Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/A2C94D9C3F0F11EB80256B25C4F9AE02.roa
File: A2C94D9C3F0F11EB80256B25C4F9AE02.roa (raw, json)
Hash identifier: 86l4f+cm101fvXxoRGl/WXh8XBf1B4iUK22+JkpAYks=
Subject key identifier: 72:63:0D:49:79:3F:86:60:AF:F8:11:3F:45:76:99:52:58:69:C0:0E
Certificate issuer: /CN=A916B232/serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74
Certificate serial: 06D6
Authority key identifier: 6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/A2C94D9C3F0F11EB80256B25C4F9AE02.roa
Signing time: Thu 30 Jan 2025 22:14:10 +0000
ROA not before: Thu 30 Jan 2025 22:14:10 +0000
ROA not after: Mon 02 Jun 2025 00:00:00 +0000
asID: 141462
IP address blocks: 103.159.186.0/23 maxlen: 23
103.159.186.0/24 maxlen: 24
103.159.187.0/24 maxlen: 24
2001:df5:8b80::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1750 (0x6d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916B232/serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74
Validity
Not Before: Jan 30 22:14:10 2025 GMT
Not After : Jun 2 00:00:00 2025 GMT
Subject: CN=679bf9b2-7a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f7:aa:4b:7e:5a:92:be:43:ce:78:0f:27:3e:
2e:9b:76:47:b8:f9:9e:64:e3:fd:18:f6:59:e4:24:
a4:ea:2a:f4:37:93:20:55:13:f7:e9:1a:4c:0e:f9:
91:e4:a5:ba:b5:5b:52:3f:ad:27:09:8c:4b:14:3d:
8d:2a:86:15:47:8a:aa:09:37:8d:49:19:91:98:d0:
07:de:a8:29:3a:e2:38:c4:2c:d2:df:1f:f3:ab:4d:
a9:1b:be:77:fc:58:54:9d:db:50:7b:31:04:bd:56:
43:8f:7b:a8:de:89:77:d8:96:73:3d:19:c2:47:59:
ce:0f:9e:e0:e6:7a:67:b5:93:26:a5:0b:5e:7e:c5:
14:4f:0a:bf:f0:38:99:42:d3:cf:85:48:56:fc:f8:
7a:1d:b2:23:c3:b9:59:98:fc:8d:88:88:ee:80:fb:
d6:5d:41:92:9c:51:39:d9:b0:c7:51:ef:e1:f7:63:
b3:b5:fa:51:89:8b:73:c7:27:b5:e6:06:0d:6f:0d:
b9:7a:04:55:ff:97:41:4b:0a:9d:79:89:d6:35:9d:
a9:37:ea:95:6a:88:46:23:72:43:16:f6:3b:2b:03:
64:18:45:43:76:87:f8:13:26:66:a0:f1:14:07:a9:
48:ed:e6:84:a0:60:f0:56:3b:f7:61:82:57:56:45:
a3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:63:0D:49:79:3F:86:60:AF:F8:11:3F:45:76:99:52:58:69:C0:0E
X509v3 Authority Key Identifier:
keyid:6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/A2C94D9C3F0F11EB80256B25C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.186.0/23
IPv6:
2001:df5:8b80::/48
Signature Algorithm: sha256WithRSAEncryption
0c:b3:3b:f3:b3:03:1f:63:62:d1:dd:f6:b1:00:13:3e:49:51:
c0:0e:7f:da:b6:69:0a:85:24:4e:b7:55:90:b5:68:91:9f:a1:
58:80:14:e8:46:97:98:d4:67:8a:2a:8e:ee:ea:45:36:bc:d8:
6a:98:92:38:3e:d8:82:99:a2:a8:e0:02:c5:32:6e:a3:c2:a8:
f3:69:d0:6e:a5:44:a4:22:e4:5f:02:81:86:23:cb:7d:8c:1f:
a0:da:ca:97:3a:0d:8f:4f:01:47:64:9b:91:c8:7d:d6:2d:34:
80:6b:2b:b3:ec:55:f8:b1:16:45:92:04:35:02:98:b0:eb:a7:
81:a2:2e:42:57:df:78:1c:a8:2a:6a:fb:4b:c0:c7:7f:4d:4e:
d8:db:3b:eb:dc:5b:1c:46:84:40:72:21:c1:22:0d:1e:f4:f3:
fd:de:e5:27:13:44:ba:8a:9d:2e:9e:7d:10:31:b5:83:b7:89:
94:44:82:1d:14:1f:34:c5:6f:2d:e8:cb:90:c3:21:b9:9e:e0:
9e:3e:4a:49:21:4a:61:75:6b:f2:37:0e:f1:15:ba:77:d2:fc:
63:62:4f:1a:8a:96:53:0b:0e:75:cb:10:d3:64:6d:1c:7b:62:
7f:aa:ef:b9:f1:c5:a9:e3:48:a0:16:f3:5f:3d:55:ed:a5:a7:
69:32:ae:81
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICBtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NkIyMzIxMTAvBgNVBAUTKDZFMTg0QkUxNDYxMkQ1QTJCNTNDNDk4NzY4NDQ1MDg1
MERCMDJDNzQwHhcNMjUwMTMwMjIxNDEwWhcNMjUwNjAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzliZjliMi03YTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArfeqS35akr5DzngPJz4um3ZHuPmeZOP9GPZZ5CSk6ir0N5MgVRP36RpMDvmR
5KW6tVtSP60nCYxLFD2NKoYVR4qqCTeNSRmRmNAH3qgpOuI4xCzS3x/zq02pG753
/FhUndtQezEEvVZDj3uo3ol32JZzPRnCR1nOD57g5npntZMmpQtefsUUTwq/8DiZ
QtPPhUhW/Ph6HbIjw7lZmPyNiIjugPvWXUGSnFE52bDHUe/h92OztfpRiYtzxye1
5gYNbw25egRV/5dBSwqdeYnWNZ2pN+qVaohGI3JDFvY7KwNkGEVDdof4EyZmoPEU
B6lI7eaEoGDwVjv3YYJXVkWjZQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHJjDUl5
P4Zgr/gRP0V2mVJYacAOMB8GA1UdIwQYMBaAFG4YS+FGEtWitTxJh2hEUIUNsCx0
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjIzMi85NEQ0Qzc0MDNG
MEQxMUVCQUYxRkNFMjJDNEY5QUUwMi9iaGhMNFVZUzFhSzFQRW1IYUVSUWhRMndM
SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2JoaEw0VVlTMWFLMVBFbUhhRVJRaFEyd0xIUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NkIyMzIvOTRENEM3NDAzRjBEMTFFQkFGMUZDRTIyQzRGOUFFMDIvQTJDOTREOUMz
RjBGMTFFQjgwMjU2QjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBAFnn7owDwQCAAIwCQMHACABDfWLgDANBgkqhkiG9w0BAQsF
AAOCAQEADLM787MDH2Ni0d32sQATPklRwA5/2rZpCoUkTrdVkLVokZ+hWIAU6EaX
mNRniiqO7upFNrzYapiSOD7YgpmiqOACxTJuo8Ko82nQbqVEpCLkXwKBhiPLfYwf
oNrKlzoNj08BR2Sbkch91i00gGsrs+xV+LEWRZIENQKYsOungaIuQlffeByoKmr7
S8DHf01O2Ns769xbHEaEQHIhwSINHvTz/d7lJxNEuoqdLp59EDG1g7eJlESCHRQf
NMVvLejLkMMhuZ7gnj5KSSFKYXVr8jcO8RW6d9L8Y2JPGoqWUwsOdcsQ02RtHHti
f6rvufHFqeNIoBbzXz1V7aWnaTKugQ==
-----END CERTIFICATE-----
Generated at Fri Apr 25 14:17:43 2025 by rpki-client