Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDCA4/EED99E32CB7E11E8993D1776C4F9AE02/7C5B2520E9FD11EA911AAC2BC4F9AE02.roa
File: 7C5B2520E9FD11EA911AAC2BC4F9AE02.roa (raw, json)
Hash identifier: 7FCrz25PUy09PxvPJB+INFar9zZoNdcW7cdwfxmjCkQ=
Subject key identifier: 25:FA:8B:0D:29:DA:49:0A:BF:05:5E:A0:0D:A6:A7:5C:3E:94:7A:FE
Certificate issuer: /CN=A91FDCA4/serialNumber=762763B7D600972930E9DE7A1442C5D30F68C484
Certificate serial: 1154
Authority key identifier: 76:27:63:B7:D6:00:97:29:30:E9:DE:7A:14:42:C5:D3:0F:68:C4:84
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/didjt9YAlykw6d56FELF0w9oxIQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FDCA4/EED99E32CB7E11E8993D1776C4F9AE02/7C5B2520E9FD11EA911AAC2BC4F9AE02.roa
Signing time: Mon 18 Sep 2023 17:34:47 +0000
ROA not before: Mon 18 Sep 2023 17:34:47 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 48011
IP address blocks: 103.130.145.0/24 maxlen: 24
103.130.147.0/24 maxlen: 24
2403:bcc0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4436 (0x1154)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FDCA4/serialNumber=762763B7D600972930E9DE7A1442C5D30F68C484
Validity
Not Before: Sep 18 17:34:47 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=65088a37-6ce1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ee:c7:f6:48:6f:4f:23:07:1d:17:4d:a9:b2:
34:64:3d:ec:18:d4:94:ff:66:7d:ac:97:31:08:8b:
9a:23:6d:7f:38:29:72:8b:db:1a:08:bf:b6:34:e6:
84:10:f7:47:3a:a7:ed:d0:b6:4d:07:a3:e6:5c:fd:
99:bb:b9:eb:ba:e9:8f:0e:72:fd:ac:3d:02:84:46:
96:c2:6d:b0:8f:76:78:5b:7d:73:d1:2e:73:c8:ca:
f0:26:7e:b8:c0:4f:47:d3:bf:e5:ed:fe:2f:f6:5e:
50:83:96:35:f3:84:02:d0:25:9a:00:3e:57:dc:17:
c8:0c:b3:e8:e8:ec:10:f7:b1:56:52:2e:a5:e9:c5:
09:3f:2e:be:ee:9e:6f:4c:82:79:03:c0:d2:51:a3:
c6:af:ee:f7:28:5a:19:65:d6:2e:72:a3:19:78:e9:
b2:8e:4e:73:f4:b5:f0:ca:26:a7:8e:5b:ee:ab:ac:
42:3f:8f:9c:2d:99:83:50:0d:c3:9e:ac:59:d6:10:
b0:8c:7b:be:b5:c1:78:68:e2:a8:13:75:fc:24:20:
97:22:d8:6f:51:4f:08:f0:d6:69:ef:7e:65:f9:d1:
1e:d4:1d:cf:49:80:3b:12:0d:b5:2a:80:6d:f2:27:
cc:ae:0f:b6:b2:80:98:c1:d3:78:0f:ae:c2:d4:c9:
48:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:FA:8B:0D:29:DA:49:0A:BF:05:5E:A0:0D:A6:A7:5C:3E:94:7A:FE
X509v3 Authority Key Identifier:
keyid:76:27:63:B7:D6:00:97:29:30:E9:DE:7A:14:42:C5:D3:0F:68:C4:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FDCA4/EED99E32CB7E11E8993D1776C4F9AE02/didjt9YAlykw6d56FELF0w9oxIQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/didjt9YAlykw6d56FELF0w9oxIQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDCA4/EED99E32CB7E11E8993D1776C4F9AE02/7C5B2520E9FD11EA911AAC2BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.145.0/24
103.130.147.0/24
IPv6:
2403:bcc0::/48
Signature Algorithm: sha256WithRSAEncryption
af:59:f7:ec:32:fd:c9:76:3e:ac:a2:0f:1f:8d:ee:87:cf:42:
cf:bf:e4:24:f7:40:8e:0b:53:28:1f:31:5a:73:7d:c0:7c:1b:
a3:bb:ae:ef:12:cc:00:b6:a5:a4:d4:6f:95:97:88:6e:af:2c:
e8:0c:22:8a:29:db:da:6d:0f:f1:d6:0a:f7:18:77:c6:97:f8:
12:db:5f:a7:79:7d:03:0e:cd:e3:08:97:d2:a9:db:dd:32:c5:
d0:dc:f3:e4:77:1d:b2:f6:50:09:11:d6:71:c6:f4:c7:5b:8e:
2e:49:a7:23:94:9a:ff:8b:d2:f6:92:17:0c:58:28:64:9a:4f:
2c:66:8c:66:96:94:c5:b1:c4:65:cb:ee:2c:47:58:ee:8e:d0:
05:45:e9:70:7c:dd:ea:92:60:ef:83:f1:69:b9:d6:db:81:01:
14:e8:e1:30:2d:27:6f:d2:93:d5:d9:33:ef:c5:08:d2:8c:d5:
12:db:02:45:88:4f:15:d1:ec:0f:8a:49:78:26:6b:52:f1:0a:
dc:95:46:4e:4c:24:ba:4b:f3:16:55:02:c4:90:1a:37:55:1c:
3b:64:69:5a:ad:95:ec:4b:80:d1:a9:8b:da:5e:ed:ac:a8:4f:
6a:4d:ab:35:11:40:b4:50:87:df:54:2d:4d:80:fd:4a:40:48:
6c:f9:82:87
-----BEGIN CERTIFICATE-----
MIIFiDCCBHCgAwIBAgICEVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RkRDQTQxMTAvBgNVBAUTKDc2Mjc2M0I3RDYwMDk3MjkzMEU5REU3QTE0NDJDNUQz
MEY2OEM0ODQwHhcNMjMwOTE4MTczNDQ3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTA4OGEzNy02Y2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxe7H9khvTyMHHRdNqbI0ZD3sGNSU/2Z9rJcxCIuaI21/OClyi9saCL+2NOaE
EPdHOqft0LZNB6PmXP2Zu7nruumPDnL9rD0ChEaWwm2wj3Z4W31z0S5zyMrwJn64
wE9H07/l7f4v9l5Qg5Y184QC0CWaAD5X3BfIDLPo6OwQ97FWUi6l6cUJPy6+7p5v
TIJ5A8DSUaPGr+73KFoZZdYucqMZeOmyjk5z9LXwyianjlvuq6xCP4+cLZmDUA3D
nqxZ1hCwjHu+tcF4aOKoE3X8JCCXIthvUU8I8NZp735l+dEe1B3PSYA7Eg21KoBt
8ifMrg+2soCYwdN4D67C1MlIXwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFCX6iw0p
2kkKvwVeoA2mp1w+lHr+MB8GA1UdIwQYMBaAFHYnY7fWAJcpMOneehRCxdMPaMSE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRENBNC9FRUQ5OUUzMkNC
N0UxMUU4OTkzRDE3NzZDNEY5QUUwMi9kaWRqdDlZQWx5a3c2ZDU2RkVMRjB3OW94
SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2RpZGp0OVlBbHlrdzZkNTZGRUxGMHc5b3hJUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RkRDQTQvRUVEOTlFMzJDQjdFMTFFODk5M0QxNzc2QzRGOUFFMDIvN0M1QjI1MjBF
OUZEMTFFQTkxMUFBQzJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E
JzAlMBIEAgABMAwDBABngpEDBABngpMwDwQCAAIwCQMHACQDvMAAADANBgkqhkiG
9w0BAQsFAAOCAQEAr1n37DL9yXY+rKIPH43uh89Cz7/kJPdAjgtTKB8xWnN9wHwb
o7uu7xLMALalpNRvlZeIbq8s6Awiiinb2m0P8dYK9xh3xpf4Ettfp3l9Aw7N4wiX
0qnb3TLF0Nzz5HcdsvZQCRHWccb0x1uOLkmnI5Sa/4vS9pIXDFgoZJpPLGaMZpaU
xbHEZcvuLEdY7o7QBUXpcHzd6pJg74PxabnW24EBFOjhMC0nb9KT1dkz78UI0ozV
EtsCRYhPFdHsD4pJeCZrUvEK3JVGTkwkukvzFlUCxJAaN1UcO2RpWq2V7EuA0amL
2l7trKhPak2rNRFAtFCH31QtTYD9SkBIbPmChw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:52 2024 by rpki-client on console-fra.rpki-client.org