Route Origin Authorization

$ cd rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/

$ rpki-client -vvf 96CBB6F021DD11EBBEEF997DC4F9AE02.roa
File:                     96CBB6F021DD11EBBEEF997DC4F9AE02.roa (download)
Hash identifier:          g1KLLaoYzJUTiXQiO6rm/I6fbnNtyv0tJHv3yw5X9gU=
Subject key identifier:   31:BD:A7:70:20:57:AD:67:38:A4:D3:1D:FA:B3:B6:BE:A5:BD:B3:49
Certificate issuer:       /CN=A91841D2/serialNumber=7EE71AD847E9D56810CD49E27785C6385CCCF96B
Certificate serial:       0701
Authority key identifier: 7E:E7:1A:D8:47:E9:D5:68:10:CD:49:E2:77:85:C6:38:5C:CC:F9:6B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuca2Efp1WgQzUnid4XGOFzM-Ws.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/96CBB6F021DD11EBBEEF997DC4F9AE02.roa
ROA valid until:          Jul 30 00:00:00 2023 GMT
asID:                     135386
IP address blocks:
    1: 103.150.181.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1793 (0x701)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91841D2/serialNumber=7EE71AD847E9D56810CD49E27785C6385CCCF96B
        Validity
            Not Before: Jun 20 10:02:30 2022 GMT
            Not After : Jul 30 00:00:00 2023 GMT
        Subject: CN=62b045b5-d981
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:9c:3c:af:ec:d3:f8:d2:0c:f9:4c:71:4f:a0:
                    82:18:0a:4e:74:dd:dc:ba:08:59:dd:54:eb:c8:09:
                    1e:58:00:56:4e:22:78:8e:6b:05:1c:fd:4a:ce:43:
                    0c:07:0c:7f:8c:07:87:b4:5e:7d:a0:96:20:b6:28:
                    4e:a0:31:a4:ac:c6:b6:4b:1a:ff:cd:ee:87:b0:49:
                    d1:33:76:8c:12:01:15:a5:66:c4:a1:44:64:15:41:
                    a0:03:1f:49:c7:3d:3f:13:19:96:f7:cc:3e:45:b5:
                    7d:af:6e:0f:1b:05:1c:8c:f2:13:45:49:67:fc:c6:
                    de:b5:0b:c5:a8:e1:a6:87:1c:0f:d7:87:3a:ca:4d:
                    5c:3f:7d:0d:91:8a:57:76:a8:ef:f9:ad:28:a8:7d:
                    70:a5:a2:9f:a0:30:8f:6e:a4:aa:a9:46:21:dc:16:
                    85:d3:23:73:ed:17:2f:87:6d:63:7a:8b:b6:08:05:
                    25:4a:45:8e:59:65:00:74:64:7b:4e:0f:2d:06:92:
                    0f:fa:46:35:9c:d3:7c:6c:53:d8:82:31:7e:96:4c:
                    24:2d:14:f3:cf:c1:50:a0:5e:0e:af:bd:a0:cc:2d:
                    1e:8c:d1:85:13:cf:db:a6:20:9e:c4:28:19:26:27:
                    1f:2c:ec:ec:0f:ce:4c:84:ba:cc:67:a5:56:29:6b:
                    53:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                31:BD:A7:70:20:57:AD:67:38:A4:D3:1D:FA:B3:B6:BE:A5:BD:B3:49
            X509v3 Authority Key Identifier: 
                keyid:7E:E7:1A:D8:47:E9:D5:68:10:CD:49:E2:77:85:C6:38:5C:CC:F9:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/fuca2Efp1WgQzUnid4XGOFzM-Ws.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuca2Efp1WgQzUnid4XGOFzM-Ws.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/96CBB6F021DD11EBBEEF997DC4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.150.181.0/24

    Signature Algorithm: sha256WithRSAEncryption
         70:70:53:85:94:a9:13:03:f0:3e:d2:e0:f2:1c:5a:31:ec:50:
         2a:40:b3:3a:cf:5c:c6:27:68:18:57:b3:73:fe:65:e9:8b:05:
         57:6c:f0:15:c1:c3:f3:8b:3c:75:95:91:1a:29:ea:8b:49:e0:
         9d:a3:11:1a:60:96:7d:5c:86:3b:b4:65:1f:f0:54:31:5d:0b:
         62:6d:8c:cb:03:25:89:1d:df:4e:0c:ab:85:71:c9:e5:13:b8:
         59:46:8e:52:70:ac:ba:b4:79:8a:7c:73:b7:8e:b3:ae:56:42:
         89:74:64:83:5a:b4:e0:55:38:0f:83:9e:6a:75:7b:42:2b:59:
         80:2c:4d:09:53:c7:de:2b:33:1d:d6:7e:3a:5c:7d:2d:f9:a5:
         3e:3a:26:a8:31:cd:cf:03:a9:79:4c:7f:de:13:f8:2c:ea:54:
         fd:28:2b:ad:78:31:b5:33:40:a1:2c:34:86:64:bb:c6:12:ff:
         a7:4a:ca:dc:38:52:f5:02:ba:ac:4c:8e:53:62:8f:65:9d:c5:
         ee:55:ad:aa:68:d1:e2:8a:44:d8:9f:00:48:fb:e7:a1:9c:a5:
         7f:9d:82:5a:8d:3e:5f:52:43:2e:94:47:47:a1:11:02:64:ad:
         07:6c:c2:df:63:42:e8:75:d1:38:01:7e:47:1e:9c:56:01:f6:
         30:dd:71:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 3 19:49:17 2022 by rpki-client.