Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/EB7012446FDE11E9AF945067C4F9AE02.roa
File: EB7012446FDE11E9AF945067C4F9AE02.roa (raw, json)
Hash identifier: 7u9f+gWjW4ewcVZaqyMD9ZqpjL5Hz8NvrMbvw9f5dXY=
Subject key identifier: 82:99:21:39:1E:8B:C4:6F:F1:ED:49:08:EB:99:E6:61:00:31:70:55
Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F
Certificate serial: 1C96
Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/EB7012446FDE11E9AF945067C4F9AE02.roa
Signing time: Mon 20 Jan 2025 16:13:14 +0000
ROA not before: Mon 20 Jan 2025 16:13:14 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 38478
IP address blocks: 103.81.183.0/24 maxlen: 24
2001:df7:6600::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7318 (0x1c96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FE26E
Validity
Not Before: Jan 20 16:13:14 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=678e761a-1dfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f3:97:6f:9e:f4:ac:e0:16:bc:af:05:aa:bf:
db:72:b2:2d:69:0d:4c:96:2f:b3:10:bc:41:48:97:
32:2f:d7:64:ea:f8:56:22:dc:5d:8a:15:63:b6:99:
4a:c8:48:84:06:ae:9a:3b:06:d6:52:5b:83:0b:37:
69:2b:1a:d6:2a:30:12:ec:66:b4:95:a1:bc:b1:73:
d7:fd:50:e8:d5:9f:2b:f4:ea:ab:e5:aa:fe:6c:2b:
21:dc:74:18:88:61:6b:6e:78:fa:b3:c0:a3:17:08:
85:ab:0a:13:e5:00:53:32:9b:44:92:a4:87:a5:ae:
e6:4c:01:3c:92:c7:86:21:e1:93:83:f4:15:16:58:
07:f6:0f:ab:2c:cf:3c:f6:f7:71:bd:99:7d:e0:9c:
cc:32:12:28:e7:d2:72:6f:8e:4e:cb:53:bd:bb:30:
fc:07:86:83:c7:57:4e:5d:f1:f2:0a:fc:18:8b:b1:
42:a0:ba:79:a1:8d:5e:a9:99:49:4b:47:5a:d3:84:
00:11:7e:bb:54:e4:00:31:c4:fd:f9:ed:19:33:37:
5e:e7:92:d6:c9:fb:8f:ba:97:f9:d8:7a:d3:75:6b:
c4:af:e2:32:d9:61:24:9d:d4:d5:26:f3:b9:5b:7a:
92:71:91:5b:e3:e9:a5:0c:cd:37:4e:fa:dc:88:89:
70:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:99:21:39:1E:8B:C4:6F:F1:ED:49:08:EB:99:E6:61:00:31:70:55
X509v3 Authority Key Identifier:
keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/EB7012446FDE11E9AF945067C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.81.183.0/24
IPv6:
2001:df7:6600::/48
Signature Algorithm: sha256WithRSAEncryption
6f:a8:61:3e:ab:0c:5a:d4:c7:52:89:26:09:0c:17:1e:02:ad:
99:24:00:13:1d:81:82:c4:52:73:e6:d4:a0:23:ac:18:6f:f9:
1c:1c:0a:d9:8e:a3:74:17:c7:11:dc:fd:8b:b3:e0:30:20:1f:
bb:ec:e2:07:50:84:a3:98:09:b2:95:f8:68:42:5e:f8:d3:58:
79:35:66:ca:86:2e:b5:89:66:a7:03:db:36:cb:a7:fb:8b:88:
0e:d2:83:39:ed:dc:8e:a3:a0:6f:cf:4e:99:2c:90:4f:af:cc:
5b:d6:d2:7a:3e:38:c4:88:b0:1e:c9:0c:a6:e4:77:92:94:b9:
a8:bb:1a:6f:e4:1d:fb:14:ee:dc:ab:7e:9f:5d:62:63:f9:b4:
86:e7:4c:c0:63:ac:54:30:00:3c:95:ab:27:fc:f8:0e:f8:12:
70:a0:44:f0:8c:9b:bd:ff:c8:d1:a7:ba:4a:f1:05:7c:fa:f3:
f3:d8:5a:ee:cb:c7:1a:6c:bd:b5:f4:ab:76:41:37:28:65:a3:
0e:65:6d:dd:5d:f2:32:d4:f9:3d:a6:b0:14:85:84:5f:36:7e:
8a:a2:f7:9d:de:bf:8e:eb:77:b3:5c:62:0d:74:7e:b7:66:95:
97:d0:81:92:b8:7b:6e:34:1c:ed:1f:86:c1:64:5b:74:b9:b5:
84:24:08:4b
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICHJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3
MzQyRDY2MUYwHhcNMjUwMTIwMTYxMzE0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzhlNzYxYS0xZGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtfOXb570rOAWvK8Fqr/bcrItaQ1Mli+zELxBSJcyL9dk6vhWItxdihVjtplK
yEiEBq6aOwbWUluDCzdpKxrWKjAS7Ga0laG8sXPX/VDo1Z8r9Oqr5ar+bCsh3HQY
iGFrbnj6s8CjFwiFqwoT5QBTMptEkqSHpa7mTAE8kseGIeGTg/QVFlgH9g+rLM88
9vdxvZl94JzMMhIo59Jyb45Oy1O9uzD8B4aDx1dOXfHyCvwYi7FCoLp5oY1eqZlJ
S0da04QAEX67VOQAMcT9+e0ZMzde55LWyfuPupf52HrTdWvEr+Iy2WEkndTVJvO5
W3qScZFb4+mlDM03TvrciIlw+QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIKZITke
i8Rv8e1JCOuZ5mEAMXBVMB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4
NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa
aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RkUyNkUvODdCNUNENTBDODVEMTFFNjg3MDU2OTI3QzRGOUFFMDIvRUI3MDEyNDQ2
RkRFMTFFOUFGOTQ1MDY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBABnUbcwDwQCAAIwCQMHACABDfdmADANBgkqhkiG9w0BAQsF
AAOCAQEAb6hhPqsMWtTHUokmCQwXHgKtmSQAEx2BgsRSc+bUoCOsGG/5HBwK2Y6j
dBfHEdz9i7PgMCAfu+ziB1CEo5gJspX4aEJe+NNYeTVmyoYutYlmpwPbNsun+4uI
DtKDOe3cjqOgb89OmSyQT6/MW9bSej44xIiwHskMpuR3kpS5qLsab+Qd+xTu3Kt+
n11iY/m0hudMwGOsVDAAPJWrJ/z4DvgScKBE8Iybvf/I0ae6SvEFfPrz89ha7svH
Gmy9tfSrdkE3KGWjDmVt3V3yMtT5PaawFIWEXzZ+iqL3nd6/jut3s1xiDXR+t2aV
l9CBkrh7bjQc7R+GwWRbdLm1hCQISw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:10:03 2025 by rpki-client