Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/6D7FBCBE129111ED81E82D3DC4F9AE02.roa
File: 6D7FBCBE129111ED81E82D3DC4F9AE02.roa (raw, json)
Hash identifier: D3Mr1RF7NLA+SlRnm9qkHlBkKJAhwvA5FpODqeYJRmw=
Subject key identifier: 0F:C3:3C:06:06:E1:81:2D:31:C5:8F:19:B1:BB:88:54:F1:A8:7C:3A
Certificate issuer: /CN=A91AEB80/serialNumber=6F23F27F090BEF4531802072E1DACF210D9D423C
Certificate serial: 03C5
Authority key identifier: 6F:23:F2:7F:09:0B:EF:45:31:80:20:72:E1:DA:CF:21:0D:9D:42:3C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/6D7FBCBE129111ED81E82D3DC4F9AE02.roa
Signing time: Sun 29 Dec 2024 00:13:53 +0000
ROA not before: Sun 29 Dec 2024 00:13:53 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 8075
IP address blocks: 103.180.108.0/24 maxlen: 24
103.180.109.0/24 maxlen: 24
2001:df0:59c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 965 (0x3c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AEB80
Validity
Not Before: Dec 29 00:13:53 2024 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67709441-2cad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:28:51:dd:3a:90:db:d8:25:9e:f9:51:0a:38:
df:ab:b4:c3:7c:47:82:1b:2a:26:7c:07:8a:7b:69:
3a:38:12:81:23:c7:c2:4b:f7:1f:4b:b5:9d:72:23:
bd:84:c9:d5:dc:8b:e8:88:04:83:3e:c9:43:27:22:
14:c0:c1:62:79:e2:75:5b:f7:07:25:df:e4:dd:e2:
f7:41:66:b4:fb:d4:25:0e:8d:76:27:f5:59:31:02:
99:d6:93:b9:85:63:db:fb:37:8e:8e:94:ce:53:4e:
95:fa:11:52:ef:3a:82:03:fa:9a:c7:ba:3f:2c:a6:
66:81:f9:b6:46:59:54:96:33:d1:53:f6:b9:10:8d:
35:9e:78:46:84:f1:15:2a:10:19:89:2b:e5:9a:9e:
2d:ce:04:54:2d:82:32:f6:8e:96:3a:03:79:c1:81:
d5:64:7c:dc:bc:3c:3b:0a:b3:1a:29:10:38:0d:67:
14:4b:42:86:b9:fb:6a:23:13:31:54:67:fc:75:52:
de:c1:71:ec:2d:3b:f0:00:03:d2:f0:3d:b0:c6:b3:
7d:5d:de:63:c5:8f:09:6e:90:44:35:9b:eb:4e:d7:
7f:5b:90:a5:06:ff:5a:d7:c3:bf:e7:a4:6a:f7:e0:
f9:d2:30:99:3b:9a:58:f1:70:70:b0:38:3b:db:1f:
2c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C3:3C:06:06:E1:81:2D:31:C5:8F:19:B1:BB:88:54:F1:A8:7C:3A
X509v3 Authority Key Identifier:
keyid:6F:23:F2:7F:09:0B:EF:45:31:80:20:72:E1:DA:CF:21:0D:9D:42:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/byPyfwkL70UxgCBy4drPIQ2dQjw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/6D7FBCBE129111ED81E82D3DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.180.108.0/23
IPv6:
2001:df0:59c0::/48
Signature Algorithm: sha256WithRSAEncryption
7f:69:aa:96:e0:01:05:ef:6f:be:e1:df:0f:f7:f7:06:b0:31:
a0:68:f2:20:87:9c:7a:8e:5b:d0:90:ba:2e:f7:1b:5e:16:c1:
77:47:0a:58:47:a5:8b:c6:52:bc:82:c4:a8:47:f0:a2:06:54:
fa:a0:e9:af:ac:bc:14:15:ae:eb:b2:bf:6f:1a:c6:c7:e1:c8:
95:c1:61:b7:68:b4:57:99:9e:50:7f:20:f5:5b:7a:23:24:a2:
7f:42:00:a9:c7:1d:12:e1:ce:f0:38:96:81:34:2b:5e:78:20:
5a:e3:ae:c3:52:94:c5:7a:a5:3f:bb:cc:f5:55:8a:25:10:e0:
e3:34:f3:c7:8a:e0:f8:bc:7c:be:c8:29:66:95:b7:c4:cd:9f:
7e:e8:41:04:b5:20:31:e8:fc:20:58:84:fb:f4:1d:8a:24:8e:
80:3c:c3:a6:1a:f4:56:37:50:61:d6:c3:38:43:86:01:ae:94:
6f:0c:88:1f:d7:17:20:2e:7e:4a:49:e4:26:fb:60:2f:11:c8:
92:50:4f:56:57:b9:89:4d:bc:d1:f3:51:7c:75:06:62:04:e8:
7f:6b:33:32:ae:60:a6:64:11:54:cf:20:5f:ab:0f:bc:f4:9c:
54:4b:9e:f6:95:5e:1d:c4:e2:77:ea:31:43:c7:04:11:b5:f1:
97:4e:17:37
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICA8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QUVCODAxMTAvBgNVBAUTKDZGMjNGMjdGMDkwQkVGNDUzMTgwMjA3MkUxREFDRjIx
MEQ5RDQyM0MwHhcNMjQxMjI5MDAxMzUzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzcwOTQ0MS0yY2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAoShR3TqQ29glnvlRCjjfq7TDfEeCGyomfAeKe2k6OBKBI8fCS/cfS7WdciO9
hMnV3IvoiASDPslDJyIUwMFieeJ1W/cHJd/k3eL3QWa0+9QlDo12J/VZMQKZ1pO5
hWPb+zeOjpTOU06V+hFS7zqCA/qax7o/LKZmgfm2RllUljPRU/a5EI01nnhGhPEV
KhAZiSvlmp4tzgRULYIy9o6WOgN5wYHVZHzcvDw7CrMaKRA4DWcUS0KGuftqIxMx
VGf8dVLewXHsLTvwAAPS8D2wxrN9Xd5jxY8JbpBENZvrTtd/W5ClBv9a18O/56Rq
9+D50jCZO5pY8XBwsDg72x8sAQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFA/DPAYG
4YEtMcWPGbG7iFTxqHw6MB8GA1UdIwQYMBaAFG8j8n8JC+9FMYAgcuHazyENnUI8
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUI4MC83NzYyRkM1QTdF
NkMxMUVDODczRDY3ODNDNEY5QUUwMi9ieVB5ZndrTDcwVXhnQ0J5NGRyUElRMmRR
ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2J5UHlmd2tMNzBVeGdDQnk0ZHJQSVEyZFFqdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QUVCODAvNzc2MkZDNUE3RTZDMTFFQzg3M0Q2NzgzQzRGOUFFMDIvNkQ3RkJDQkUx
MjkxMTFFRDgxRTgyRDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBAFntGwwDwQCAAIwCQMHACABDfBZwDANBgkqhkiG9w0BAQsF
AAOCAQEAf2mqluABBe9vvuHfD/f3BrAxoGjyIIeceo5b0JC6LvcbXhbBd0cKWEel
i8ZSvILEqEfwogZU+qDpr6y8FBWu67K/bxrGx+HIlcFht2i0V5meUH8g9Vt6IySi
f0IAqccdEuHO8DiWgTQrXnggWuOuw1KUxXqlP7vM9VWKJRDg4zTzx4rg+Lx8vsgp
ZpW3xM2ffuhBBLUgMej8IFiE+/QdiiSOgDzDphr0VjdQYdbDOEOGAa6UbwyIH9cX
IC5+SknkJvtgLxHIklBPVle5iU280fNRfHUGYgTof2szMq5gpmQRVM8gX6sPvPSc
VEue9pVeHcTid+oxQ8cEEbXxl04XNw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:06:29 2025 by rpki-client