Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/F4DE3470979B11EE901E210BC4F9AE02.roa
File: F4DE3470979B11EE901E210BC4F9AE02.roa (raw, json)
Hash identifier: fiC0aTLSwEHcelKVanda2XAXfzpX0FepeWYGM7C3Vk0=
Subject key identifier: 5B:A0:D6:9C:F6:53:76:E2:C8:68:E7:7E:DD:FC:ED:E6:76:CB:4A:10
Certificate issuer: /CN=A91DB782/serialNumber=56B65B809F5DAB3A5AB157CA0579FD8E16EDCFB3
Certificate serial: 61
Authority key identifier: 56:B6:5B:80:9F:5D:AB:3A:5A:B1:57:CA:05:79:FD:8E:16:ED:CF:B3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrZbgJ9dqzpasVfKBXn9jhbtz7M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/F4DE3470979B11EE901E210BC4F9AE02.roa
Signing time: Wed 05 Jun 2024 08:28:23 +0000
ROA not before: Wed 05 Jun 2024 08:28:23 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 135344
IP address blocks: 103.214.204.0/24 maxlen: 24
103.214.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97 (0x61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DB782
Validity
Not Before: Jun 5 08:28:23 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=666021a6-6e43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5c:4e:c0:9c:03:71:07:92:ac:3d:98:cf:2d:
ba:09:06:a6:b7:fd:ad:ac:4c:c4:c4:82:3e:99:d6:
b6:f7:9f:82:70:9e:94:6c:ff:94:e3:a0:eb:e2:b2:
56:5d:7d:a5:ea:d2:45:ec:d7:62:1e:84:f9:26:1e:
38:fd:8e:0b:ca:7d:b9:a6:a7:13:ee:f1:4b:1f:74:
ec:1e:3d:21:10:35:ca:07:7b:87:35:8f:6c:b4:60:
41:b5:98:49:f6:6f:1d:c1:0a:b1:11:b1:b0:f8:b2:
69:e9:1e:c1:16:dc:02:be:5f:8b:64:3c:73:b3:bb:
53:f7:05:53:02:51:57:29:fe:13:9b:32:08:e6:b0:
5c:66:b9:28:8e:bc:fd:6b:18:74:57:7c:ed:c7:d7:
f1:0b:1c:72:50:33:c0:32:fa:64:9c:33:02:5a:96:
00:db:c6:4a:d8:aa:6a:f7:31:b3:26:43:68:9d:3f:
d9:af:56:22:7f:ff:e6:26:6f:73:9d:49:7b:e8:96:
4e:4b:91:95:bb:0f:6a:97:6b:e5:13:bc:db:e8:54:
78:74:ef:aa:b5:6b:82:ac:74:46:7e:81:e0:64:c2:
99:65:bf:de:5c:db:dd:54:25:95:d2:2c:b1:95:70:
20:78:46:b6:18:74:a3:52:7c:83:89:6c:39:bf:1c:
7d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:A0:D6:9C:F6:53:76:E2:C8:68:E7:7E:DD:FC:ED:E6:76:CB:4A:10
X509v3 Authority Key Identifier:
keyid:56:B6:5B:80:9F:5D:AB:3A:5A:B1:57:CA:05:79:FD:8E:16:ED:CF:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrZbgJ9dqzpasVfKBXn9jhbtz7M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/F4DE3470979B11EE901E210BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.214.204.0/23
Signature Algorithm: sha256WithRSAEncryption
40:4e:b6:f0:73:a6:c7:24:7f:29:da:de:2b:4f:ba:33:04:94:
d9:0a:a5:aa:e9:13:fe:6d:55:9a:2d:47:d8:f8:7c:9c:c0:1b:
e5:86:8f:c9:94:5f:c2:d0:17:e0:27:2c:cb:58:97:72:f5:2f:
2c:1f:19:6d:8e:b3:30:ed:ec:f7:21:e7:bc:c7:a2:8f:e9:6f:
76:08:5f:e7:cb:9b:30:99:8a:a2:be:a1:67:fa:8c:5b:7d:4f:
1c:8b:7a:52:fc:0d:52:6a:02:9e:50:54:dc:77:d9:9e:48:f6:
d9:20:0f:18:1b:7a:29:68:06:74:cf:8e:b3:1a:5d:10:ed:fa:
37:42:6b:49:aa:93:0a:ee:e8:b5:50:d6:67:b8:d6:95:07:41:
24:a4:c5:56:53:fb:4c:b8:e5:f5:28:85:1b:bc:3a:d1:91:4e:
51:e5:07:75:de:aa:c8:07:f7:54:c2:2f:5f:89:36:65:5e:aa:
b5:85:7d:a3:9d:5c:a3:a5:27:a4:b0:8e:c8:8b:60:e3:06:e6:
08:36:1b:5d:f9:ec:6f:7d:4b:52:4f:22:c3:f2:7b:80:d0:72:
d8:33:9a:2c:1d:4c:1d:4a:e3:e3:39:22:8e:95:54:8b:5e:84:
56:5c:f6:36:70:62:c5:17:44:d4:88:08:cf:45:e7:b0:b0:3b:
38:01:e6:de
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE
Qjc4MjExMC8GA1UEBRMoNTZCNjVCODA5RjVEQUIzQTVBQjE1N0NBMDU3OUZEOEUx
NkVEQ0ZCMzAeFw0yNDA2MDUwODI4MjNaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV
BAMTDTY2NjAyMWE2LTZlNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDZXE7AnANxB5KsPZjPLboJBqa3/a2sTMTEgj6Z1rb3n4JwnpRs/5TjoOvislZd
faXq0kXs12IehPkmHjj9jgvKfbmmpxPu8UsfdOwePSEQNcoHe4c1j2y0YEG1mEn2
bx3BCrERsbD4smnpHsEW3AK+X4tkPHOzu1P3BVMCUVcp/hObMgjmsFxmuSiOvP1r
GHRXfO3H1/ELHHJQM8Ay+mScMwJalgDbxkrYqmr3MbMmQ2idP9mvViJ//+Ymb3Od
SXvolk5LkZW7D2qXa+UTvNvoVHh076q1a4KsdEZ+geBkwpllv95c291UJZXSLLGV
cCB4RrYYdKNSfIOJbDm/HH1XAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUW6DWnPZT
duLIaOd+3fzt5nbLShAwHwYDVR0jBBgwFoAUVrZbgJ9dqzpasVfKBXn9jhbtz7Mw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCNzgyLzlGRURDRjVDOTc5
QjExRUU5ODlFNjAwQUM0RjlBRTAyL1ZyWmJnSjlkcXpwYXNWZktCWG45amhidHo3
TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvVnJaYmdKOWRxenBhc1ZmS0JYbjlqaGJ0ejdNLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
Qjc4Mi85RkVEQ0Y1Qzk3OUIxMUVFOTg5RTYwMEFDNEY5QUUwMi9GNERFMzQ3MDk3
OUIxMUVFOTAxRTIxMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAWfWzDANBgkqhkiG9w0BAQsFAAOCAQEAQE628HOmxyR/Kdre
K0+6MwSU2QqlqukT/m1Vmi1H2Ph8nMAb5YaPyZRfwtAX4Ccsy1iXcvUvLB8ZbY6z
MO3s9yHnvMeij+lvdghf58ubMJmKor6hZ/qMW31PHIt6UvwNUmoCnlBU3HfZnkj2
2SAPGBt6KWgGdM+OsxpdEO36N0JrSaqTCu7otVDWZ7jWlQdBJKTFVlP7TLjl9SiF
G7w60ZFOUeUHdd6qyAf3VMIvX4k2ZV6qtYV9o51co6UnpLCOyItg4wbmCDYbXfns
b31LUk8iw/J7gNBy2DOaLB1MHUrj4zkijpVUi16EVlz2NnBixRdE1IgIz0XnsLA7
OAHm3g==
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:13:57 2025 by rpki-client