Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/783C88A285FF11EEAFD34A2CC4F9AE02.roa
File: 783C88A285FF11EEAFD34A2CC4F9AE02.roa (raw, json)
Hash identifier: kTJ8czPgPRYvRUYRTSuFaRzwT5mPZmvDIQm8YSYeRGQ=
Subject key identifier: 90:A0:98:97:50:47:06:18:EC:E6:04:92:D5:85:31:EE:DB:46:EB:8B
Certificate issuer: /CN=A91EAAF5/serialNumber=4584AEA2394C46D6934E63ED6887D4726FDF7A13
Certificate serial: 0415
Authority key identifier: 45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/783C88A285FF11EEAFD34A2CC4F9AE02.roa
Signing time: Tue 25 Feb 2025 01:53:32 +0000
ROA not before: Tue 25 Feb 2025 01:53:32 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 151332
IP address blocks: 103.179.36.0/24 maxlen: 24
103.179.37.0/24 maxlen: 24
2001:df0:45c0::/48 maxlen: 48
2001:df0:45c1::/48 maxlen: 48
2001:df0:45c2::/47 maxlen: 48
2001:df0:45c4::/46 maxlen: 48
2001:df0:45c8::/45 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1045 (0x415)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAAF5
Validity
Not Before: Feb 25 01:53:32 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67bd229c-b6bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d1:13:3e:b2:c8:4a:2b:d1:11:9d:c3:4b:53:
6a:f0:2d:ec:3c:1a:8b:34:4c:e8:91:fe:74:86:dd:
69:be:91:3c:9a:24:d0:42:93:5f:20:1f:5f:9b:40:
ab:27:57:56:a2:69:5f:62:74:6e:97:20:c7:d3:72:
d1:0a:27:c1:bf:d4:88:85:95:91:dd:42:b4:cf:82:
a5:2b:a5:4f:b2:4a:f3:1e:5c:be:ef:58:74:e7:d9:
5c:9f:e4:de:40:e2:43:bb:1a:8e:d3:a1:7d:21:22:
0c:29:ee:5b:77:6f:02:68:4c:55:c3:45:88:00:9a:
12:d3:ff:51:2c:b9:fe:71:35:b3:4d:32:c8:61:e3:
75:48:25:2e:ec:80:f8:9d:98:18:0e:d9:b6:b2:63:
f0:fd:03:b2:76:6e:4a:d6:bb:21:54:26:0f:db:62:
ff:b8:78:9e:ab:91:d7:0f:71:66:a3:00:c5:b9:1d:
cb:78:b0:63:8a:bf:17:82:6d:81:d6:d3:d4:38:4e:
91:c1:e4:cb:56:62:e1:f1:e9:73:41:60:80:2b:97:
cc:16:c2:26:e1:02:63:ac:b2:bb:76:80:36:df:f0:
c1:b1:8f:bb:9d:d0:e3:0a:a2:25:db:09:09:01:d8:
77:ce:4c:d8:7b:54:bd:2d:a9:ea:1a:ce:be:4d:c4:
24:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:A0:98:97:50:47:06:18:EC:E6:04:92:D5:85:31:EE:DB:46:EB:8B
X509v3 Authority Key Identifier:
keyid:45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/783C88A285FF11EEAFD34A2CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.179.36.0/23
IPv6:
2001:df0:45c0::/44
Signature Algorithm: sha256WithRSAEncryption
a9:aa:48:29:61:30:65:6d:d8:e0:ee:dc:31:86:6f:4c:37:77:
d8:1a:55:ea:29:38:71:01:29:36:78:73:92:99:3a:db:67:8a:
e5:cd:17:cd:a9:16:9f:f5:81:7f:dd:3d:1d:52:b0:de:f1:50:
9f:43:a4:d8:6f:98:76:47:70:a7:2e:d8:34:2b:6b:a2:5b:87:
1b:cf:d7:bf:7a:fd:2e:1c:2a:9d:01:11:c7:59:87:9d:84:92:
9d:76:2b:55:91:86:a0:8f:63:3d:ec:c5:e4:41:43:20:95:5a:
da:ab:87:fd:1b:e7:7c:60:de:0f:80:80:1a:07:5b:b4:21:35:
bc:62:79:1c:5e:ff:80:94:87:74:b3:17:09:09:4d:e9:98:d6:
4b:f5:de:89:9b:77:13:cb:1e:bf:ff:79:f4:11:fe:09:89:44:
7e:f5:f4:93:53:b3:00:05:ef:b7:5a:d4:39:cc:3c:94:df:81:
c3:d7:ba:d7:1d:3a:b0:78:25:d3:61:c7:a2:5c:3f:d9:64:a7:
53:22:c2:af:6a:83:47:3c:48:c2:05:20:dd:f1:4a:1e:46:eb:
02:5b:9c:94:98:4f:97:d3:4d:30:d6:86:00:d0:ae:73:28:68:
21:48:f7:e5:77:85:00:de:3d:b7:fc:2c:61:76:a0:4b:41:de:
b7:31:23:ce
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICBBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUFBRjUxMTAvBgNVBAUTKDQ1ODRBRUEyMzk0QzQ2RDY5MzRFNjNFRDY4ODdENDcy
NkZERjdBMTMwHhcNMjUwMjI1MDE1MzMyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2JkMjI5Yy1iNmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1dETPrLISivREZ3DS1Nq8C3sPBqLNEzokf50ht1pvpE8miTQQpNfIB9fm0Cr
J1dWomlfYnRulyDH03LRCifBv9SIhZWR3UK0z4KlK6VPskrzHly+71h059lcn+Te
QOJDuxqO06F9ISIMKe5bd28CaExVw0WIAJoS0/9RLLn+cTWzTTLIYeN1SCUu7ID4
nZgYDtm2smPw/QOydm5K1rshVCYP22L/uHieq5HXD3FmowDFuR3LeLBjir8Xgm2B
1tPUOE6RweTLVmLh8elzQWCAK5fMFsIm4QJjrLK7doA23/DBsY+7ndDjCqIl2wkJ
Adh3zkzYe1S9LanqGs6+TcQkNwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJCgmJdQ
RwYY7OYEktWFMe7bRuuLMB8GA1UdIwQYMBaAFEWErqI5TEbWk05j7WiH1HJv33oT
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUFGNS9FOTlGNTIzQTZF
QzQxMUVDQUZEMjczMzFDNEY5QUUwMi9SWVN1b2psTVJ0YVRUbVB0YUlmVWNtX2Zl
aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1JZU3VvamxNUnRhVFRtUHRhSWZVY21fZmVoTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RUFBRjUvRTk5RjUyM0E2RUM0MTFFQ0FGRDI3MzMxQzRGOUFFMDIvNzgzQzg4QTI4
NUZGMTFFRUFGRDM0QTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBAFnsyQwDwQCAAIwCQMHBCABDfBFwDANBgkqhkiG9w0BAQsF
AAOCAQEAqapIKWEwZW3Y4O7cMYZvTDd32BpV6ik4cQEpNnhzkpk622eK5c0XzakW
n/WBf909HVKw3vFQn0Ok2G+Ydkdwpy7YNCtroluHG8/Xv3r9LhwqnQERx1mHnYSS
nXYrVZGGoI9jPezF5EFDIJVa2quH/RvnfGDeD4CAGgdbtCE1vGJ5HF7/gJSHdLMX
CQlN6ZjWS/XeiZt3E8sev/959BH+CYlEfvX0k1OzAAXvt1rUOcw8lN+Bw9e61x06
sHgl02HHolw/2WSnUyLCr2qDRzxIwgUg3fFKHkbrAluclJhPl9NNMNaGANCucyho
IUj35XeFAN49t/wsYXagS0HetzEjzg==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:35:30 2025 by rpki-client