Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/751D2C1A98E611EC849D155FC4F9AE02.roa
File:                     751D2C1A98E611EC849D155FC4F9AE02.roa (download)
Hash identifier:          OKsjZGRlav1kN5u48mPNVag9EJ6d1Weg3xXo+/x9Vpo=
Subject key identifier:   C6:5E:BF:2B:3E:D9:97:E7:1C:FA:F0:5B:88:FF:10:F8:75:E0:51:04
Certificate issuer:       /CN=A91F479C/serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299
Certificate serial:       02
Authority key identifier: 31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/751D2C1A98E611EC849D155FC4F9AE02.roa
ROA valid until:          May 28 00:00:00 2023 GMT
asID:                     400384
IP address blocks:
    1: 103.181.98.0/23 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F479C/serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299
        Validity
            Not Before: Feb 28 22:33:32 2022 GMT
            Not After : May 28 00:00:00 2023 GMT
        Subject: CN=621d4dbb-53bc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:62:ab:b6:4e:e7:c3:a5:9c:ee:43:6d:bc:19:
                    f5:bd:ea:3b:02:ea:1d:48:0d:be:65:2d:4a:2b:5e:
                    22:ed:2b:8c:3b:d2:f6:06:f2:e6:70:23:00:93:52:
                    d2:75:02:cf:2d:dc:17:2a:4c:c6:cb:9e:2e:2b:87:
                    48:c2:b6:41:0e:44:7c:1b:d1:7d:13:8d:ef:ea:7f:
                    6e:1b:34:45:fc:74:6f:3d:ac:b5:7f:4f:fa:85:9e:
                    52:80:0f:f8:c1:a3:8b:16:06:9a:55:55:a0:2b:8d:
                    8b:b1:c5:28:a6:ae:90:4e:8b:2f:42:c1:af:8f:1e:
                    34:17:0d:62:e1:31:b4:cb:3c:41:86:c7:75:fd:6b:
                    94:31:f9:73:4f:89:3c:c4:48:31:31:a4:f2:44:cb:
                    35:85:08:2f:e1:43:4e:9f:9a:72:f1:ef:31:69:41:
                    ad:72:32:58:0d:37:43:76:fb:7c:b2:ef:f5:ea:87:
                    32:0d:a9:30:6d:b0:e4:f1:82:92:f9:68:31:11:83:
                    4c:c6:d3:a3:9b:c8:ea:3b:f1:27:b6:fa:5e:ad:55:
                    94:26:1c:83:c4:53:3b:13:7a:08:34:35:5a:40:f6:
                    b2:57:ff:bc:87:b7:4f:7e:fe:10:26:fe:d6:63:9d:
                    1f:ba:98:a2:02:ce:ca:86:07:29:d9:92:e3:89:00:
                    5f:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                C6:5E:BF:2B:3E:D9:97:E7:1C:FA:F0:5B:88:FF:10:F8:75:E0:51:04
            X509v3 Authority Key Identifier: 
                keyid:31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/751D2C1A98E611EC849D155FC4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.181.98.0/23

    Signature Algorithm: sha256WithRSAEncryption
         5c:c7:77:56:51:a7:9e:f6:4e:a5:6e:47:fc:3e:78:5f:32:9e:
         e1:01:10:09:51:b1:9c:11:21:24:c9:df:21:65:31:d8:05:8c:
         d8:1d:40:06:0f:14:bd:23:58:b1:41:8d:44:57:a3:cd:ec:59:
         a1:e1:77:0b:72:48:98:e8:5f:29:4b:7f:41:b0:c4:0f:02:54:
         93:63:9e:4f:0b:d9:7a:ed:f7:f2:c5:e7:8c:ca:a8:a9:c7:9c:
         b3:da:be:64:7e:58:bf:01:5d:29:b7:e2:8e:b9:c4:af:6a:83:
         28:43:cf:18:c7:68:d0:e2:fc:78:81:0f:20:b9:c7:16:6c:a7:
         08:fc:25:f6:ad:89:77:75:20:8d:13:83:f5:13:ed:d9:eb:29:
         c9:17:9f:49:4e:0f:ad:9d:35:3d:db:29:8c:48:00:e3:9e:c6:
         99:59:08:8e:08:e0:9f:80:9a:2c:95:5e:65:70:f9:03:81:88:
         9c:a2:40:33:23:6d:8e:06:b7:95:e4:e5:09:c8:60:bb:94:c6:
         cd:01:cd:36:b1:bb:4f:a8:b2:59:19:ef:55:c0:a0:29:32:34:
         ab:c3:0f:20:d4:40:0e:9e:1f:93:45:d6:4b:2e:71:6a:b5:72:
         da:6d:3b:f3:17:65:b5:6f:9d:c7:e2:20:c0:82:b6:08:55:be:
         f2:d8:62:86
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG
NDc5QzExMC8GA1UEBRMoMzE5NzQwMkNDMUQ0MDZGOTcwN0QyRTIyMDQzNjNCQzBE
MTNDMDI5OTAeFw0yMjAyMjgyMjMzMzJaFw0yMzA1MjgwMDAwMDBaMBgxFjAUBgNV
BAMTDTYyMWQ0ZGJiLTUzYmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC0Yqu2TufDpZzuQ228GfW96jsC6h1IDb5lLUorXiLtK4w70vYG8uZwIwCTUtJ1
As8t3BcqTMbLni4rh0jCtkEORHwb0X0Tje/qf24bNEX8dG89rLV/T/qFnlKAD/jB
o4sWBppVVaArjYuxxSimrpBOiy9Cwa+PHjQXDWLhMbTLPEGGx3X9a5Qx+XNPiTzE
SDExpPJEyzWFCC/hQ06fmnLx7zFpQa1yMlgNN0N2+3yy7/XqhzINqTBtsOTxgpL5
aDERg0zG06ObyOo78Se2+l6tVZQmHIPEUzsTegg0NVpA9rJX/7yHt09+/hAm/tZj
nR+6mKICzsqGBynZkuOJAF9tAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUxl6/Kz7Z
l+cc+vBbiP8Q+HXgUQQwHwYDVR0jBBgwFoAUMZdALMHUBvlwfS4iBDY7wNE8Apkw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0NzlDLzMyQkY4NTBFOThF
NDExRUM5MzdENjE1Q0M0RjlBRTAyL01aZEFMTUhVQnZsd2ZTNGlCRFk3d05FOEFw
ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvTVpkQUxNSFVCdmx3ZlM0aUJEWTd3TkU4QXBrLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
NDc5Qy8zMkJGODUwRTk4RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi83NTFEMkMxQTk4
RTYxMUVDODQ5RDE1NUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAWe1YjANBgkqhkiG9w0BAQsFAAOCAQEAXMd3VlGnnvZOpW5H
/D54XzKe4QEQCVGxnBEhJMnfIWUx2AWM2B1ABg8UvSNYsUGNRFejzexZoeF3C3JI
mOhfKUt/QbDEDwJUk2OeTwvZeu338sXnjMqoqcecs9q+ZH5YvwFdKbfijrnEr2qD
KEPPGMdo0OL8eIEPILnHFmynCPwl9q2Jd3UgjROD9RPt2espyRefSU4PrZ01Pdsp
jEgA457GmVkIjgjgn4CaLJVeZXD5A4GInKJAMyNtjga3leTlCchgu5TGzQHNNrG7
T6iyWRnvVcCgKTI0q8MPINRADp4fk0XWSy5xarVy2m078xdltW+dx+IgwIK2CFW+
8thihg==
-----END CERTIFICATE-----
Generated at Wed Dec 7 03:06:07 2022 by rpki-client.