Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A9162578/25C39ECC7BE811EBB0B1F63CC4F9AE02/EBC0474487B211EB9F723D11C4F9AE02.roa
File:                     EBC0474487B211EB9F723D11C4F9AE02.roa (raw, json)
Hash identifier:          Ppn+ZxuAg2iFcMjNvyJCatFKns9vNSJ9ajAAllkTdbU=
Subject key identifier:   24:16:2F:E7:6F:75:0E:16:AF:53:FB:69:45:0D:2E:5E:82:AD:40:55
Certificate issuer:       /CN=A9162578/serialNumber=2D91AD316BC5EEFF7EDC25253834EBE3AD5641BD
Certificate serial:       04FC
Authority key identifier: 2D:91:AD:31:6B:C5:EE:FF:7E:DC:25:25:38:34:EB:E3:AD:56:41:BD
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LZGtMWvF7v9-3CUlODTr461WQb0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9162578/25C39ECC7BE811EBB0B1F63CC4F9AE02/EBC0474487B211EB9F723D11C4F9AE02.roa
Signing time:             Thu 13 Apr 2023 01:41:58 +0000
ROA not before:           Thu 13 Apr 2023 01:41:58 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     137962
IP address blocks:        103.136.176.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1276 (0x4fc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9162578/serialNumber=2D91AD316BC5EEFF7EDC25253834EBE3AD5641BD
        Validity
            Not Before: Apr 13 01:41:58 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=64375de5-b9d2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:78:5e:91:08:79:4d:cd:c6:e6:ac:ad:f8:ca:
                    40:13:0c:86:86:32:b4:e9:7d:a3:a8:22:7c:b0:2c:
                    07:2c:a3:75:ce:46:b9:32:f9:99:90:46:5c:af:7f:
                    0f:8e:e1:3a:a1:14:a7:26:2d:51:1c:34:c4:72:53:
                    0d:37:56:b0:a3:5f:f5:05:af:a8:66:3b:28:65:b2:
                    ef:67:d0:1b:fe:c9:08:42:13:23:af:be:ad:fa:c2:
                    e8:7e:d0:10:28:c5:a7:82:13:26:8e:f1:82:f6:59:
                    46:72:db:b5:ce:de:23:2f:06:54:40:25:b9:f8:c1:
                    d4:66:d9:08:b5:d5:4e:91:96:c7:8d:9f:f1:0c:fd:
                    ef:0a:6e:c0:ac:b9:9c:21:48:85:66:99:45:db:3a:
                    83:ce:d8:11:f3:63:d1:49:81:51:05:2f:9b:b4:eb:
                    87:93:c1:bd:15:cf:e6:97:e5:2c:2b:b5:f4:c1:c1:
                    cf:4d:5f:87:7d:2a:e3:28:08:9f:8f:fd:e8:41:f0:
                    30:b6:8d:7c:35:98:16:4b:08:90:25:96:17:7c:53:
                    b9:5c:15:93:98:d3:31:fd:b1:0f:bc:fe:29:65:28:
                    42:54:5c:30:db:c3:2f:41:7a:09:b1:c6:23:53:53:
                    a8:7d:d4:23:24:e9:46:91:83:fc:72:7d:24:37:ad:
                    2c:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                24:16:2F:E7:6F:75:0E:16:AF:53:FB:69:45:0D:2E:5E:82:AD:40:55
            X509v3 Authority Key Identifier:
                keyid:2D:91:AD:31:6B:C5:EE:FF:7E:DC:25:25:38:34:EB:E3:AD:56:41:BD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9162578/25C39ECC7BE811EBB0B1F63CC4F9AE02/LZGtMWvF7v9-3CUlODTr461WQb0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LZGtMWvF7v9-3CUlODTr461WQb0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162578/25C39ECC7BE811EBB0B1F63CC4F9AE02/EBC0474487B211EB9F723D11C4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.136.176.0/24

    Signature Algorithm: sha256WithRSAEncryption
         af:26:14:0a:95:14:a2:f4:0c:d2:fd:fc:a2:66:d6:20:30:33:
         88:e4:96:d2:cb:cd:2f:56:3b:3a:d2:75:ea:a0:a9:ef:9a:71:
         84:98:84:e6:82:7d:7f:c2:b3:a7:1f:3c:65:f1:89:a7:93:fc:
         c1:b7:04:c0:fa:2f:35:96:28:1c:3d:ef:35:4a:3f:b0:22:f2:
         1f:ef:ce:3d:10:46:24:13:6b:21:26:31:a0:7b:41:95:4c:b3:
         cd:46:b2:b5:1e:c5:81:3a:1d:d3:f3:fa:0a:68:f9:5f:7b:96:
         1b:4a:f4:9e:ab:71:59:64:d1:4f:4a:83:94:1d:81:ae:50:2d:
         67:67:73:4e:29:e0:1d:2a:9f:dd:d0:11:77:42:fb:88:fa:50:
         60:67:1d:9a:0a:4f:ea:96:39:5d:a9:7f:a6:4b:09:05:e1:a8:
         ef:2c:6e:5e:ed:3f:c2:a5:76:6b:17:04:79:e6:c4:22:6b:40:
         2c:aa:51:f0:fd:fa:a6:b4:d0:a0:1a:2f:2f:8a:17:c2:59:09:
         23:eb:98:2e:98:2c:e4:f6:f7:94:3d:99:47:4d:11:cf:3b:82:
         02:7c:bf:56:9e:1b:a1:86:6e:0c:9c:6d:68:b2:53:65:fc:31:
         f3:61:56:bc:c5:dc:ab:cf:ea:d9:68:bf:a3:2e:d2:21:12:86:
         f7:ee:ab:b7
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICBPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjI1NzgxMTAvBgNVBAUTKDJEOTFBRDMxNkJDNUVFRkY3RURDMjUyNTM4MzRFQkUz
QUQ1NjQxQkQwHhcNMjMwNDEzMDE0MTU4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDM3NWRlNS1iOWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsXhekQh5Tc3G5qyt+MpAEwyGhjK06X2jqCJ8sCwHLKN1zka5MvmZkEZcr38P
juE6oRSnJi1RHDTEclMNN1awo1/1Ba+oZjsoZbLvZ9Ab/skIQhMjr76t+sLoftAQ
KMWnghMmjvGC9llGctu1zt4jLwZUQCW5+MHUZtkItdVOkZbHjZ/xDP3vCm7ArLmc
IUiFZplF2zqDztgR82PRSYFRBS+btOuHk8G9Fc/ml+UsK7X0wcHPTV+HfSrjKAif
j/3oQfAwto18NZgWSwiQJZYXfFO5XBWTmNMx/bEPvP4pZShCVFww28MvQXoJscYj
U1OofdQjJOlGkYP8cn0kN60snwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCQWL+dv
dQ4Wr1P7aUUNLl6CrUBVMB8GA1UdIwQYMBaAFC2RrTFrxe7/ftwlJTg06+OtVkG9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjU3OC8yNUMzOUVDQzdC
RTgxMUVCQjBCMUY2M0NDNEY5QUUwMi9MWkd0TVd2Rjd2OS0zQ1VsT0RUcjQ2MVdR
YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0xaR3RNV3ZGN3Y5LTNDVWxPRFRyNDYxV1FiMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NjI1NzgvMjVDMzlFQ0M3QkU4MTFFQkIwQjFGNjNDQzRGOUFFMDIvRUJDMDQ3NDQ4
N0IyMTFFQjlGNzIzRDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABniLAwDQYJKoZIhvcNAQELBQADggEBAK8mFAqVFKL0DNL9
/KJm1iAwM4jkltLLzS9WOzrSdeqgqe+acYSYhOaCfX/Cs6cfPGXxiaeT/MG3BMD6
LzWWKBw97zVKP7Ai8h/vzj0QRiQTayEmMaB7QZVMs81GsrUexYE6HdPz+gpo+V97
lhtK9J6rcVlk0U9Kg5Qdga5QLWdnc04p4B0qn93QEXdC+4j6UGBnHZoKT+qWOV2p
f6ZLCQXhqO8sbl7tP8KldmsXBHnmxCJrQCyqUfD9+qa00KAaLy+KF8JZCSPrmC6Y
LOT295Q9mUdNEc87ggJ8v1aeG6GGbgycbWiyU2X8MfNhVrzF3KvP6tlov6Mu0iES
hvfuq7c=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:09 2024 by rpki-client on console-fra.rpki-client.org