Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D415B/5C543684F1CD11EC9339B95FC4F9AE02/A98754E2F1D011ECA4B56760C4F9AE02.roa
File: A98754E2F1D011ECA4B56760C4F9AE02.roa (raw, json)
Hash identifier: dMqJTsYzp1pmPIaM1/eJLOhl+l3EGAIHqHSSCk8rEN0=
Subject key identifier: 31:E5:C1:42:AA:0B:8E:6A:09:F3:43:54:F8:1A:C2:E8:B2:0E:0A:40
Certificate issuer: /CN=A91D415B/serialNumber=6AC4C1B4B691BECF12DDF7265F9626D59AC766CC
Certificate serial: 0293
Authority key identifier: 6A:C4:C1:B4:B6:91:BE:CF:12:DD:F7:26:5F:96:26:D5:9A:C7:66:CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/asTBtLaRvs8S3fcmX5Ym1ZrHZsw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D415B/5C543684F1CD11EC9339B95FC4F9AE02/A98754E2F1D011ECA4B56760C4F9AE02.roa
Signing time: Tue 25 Feb 2025 03:14:55 +0000
ROA not before: Tue 25 Feb 2025 03:14:55 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 138583
IP address blocks: 103.133.212.0/24 maxlen: 24
2001:df7:bb80::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 659 (0x293)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D415B
Validity
Not Before: Feb 25 03:14:55 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67bd35af-d266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:10:3e:bb:93:eb:e2:1d:b3:f0:4d:00:6e:af:
6e:80:d3:be:a1:29:b4:9e:75:e7:8f:fc:f6:79:3e:
fa:f3:92:c7:02:33:02:08:05:28:88:b2:54:08:73:
77:bf:95:f3:31:6f:35:1f:51:5d:01:31:21:e2:db:
84:51:3d:92:9b:13:b1:4f:59:01:c4:0b:05:29:c7:
5a:41:6a:07:58:34:01:56:4f:c9:ce:8a:46:ea:50:
ea:5c:59:cc:e5:91:01:c6:91:e5:74:17:c8:40:33:
da:44:a9:7a:88:a3:51:1f:c4:20:c5:64:c9:73:43:
62:b2:cb:da:83:fe:ab:03:e9:bc:15:a1:86:b4:8b:
db:24:96:4c:bc:d3:50:c8:aa:95:b6:f1:93:07:6d:
c4:d6:14:87:cd:97:80:72:11:92:db:9e:41:f9:6f:
1b:80:0f:85:99:9f:af:10:6d:5a:90:8c:f0:e2:c9:
cd:d9:a1:ab:3e:01:f1:19:af:74:3c:bc:aa:a2:a0:
37:45:48:1d:f1:a4:fe:2b:da:84:e8:ca:11:b9:c2:
6d:da:ad:27:3c:7b:53:47:2f:60:fd:d0:7e:b7:53:
91:54:04:44:a0:42:87:48:35:ad:c8:52:6c:36:08:
f8:92:76:76:9f:67:66:68:2d:df:38:da:22:2c:d5:
8b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:E5:C1:42:AA:0B:8E:6A:09:F3:43:54:F8:1A:C2:E8:B2:0E:0A:40
X509v3 Authority Key Identifier:
keyid:6A:C4:C1:B4:B6:91:BE:CF:12:DD:F7:26:5F:96:26:D5:9A:C7:66:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D415B/5C543684F1CD11EC9339B95FC4F9AE02/asTBtLaRvs8S3fcmX5Ym1ZrHZsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/asTBtLaRvs8S3fcmX5Ym1ZrHZsw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D415B/5C543684F1CD11EC9339B95FC4F9AE02/A98754E2F1D011ECA4B56760C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.212.0/24
IPv6:
2001:df7:bb80::/48
Signature Algorithm: sha256WithRSAEncryption
85:b0:f8:0e:28:b8:d8:a7:ac:f7:b7:b6:ad:5f:58:a6:b7:bb:
86:42:03:17:dc:cd:55:bb:98:e2:6e:08:15:f6:79:7d:9c:3e:
bb:e1:18:26:c7:93:0d:77:5b:c9:46:dd:08:bd:4b:7c:c8:1d:
45:d9:c3:35:50:13:29:29:e4:c2:7f:cd:b1:3c:28:99:24:a8:
5b:d7:7c:16:a1:85:8c:cb:68:b7:f6:e6:5e:e0:b0:58:b8:f1:
b7:e9:a4:16:9b:14:43:27:a7:fe:13:01:03:10:39:28:cc:f1:
5f:c3:a6:a7:33:a0:25:06:19:59:f8:a7:d2:ff:e1:f2:f0:f6:
6a:df:2d:f7:f0:55:cc:60:49:22:3f:75:14:67:f3:8b:0a:5f:
9d:47:71:6a:83:0f:e8:90:a8:05:b9:4f:cf:01:29:df:8c:2c:
16:76:c1:2f:49:69:f1:fa:63:8e:bc:f0:98:5c:4e:2c:78:52:
fc:f7:4f:09:e2:68:02:47:66:b0:26:0e:da:73:c9:b8:94:22:
2c:80:f5:fa:f4:7a:e1:ad:2a:ba:6b:aa:14:58:6a:e0:6f:44:
f3:18:26:a7:e0:18:a4:06:b7:c4:02:89:45:87:21:a1:59:c1:
32:49:f3:ae:aa:5e:a9:a4:38:b1:11:89:ad:f1:ef:80:59:86:
d4:df:0f:33
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDQxNUIxMTAvBgNVBAUTKDZBQzRDMUI0QjY5MUJFQ0YxMkRERjcyNjVGOTYyNkQ1
OUFDNzY2Q0MwHhcNMjUwMjI1MDMxNDU1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2JkMzVhZi1kMjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyhA+u5Pr4h2z8E0Abq9ugNO+oSm0nnXnj/z2eT7685LHAjMCCAUoiLJUCHN3
v5XzMW81H1FdATEh4tuEUT2SmxOxT1kBxAsFKcdaQWoHWDQBVk/JzopG6lDqXFnM
5ZEBxpHldBfIQDPaRKl6iKNRH8QgxWTJc0Nissvag/6rA+m8FaGGtIvbJJZMvNNQ
yKqVtvGTB23E1hSHzZeAchGS255B+W8bgA+FmZ+vEG1akIzw4snN2aGrPgHxGa90
PLyqoqA3RUgd8aT+K9qE6MoRucJt2q0nPHtTRy9g/dB+t1ORVAREoEKHSDWtyFJs
Ngj4knZ2n2dmaC3fONoiLNWLZwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDHlwUKq
C45qCfNDVPgawuiyDgpAMB8GA1UdIwQYMBaAFGrEwbS2kb7PEt33Jl+WJtWax2bM
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDE1Qi81QzU0MzY4NEYx
Q0QxMUVDOTMzOUI5NUZDNEY5QUUwMi9hc1RCdExhUnZzOFMzZmNtWDVZbTFackha
c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2FzVEJ0TGFSdnM4UzNmY21YNVltMVpySFpzdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RDQxNUIvNUM1NDM2ODRGMUNEMTFFQzkzMzlCOTVGQzRGOUFFMDIvQTk4NzU0RTJG
MUQwMTFFQ0E0QjU2NzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBABnhdQwDwQCAAIwCQMHACABDfe7gDANBgkqhkiG9w0BAQsF
AAOCAQEAhbD4Dii42Kes97e2rV9Ypre7hkIDF9zNVbuY4m4IFfZ5fZw+u+EYJseT
DXdbyUbdCL1LfMgdRdnDNVATKSnkwn/NsTwomSSoW9d8FqGFjMtot/bmXuCwWLjx
t+mkFpsUQyen/hMBAxA5KMzxX8OmpzOgJQYZWfin0v/h8vD2at8t9/BVzGBJIj91
FGfziwpfnUdxaoMP6JCoBblPzwEp34wsFnbBL0lp8fpjjrzwmFxOLHhS/PdPCeJo
AkdmsCYO2nPJuJQiLID1+vR64a0qumuqFFhq4G9E8xgmp+AYpAa3xAKJRYchoVnB
MknzrqpeqaQ4sRGJrfHvgFmG1N8PMw==
-----END CERTIFICATE-----
Generated at Thu Apr 10 20:51:36 2025 by rpki-client