6E:48
X509v3 Authority Key Identifier:
keyid:0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/4EEE01FCE15611EF9560323EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.30.0/23
Signature Algorithm: sha256WithRSAEncryption
59:74:15:05:ab:6b:46:5d:1f:02:26:2f:c8:f8:78:4b:e1:02:
77:83:93:1d:cc:23:d7:78:22:ba:76:4f:1e:90:73:5c:ac:7e:
05:a9:4f:28:0e:7a:3b:49:4e:9c:29:af:a9:35:d9:d6:35:3b:
78:06:7f:16:37:da:62:14:6f:33:34:44:82:66:db:26:bc:3d:
f7:5d:e0:d4:fd:bc:08:4e:60:27:35:4f:57:d5:9a:48:af:42:
57:c0:a3:11:65:f5:a3:73:1f:73:c5:e7:19:42:f2:b4:e2:40:
08:d6:5d:eb:c8:10:44:e1:c6:35:9c:f2:4a:ed:1d:3b:c8:39:
2e:e1:68:b0:53:24:7b:c3:c3:38:22:d5:f1:a4:ea:af:7d:89:
bf:e6:ad:3c:10:6f:a1:2d:f5:fc:27:62:d4:01:59:73:ec:8c:
97:b4:4a:1d:a3:ec:c8:45:63:ed:1c:58:bc:8b:6c:df:50:bb:
a1:1a:f1:e6:21:e2:65:b6:00:d0:97:ea:ae:56:52:0d:47:a0:
a7:b7:da:01:eb:db:f4:6e:88:33:08:7d:2b:c4:1a:56:6f:fc:
e2:57:4f:33:57:bf:26:f1:b8:63:32:1b:83:4d:03:31:38:79:
37:5e:83:15:d8:58:47:5a:53:e4:44:6a:6d:eb:69:91:72:c4:
06:38:37:8b
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICDUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0QwOTYxMTAvBgNVBAUTKDBBMkU1REYxQjJDM0Q3OTdERUExNTM2N0ZBQTlEQzM4
ODRDRDFCMzMwHhcNMjUwMjAyMTExMDI4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzlmNTJhNC1jZThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuKGKlDWwms+sijAmfxoAipjz88WH8221yTecJFMO2+QbJYruVw+5Eq9hl2Ci
1igXc0/B4TxTWFFHTd0X/muTvf3Lks0Xuf2eloNgyJa3xn+VXrlND8ojRoWxFTrS
Iuz/OvoQ6rINXL0qbZgY6XXqT0CNAuJUgmmx+F3aRxykU8yxexLr725flqclAUPV
9WGm7lExVH/PpXw9kbJ98wZs9Up2/YofQQ+yM38h2mnBVSn7vCHHmWIw5Fs5aNOD
Asbdt4bRI/mZ+xwZ7J0MKXhwZ0hZgwdxIyES1xCGPUIaa5Xfc4uysfIHKsO+uTHI
jDzu6rf6mcRKXXBt1gn6MrFlHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGz8Cogy
GvbB3y4DfGQiEAhizm5IMB8GA1UdIwQYMBaAFAouXfGyw9eX3qFTZ/qp3DiEzRsz
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDA5Ni9FNTA0MkMyQUNB
MzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1ZmVvVk5uLXFuY09JVE5H
ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0NpNWQ4YkxEMTVmZW9WTm4tcW5jT0lUTkd6TS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Q0QwOTYvRTUwNDJDMkFDQTMyMTFFOUE3MzlCNzUzQzRGOUFFMDIvNEVFRTAxRkNF
MTU2MTFFRjk1NjAzMjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnih4wDQYJKoZIhvcNAQELBQADggEBAFl0FQWra0ZdHwIm
L8j4eEvhAneDkx3MI9d4Irp2Tx6Qc1ysfgWpTygOejtJTpwpr6k12dY1O3gGfxY3
2mIUbzM0RIJm2ya8Pfdd4NT9vAhOYCc1T1fVmkivQlfAoxFl9aNzH3PF5xlC8rTi
QAjWXevIEEThxjWc8krtHTvIOS7haLBTJHvDwzgi1fGk6q99ib/mrTwQb6Et9fwn
YtQBWXPsjJe0Sh2j7MhFY+0cWLyLbN9Qu6Ea8eYh4mW2ANCX6q5WUg1HoKe32gHr
2/RuiDMIfSvEGlZv/OJXTzNXvybxuGMyG4NNAzE4eTdegxXYWEdaU+REam3raZFy
xAY4N4s=
-----END CERTIFICATE-----
Generated at Sun Apr 6 07:53:23 2025 by rpki-client