Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC9AE/F7E4A2AEB2F411EC9BED3753C4F9AE02/A0A6A84EB5B911EC8AADD413C4F9AE02.roa
File: A0A6A84EB5B911EC8AADD413C4F9AE02.roa (raw, json)
Hash identifier: q4NAjQjTJMFxxldl/AAiP8pDMUCdKKJhMRmCf+Jtl3M=
Subject key identifier: 2D:7A:DF:BE:49:EF:41:AB:C9:3F:A8:BF:8A:02:EC:56:DF:E5:C6:00
Certificate issuer: /CN=A91EC9AE/serialNumber=A7DFD4C91332BD1E41CF26DB18221D1D7058FDD5
Certificate serial: 0308
Authority key identifier: A7:DF:D4:C9:13:32:BD:1E:41:CF:26:DB:18:22:1D:1D:70:58:FD:D5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p9_UyRMyvR5BzybbGCIdHXBY_dU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EC9AE/F7E4A2AEB2F411EC9BED3753C4F9AE02/A0A6A84EB5B911EC8AADD413C4F9AE02.roa
Signing time: Fri 15 Nov 2024 00:43:48 +0000
ROA not before: Fri 15 Nov 2024 00:43:48 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 139743
IP address blocks: 103.131.176.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 776 (0x308)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EC9AE
Validity
Not Before: Nov 15 00:43:48 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=67369944-76cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:46:a5:f9:c8:3a:df:30:af:9f:d6:59:67:de:
77:29:e8:98:e1:a7:a0:60:98:c7:2a:bf:ea:1e:1e:
22:50:1a:dd:38:c0:61:6d:78:ec:e5:a5:7b:93:b4:
d8:10:3c:df:da:fe:fe:1c:ae:0c:dd:3d:0f:3d:ff:
22:24:a1:ad:5a:c6:2b:54:9c:40:fa:14:1b:b6:08:
8d:73:3c:6c:1f:e9:3f:6c:42:2d:a9:6e:75:a2:f8:
53:cd:4d:11:68:a1:7b:c7:d3:e9:6c:56:88:90:91:
b3:9c:fd:31:3d:1a:45:65:59:e2:5e:bd:6c:e4:0a:
cd:fa:9c:cb:b1:ed:e7:5c:b6:55:ce:27:0a:f6:43:
ff:9c:91:b2:ed:77:79:3f:2c:3d:8a:01:ff:58:52:
ca:3f:f4:90:83:49:37:2f:0c:36:a2:e7:5b:d5:7d:
72:51:54:2c:66:51:37:d8:12:a6:0c:e5:5b:c4:b5:
08:85:dc:ae:3b:92:42:c1:65:0c:20:ed:3c:f1:42:
b9:76:54:6a:68:db:89:1a:69:c5:5c:da:e3:58:ef:
c2:53:fa:c1:83:78:9a:4a:78:32:bc:50:ed:d2:c4:
e0:34:ed:af:21:ad:f8:5c:3d:ef:c9:6b:d7:ad:62:
1f:76:08:bd:b5:dc:6b:d6:78:fc:ea:34:9e:0e:53:
63:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:7A:DF:BE:49:EF:41:AB:C9:3F:A8:BF:8A:02:EC:56:DF:E5:C6:00
X509v3 Authority Key Identifier:
keyid:A7:DF:D4:C9:13:32:BD:1E:41:CF:26:DB:18:22:1D:1D:70:58:FD:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EC9AE/F7E4A2AEB2F411EC9BED3753C4F9AE02/p9_UyRMyvR5BzybbGCIdHXBY_dU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p9_UyRMyvR5BzybbGCIdHXBY_dU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC9AE/F7E4A2AEB2F411EC9BED3753C4F9AE02/A0A6A84EB5B911EC8AADD413C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.131.176.0/22
Signature Algorithm: sha256WithRSAEncryption
59:36:67:8e:80:41:0a:8c:c3:38:44:e1:12:4b:fa:57:df:ba:
61:58:fa:28:a5:10:29:b0:0f:5b:9e:7f:04:0a:27:7b:20:a3:
e7:a6:3f:c3:ee:e6:f0:5f:a3:8d:c6:d3:0c:02:05:59:5d:88:
07:9c:77:9c:f3:7f:87:44:17:04:af:32:75:6c:11:cb:a2:2a:
c3:10:89:82:f3:51:32:ba:9f:41:75:3a:3b:f5:13:83:3f:0e:
65:3b:3b:b6:be:15:8e:36:a2:b1:e4:63:db:da:74:84:00:32:
c5:a2:43:db:dd:0e:86:45:8d:65:ff:5c:56:b1:7f:bc:c8:d5:
7f:35:61:58:98:f9:6f:e8:36:7f:2e:ba:42:36:1b:09:9a:a1:
c8:04:f8:81:b0:b5:e8:aa:5b:d2:30:d8:45:bd:16:a5:8c:64:
a6:6d:7e:1b:e8:bf:15:6b:60:91:91:ab:c6:53:12:97:90:b6:
94:67:85:78:7f:b8:80:89:a8:8a:f7:6e:f3:1d:86:55:aa:44:
81:ed:d2:16:70:1e:e3:93:ac:6d:86:0f:de:c3:c7:ef:22:74:
6e:2d:41:e1:24:3d:d7:7e:88:89:6d:72:61:9b:c8:d1:a4:7f:
a4:7b:79:9b:31:eb:ed:df:f5:21:f7:b5:e1:fd:4d:67:04:e0:
94:3a:09:f1
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUM5QUUxMTAvBgNVBAUTKEE3REZENEM5MTMzMkJEMUU0MUNGMjZEQjE4MjIxRDFE
NzA1OEZERDUwHhcNMjQxMTE1MDA0MzQ4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzM2OTk0NC03NmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyUal+cg63zCvn9ZZZ953KeiY4aegYJjHKr/qHh4iUBrdOMBhbXjs5aV7k7TY
EDzf2v7+HK4M3T0PPf8iJKGtWsYrVJxA+hQbtgiNczxsH+k/bEItqW51ovhTzU0R
aKF7x9PpbFaIkJGznP0xPRpFZVniXr1s5ArN+pzLse3nXLZVzicK9kP/nJGy7Xd5
Pyw9igH/WFLKP/SQg0k3Lww2oudb1X1yUVQsZlE32BKmDOVbxLUIhdyuO5JCwWUM
IO088UK5dlRqaNuJGmnFXNrjWO/CU/rBg3iaSngyvFDt0sTgNO2vIa34XD3vyWvX
rWIfdgi9tdxr1nj86jSeDlNjYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC16375J
70GryT+ov4oC7Fbf5cYAMB8GA1UdIwQYMBaAFKff1MkTMr0eQc8m2xgiHR1wWP3V
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzlBRS9GN0U0QTJBRUIy
RjQxMUVDOUJFRDM3NTNDNEY5QUUwMi9wOV9VeVJNeXZSNUJ6eWJiR0NJZEhYQllf
ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3A5X1V5Uk15dlI1Qnp5YmJHQ0lkSFhCWV9kVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RUM5QUUvRjdFNEEyQUVCMkY0MTFFQzlCRUQzNzUzQzRGOUFFMDIvQTBBNkE4NEVC
NUI5MTFFQzhBQURENDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAJng7AwDQYJKoZIhvcNAQELBQADggEBAFk2Z46AQQqMwzhE
4RJL+lffumFY+iilECmwD1uefwQKJ3sgo+emP8Pu5vBfo43G0wwCBVldiAecd5zz
f4dEFwSvMnVsEcuiKsMQiYLzUTK6n0F1Ojv1E4M/DmU7O7a+FY42orHkY9vadIQA
MsWiQ9vdDoZFjWX/XFaxf7zI1X81YViY+W/oNn8uukI2GwmaocgE+IGwteiqW9Iw
2EW9FqWMZKZtfhvovxVrYJGRq8ZTEpeQtpRnhXh/uICJqIr3bvMdhlWqRIHt0hZw
HuOTrG2GD97Dx+8idG4tQeEkPdd+iIltcmGbyNGkf6R7eZsx6+3f9SH3teH9TWcE
4JQ6CfE=
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:56:10 2025 by rpki-client