Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B5E/7DD7BBBC45B511EFBA4A621EC4F9AE02/F149E6BE45B611EFA10B0632C4F9AE02.roa
File: F149E6BE45B611EFA10B0632C4F9AE02.roa (raw, json)
Hash identifier: oxyCeNFM/JV3FlgREEjrGNxGIzoK5Vk5MzO+fwua+7Q=
Subject key identifier: 59:AF:C5:80:CD:A0:EF:AA:DA:56:89:84:59:B4:7C:D7:E3:D2:D5:55
Certificate issuer: /CN=A9145B5E/serialNumber=1727ED151F4089210EC3E368A5A69EE39484E3E6
Certificate serial: 5D
Authority key identifier: 17:27:ED:15:1F:40:89:21:0E:C3:E3:68:A5:A6:9E:E3:94:84:E3:E6
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FyftFR9AiSEOw-Nopaae45SE4-Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9145B5E/7DD7BBBC45B511EFBA4A621EC4F9AE02/F149E6BE45B611EFA10B0632C4F9AE02.roa
Signing time: Thu 09 Jan 2025 05:20:24 +0000
ROA not before: Thu 09 Jan 2025 05:20:24 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 152317
IP address blocks: 157.10.142.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93 (0x5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9145B5E
Validity
Not Before: Jan 9 05:20:24 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=677f5c97-ff45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9f:08:d7:b9:43:1d:5f:39:54:b6:c7:06:4a:
89:e2:07:19:33:1e:13:ac:83:dc:1b:c3:e4:3f:4e:
bf:12:a6:1a:cb:9e:e5:4f:9c:9b:62:90:e3:bd:4f:
b3:26:3a:be:92:02:16:3a:35:29:91:cb:ca:bd:0b:
21:80:af:e5:88:20:73:3e:c8:e9:4a:9a:c6:b4:10:
37:a2:a8:3a:fa:ea:49:e1:44:72:e5:98:62:5c:8d:
95:19:09:08:1d:22:41:b9:18:9c:52:55:c3:11:34:
78:9d:ac:bc:8e:16:b9:b2:d4:fb:be:f4:21:45:89:
14:48:29:b5:5c:54:18:72:d9:bf:a2:6a:8c:8e:da:
94:8d:0d:8a:65:6f:9c:b1:ce:aa:6a:76:ee:43:e6:
f0:a0:c8:f2:56:ee:ac:3b:58:77:f3:04:ed:80:3a:
b0:3e:b0:5f:4c:5d:70:ef:62:dc:0e:9c:1d:95:4d:
35:a5:f1:83:9d:77:18:9e:ec:74:4d:86:86:23:97:
64:20:3c:ae:62:7b:a5:39:45:3f:44:8a:7a:58:88:
ce:68:91:73:ee:20:5c:bb:06:b3:24:fe:b6:3e:ef:
9b:52:c5:a0:a1:d7:35:5f:53:39:93:cc:c4:6c:f8:
97:91:fe:d5:db:8f:02:fd:1f:77:8e:9d:a0:3a:0b:
c9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:AF:C5:80:CD:A0:EF:AA:DA:56:89:84:59:B4:7C:D7:E3:D2:D5:55
X509v3 Authority Key Identifier:
keyid:17:27:ED:15:1F:40:89:21:0E:C3:E3:68:A5:A6:9E:E3:94:84:E3:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9145B5E/7DD7BBBC45B511EFBA4A621EC4F9AE02/FyftFR9AiSEOw-Nopaae45SE4-Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FyftFR9AiSEOw-Nopaae45SE4-Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B5E/7DD7BBBC45B511EFBA4A621EC4F9AE02/F149E6BE45B611EFA10B0632C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.142.0/23
Signature Algorithm: sha256WithRSAEncryption
58:35:ba:59:81:ba:cc:1a:b2:3e:c1:4a:9c:1b:b0:b8:2a:aa:
90:73:1a:54:e1:11:8c:be:c2:7d:7f:fd:1e:62:86:42:39:3d:
a6:46:ce:87:41:e8:83:95:ed:39:64:9c:03:0d:70:3c:36:3e:
09:e8:91:5b:04:0f:a3:7f:80:4e:c5:01:26:b7:30:db:39:e8:
26:63:1c:51:c6:c2:e5:79:5b:41:bf:3f:97:8b:e4:ac:48:82:
13:00:7a:69:c7:4f:20:17:12:7c:42:cb:c9:c2:7f:ad:5a:17:
d5:3a:7b:28:38:b7:33:b6:d1:59:98:2f:ec:0e:d5:b0:49:b6:
84:7c:85:6a:1c:19:d2:ef:a0:eb:1e:08:43:51:a6:f9:ac:5a:
3e:36:25:f1:6a:fa:9d:43:59:f3:74:38:11:c3:a0:79:7f:0e:
2c:d9:85:47:bc:b4:80:ac:6e:13:0c:5d:99:33:09:e3:94:c4:
2a:f5:19:f2:c1:01:ee:e3:e6:ff:f0:e1:5b:8a:40:89:fc:47:
d0:5c:61:22:f9:bd:b8:0f:59:b5:75:62:b9:7d:39:08:92:70:
2e:b3:6d:4e:b4:ad:2d:50:62:33:8b:a2:a4:69:79:1f:5f:5d:
dc:9e:55:b0:75:68:85:6f:46:23:f4:ad:bd:de:a1:e7:f0:6b:
e5:d6:58:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:19:50 2025 by rpki-client