Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B76C776472E411ED833AE326C4F9AE02.roa
File:                     B76C776472E411ED833AE326C4F9AE02.roa (download)
Hash identifier:          Vjo7IaRq2/Irs/8whYWy9FwLS22EKi1zQzuLv7SdVUg=
Subject key identifier:   EB:EC:A5:0C:9A:DF:96:8E:E3:ED:AF:33:92:99:B6:F8:AF:15:AF:BF
Certificate issuer:       /CN=A91C326F/serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6
Certificate serial:       04F7
Authority key identifier: 39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B76C776472E411ED833AE326C4F9AE02.roa
ROA valid until:          Tue 31 Oct 2023 00:00:00 +0000
asID:                     400619
IP address blocks:
    1: 103.68.192.0/24 maxlen: 24
    2: 103.68.193.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1271 (0x4f7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C326F/serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6
        Validity
            Not Before: Dec  3 08:30:18 2022 GMT
            Not After : Oct 31 00:00:00 2023 GMT
        Subject: CN=638b0919-553c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:77:3e:1b:d6:ff:97:12:02:54:da:fa:51:93:
                    65:ae:0e:b5:07:6b:ad:43:b5:9a:f6:c2:db:e2:53:
                    3f:a4:9e:0a:ad:27:14:91:a3:05:47:56:54:15:f4:
                    dd:37:49:73:ef:96:61:03:b4:03:cb:b4:00:57:6d:
                    c5:0d:15:12:0f:cd:04:87:40:be:0d:cb:46:01:4a:
                    57:d6:f2:46:18:db:f2:53:4a:9a:c4:99:85:95:52:
                    b2:cd:c0:c4:de:11:86:fd:18:c3:d9:b2:a2:a7:a3:
                    be:26:e7:08:f8:b2:04:b7:66:94:df:0c:36:d1:ba:
                    21:8e:bf:1e:89:94:fb:18:5c:dd:76:2b:bf:84:ce:
                    e9:bd:56:7c:c1:be:e7:bc:18:39:f6:04:34:5e:3e:
                    f1:e9:88:e3:9a:c7:e7:07:51:74:22:3a:d3:a2:59:
                    49:49:1d:a9:dd:ed:aa:d0:7c:c9:65:ac:91:74:27:
                    94:6a:14:95:46:65:13:1c:21:77:82:1c:15:ba:4a:
                    0b:22:0e:e3:83:46:c5:04:ad:e3:10:45:ae:67:99:
                    34:ba:17:e6:de:44:18:10:64:b1:62:58:b3:45:d8:
                    cb:ec:fb:54:fe:07:f9:b7:e6:7a:a0:a3:49:b3:67:
                    7a:6b:99:58:31:f8:6d:38:7b:94:c0:87:df:e9:7a:
                    f1:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                EB:EC:A5:0C:9A:DF:96:8E:E3:ED:AF:33:92:99:B6:F8:AF:15:AF:BF
            X509v3 Authority Key Identifier: 
                keyid:39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B76C776472E411ED833AE326C4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.68.192.0/23

    Signature Algorithm: sha256WithRSAEncryption
         28:f4:5a:26:10:8f:70:6c:eb:fc:3c:1c:bb:38:55:72:35:6f:
         f0:6e:52:4c:10:4f:87:28:92:97:e6:fc:0d:02:1b:6f:41:7f:
         08:7d:ea:e2:52:34:72:85:63:da:cf:68:79:84:96:a7:08:ab:
         04:4b:ca:7c:57:15:ac:f1:97:e1:8a:50:7d:61:f8:f1:5f:a8:
         4d:b3:5c:6d:87:9a:13:e2:4d:7a:e4:2f:2e:48:d3:e0:52:5d:
         0d:c8:4d:a9:e6:c3:02:44:b2:0e:11:93:0c:bc:bc:60:d5:79:
         eb:b4:f4:85:db:e6:49:4f:06:cb:e8:d4:fd:d0:07:0e:76:00:
         9c:4f:fd:9c:d2:45:c5:96:02:06:53:66:80:64:ea:b7:09:a6:
         8a:84:ee:c9:73:c8:22:73:56:6b:5b:f1:71:69:6d:4b:99:2f:
         1e:4e:aa:f8:f7:c7:38:b4:1d:9e:06:4e:1b:a4:a5:d6:a8:56:
         7d:85:7c:83:9d:ca:e3:b5:da:dc:cc:62:ad:18:d2:75:6b:29:
         e3:5c:c1:44:6e:c3:8a:b5:cf:63:1e:33:4f:71:72:28:62:57:
         f8:1e:bb:b5:13:77:46:4e:ce:5d:08:28:89:ff:ef:e5:6b:31:
         46:f7:af:87:b4:1c:bd:dd:90:08:8a:39:d7:73:1a:04:76:03:
         b3:75:c2:ab
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICBPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzMyNkYxMTAvBgNVBAUTKDM5MkYzNkUwQTQ1MDA1M0MzREM2NkQyRTM4OTRFMTBD
QTczM0REQTYwHhcNMjIxMjAzMDgzMDE4WhcNMjMxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzhiMDkxOS01NTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwHc+G9b/lxICVNr6UZNlrg61B2utQ7Wa9sLb4lM/pJ4KrScUkaMFR1ZUFfTd
N0lz75ZhA7QDy7QAV23FDRUSD80Eh0C+DctGAUpX1vJGGNvyU0qaxJmFlVKyzcDE
3hGG/RjD2bKip6O+JucI+LIEt2aU3ww20bohjr8eiZT7GFzddiu/hM7pvVZ8wb7n
vBg59gQ0Xj7x6YjjmsfnB1F0IjrTollJSR2p3e2q0HzJZayRdCeUahSVRmUTHCF3
ghwVukoLIg7jg0bFBK3jEEWuZ5k0uhfm3kQYEGSxYlizRdjL7PtU/gf5t+Z6oKNJ
s2d6a5lYMfhtOHuUwIff6XrxgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOvspQya
35aO4+2vM5KZtvivFa+/MB8GA1UdIwQYMBaAFDkvNuCkUAU8PcZtLjiU4QynM92m
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzI2Ri83ODY2RjUzMDVG
QzcxMUVCOEE2OTIwMkVDNEY5QUUwMi9PUzgyNEtSUUJUdzl4bTB1T0pUaERLY3oz
YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09TODI0S1JRQlR3OXhtMHVPSlRoREtjejNhWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QzMyNkYvNzg2NkY1MzA1RkM3MTFFQjhBNjkyMDJFQzRGOUFFMDIvQjc2Qzc3NjQ3
MkU0MTFFRDgzM0FFMzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnRMAwDQYJKoZIhvcNAQELBQADggEBACj0WiYQj3Bs6/w8
HLs4VXI1b/BuUkwQT4cokpfm/A0CG29Bfwh96uJSNHKFY9rPaHmElqcIqwRLynxX
Fazxl+GKUH1h+PFfqE2zXG2HmhPiTXrkLy5I0+BSXQ3ITanmwwJEsg4Rkwy8vGDV
eeu09IXb5klPBsvo1P3QBw52AJxP/ZzSRcWWAgZTZoBk6rcJpoqE7slzyCJzVmtb
8XFpbUuZLx5Oqvj3xzi0HZ4GThukpdaoVn2FfIOdyuO12tzMYq0Y0nVrKeNcwURu
w4q1z2MeM09xcihiV/geu7UTd0ZOzl0IKIn/7+VrMUb3r4e0HL3dkAiKOddzGgR2
A7N1wqs=
-----END CERTIFICATE-----
Generated at Sat Feb 4 00:22:07 2023 by rpki-client.