Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B202/4D41CF92409E11EDB352EE5EC4F9AE02/001EB4A284C911EFA902172CC4F9AE02.roa
File: 001EB4A284C911EFA902172CC4F9AE02.roa (raw, json)
Hash identifier: i/k+PMmPjEOn62f4++TqWacooyVJfp9CI/snYpM2THY=
Subject key identifier: E2:D8:32:30:8F:E0:1B:03:DD:A5:97:84:68:02:C5:CE:E3:94:C4:E7
Certificate issuer: /CN=A915B202/serialNumber=8CBE9DD59934C9AD205FCE6AF8EF4DB801F1D3EB
Certificate serial: 018B
Authority key identifier: 8C:BE:9D:D5:99:34:C9:AD:20:5F:CE:6A:F8:EF:4D:B8:01:F1:D3:EB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jL6d1Zk0ya0gX85q-O9NuAHx0-s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915B202/4D41CF92409E11EDB352EE5EC4F9AE02/001EB4A284C911EFA902172CC4F9AE02.roa
Signing time: Mon 07 Oct 2024 16:27:10 +0000
ROA not before: Mon 07 Oct 2024 16:27:10 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 398465
IP address blocks: 103.15.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395 (0x18b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915B202
Validity
Not Before: Oct 7 16:27:10 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=67040bdd-4140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:32:f4:78:34:c2:f2:f6:6a:05:a7:77:e9:df:
39:2d:14:07:0f:48:2a:0a:e9:e6:59:a6:b6:14:c7:
95:67:f9:c7:29:a6:f4:25:9e:76:0f:c9:b3:9d:d5:
a3:08:c5:c8:97:78:42:07:0e:b9:8e:8e:35:00:c4:
b5:f9:51:d2:ab:0e:66:ee:4d:21:74:90:9f:fd:ac:
34:b8:91:87:c0:99:f0:e3:c7:89:a8:22:7c:86:1a:
7b:df:2e:dc:c5:57:bb:d6:66:0a:25:02:19:37:6f:
59:79:f0:24:b3:37:b7:5f:3a:17:be:30:dd:05:41:
50:55:4f:3b:b9:72:ee:18:dd:d0:18:5e:49:ec:21:
79:c8:3d:be:43:a9:4f:6d:52:6d:89:53:f4:da:40:
0c:6f:b3:48:6d:18:33:bf:dd:e6:0a:97:fe:d4:7a:
23:9d:69:bf:60:ea:a0:cb:60:e9:4d:a0:63:12:99:
79:7f:05:85:6f:79:15:24:79:48:8d:24:9b:92:32:
7e:95:f5:c6:2a:7d:06:0d:31:0e:cc:d4:79:83:66:
fd:28:45:cf:5d:a1:ec:d2:9c:44:7a:06:14:a1:28:
13:79:96:48:1f:39:37:b4:74:bf:48:1a:0f:d5:3f:
1d:b5:65:3d:c4:2e:65:45:c1:8e:50:26:10:82:05:
a5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D8:32:30:8F:E0:1B:03:DD:A5:97:84:68:02:C5:CE:E3:94:C4:E7
X509v3 Authority Key Identifier:
keyid:8C:BE:9D:D5:99:34:C9:AD:20:5F:CE:6A:F8:EF:4D:B8:01:F1:D3:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915B202/4D41CF92409E11EDB352EE5EC4F9AE02/jL6d1Zk0ya0gX85q-O9NuAHx0-s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jL6d1Zk0ya0gX85q-O9NuAHx0-s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B202/4D41CF92409E11EDB352EE5EC4F9AE02/001EB4A284C911EFA902172CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.15.221.0/24
Signature Algorithm: sha256WithRSAEncryption
34:dc:41:21:fd:50:fd:2a:39:95:07:6b:9b:94:7a:2f:28:0b:
ef:69:b4:07:91:7f:79:73:cd:da:d3:ea:3b:d3:15:f6:73:3c:
35:17:72:1f:8c:a9:28:ea:cd:32:95:0c:7b:2e:18:1a:1e:1e:
23:bf:02:82:6a:cb:0e:03:a4:e9:a6:d7:ec:da:cb:89:a7:ab:
cb:89:18:6d:90:00:a1:a7:0a:ca:f8:ff:31:30:91:46:dc:95:
17:fb:4f:69:a1:5d:b5:f4:ab:c7:5d:1d:db:86:42:c3:c1:f3:
ab:11:75:bb:1b:df:81:50:a9:86:0d:5d:b7:10:69:70:c0:a9:
80:02:8b:c4:90:c9:7a:5c:67:8e:51:2e:26:69:28:a5:65:52:
07:21:77:86:c7:aa:d2:11:61:53:a7:58:e6:1e:c9:55:af:97:
e5:55:d5:36:ab:35:f8:ec:8e:26:48:ae:0c:3f:ad:30:c7:08:
42:cc:ad:c6:05:30:c4:fe:85:3f:af:6c:ab:38:fd:71:db:0f:
60:bc:e2:ef:2e:65:bb:da:d1:c7:5a:2d:37:0f:e0:11:41:f7:
be:6a:b4:2a:a7:c8:b5:1a:f7:15:84:60:98:72:ea:c9:51:6a:
e3:3e:fa:1b:db:63:c9:80:02:3c:c4:81:28:58:df:6c:19:55:
70:3c:4f:b5
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NUIyMDIxMTAvBgNVBAUTKDhDQkU5REQ1OTkzNEM5QUQyMDVGQ0U2QUY4RUY0REI4
MDFGMUQzRUIwHhcNMjQxMDA3MTYyNzEwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzA0MGJkZC00MTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyDL0eDTC8vZqBad36d85LRQHD0gqCunmWaa2FMeVZ/nHKab0JZ52D8mzndWj
CMXIl3hCBw65jo41AMS1+VHSqw5m7k0hdJCf/aw0uJGHwJnw48eJqCJ8hhp73y7c
xVe71mYKJQIZN29ZefAksze3XzoXvjDdBUFQVU87uXLuGN3QGF5J7CF5yD2+Q6lP
bVJtiVP02kAMb7NIbRgzv93mCpf+1HojnWm/YOqgy2DpTaBjEpl5fwWFb3kVJHlI
jSSbkjJ+lfXGKn0GDTEOzNR5g2b9KEXPXaHs0pxEegYUoSgTeZZIHzk3tHS/SBoP
1T8dtWU9xC5lRcGOUCYQggWlVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOLYMjCP
4BsD3aWXhGgCxc7jlMTnMB8GA1UdIwQYMBaAFIy+ndWZNMmtIF/OavjvTbgB8dPr
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjIwMi80RDQxQ0Y5MjQw
OUUxMUVEQjM1MkVFNUVDNEY5QUUwMi9qTDZkMVprMHlhMGdYODVxLU85TnVBSHgw
LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2pMNmQxWmsweWEwZ1g4NXEtTzlOdUFIeDAtcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NUIyMDIvNEQ0MUNGOTI0MDlFMTFFREIzNTJFRTVFQzRGOUFFMDIvMDAxRUI0QTI4
NEM5MTFFRkE5MDIxNzJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnD90wDQYJKoZIhvcNAQELBQADggEBADTcQSH9UP0qOZUH
a5uUei8oC+9ptAeRf3lzzdrT6jvTFfZzPDUXch+MqSjqzTKVDHsuGBoeHiO/AoJq
yw4DpOmm1+zay4mnq8uJGG2QAKGnCsr4/zEwkUbclRf7T2mhXbX0q8ddHduGQsPB
86sRdbsb34FQqYYNXbcQaXDAqYACi8SQyXpcZ45RLiZpKKVlUgchd4bHqtIRYVOn
WOYeyVWvl+VV1TarNfjsjiZIrgw/rTDHCELMrcYFMMT+hT+vbKs4/XHbD2C84u8u
Zbva0cdaLTcP4BFB975qtCqnyLUa9xWEYJhy6slRauM++hvbY8mAAjzEgShY32wZ
VXA8T7U=
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:08:58 2025 by rpki-client