Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/FF54B40CC5B211EEA92E3F62C4F9AE02.roa
File: FF54B40CC5B211EEA92E3F62C4F9AE02.roa (raw, json)
Hash identifier: rYS/+RVyvGSEETl6DHL3RNhFt2MqtN75pOXed+iWAms=
Subject key identifier: 46:34:DA:0B:C6:9D:E6:A7:10:2F:21:1F:09:5A:5D:01:11:7C:A1:F5
Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9
Certificate serial: 1A33
Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/FF54B40CC5B211EEA92E3F62C4F9AE02.roa
Signing time: Thu 30 May 2024 15:53:39 +0000
ROA not before: Thu 30 May 2024 15:53:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58762
IP address blocks: 157.10.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6707 (0x1a33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: May 30 15:53:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a103-21b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6b:f2:c8:5a:7c:75:ce:14:f5:10:ca:b1:d8:
14:da:cc:ff:68:44:3b:e5:3e:f6:a1:68:ff:4f:7d:
b3:da:ca:6d:27:8c:6b:38:72:4d:af:e4:b2:23:c2:
62:0e:2d:a2:74:b1:fa:76:f9:91:2f:67:02:3c:ee:
d3:6d:63:01:08:f6:0b:1e:0f:0f:16:16:85:08:50:
9f:23:d4:0d:bb:b1:2e:f3:60:2e:7e:08:6f:b7:86:
2a:c9:3f:c3:ad:da:b1:9b:48:31:64:90:fc:7c:ce:
da:95:6e:56:df:d1:b2:3f:f5:e4:36:c5:6b:f6:a0:
94:95:ef:72:51:85:89:e7:16:88:e8:3a:62:4c:c7:
6f:f2:f8:9f:8f:a6:51:cd:5d:b9:2d:bd:d9:ea:b5:
68:10:9c:fa:1b:e8:06:b5:89:8a:29:8e:7a:87:c7:
45:ca:5f:00:4b:96:04:99:df:b5:05:8f:f6:27:d9:
c2:de:2d:cb:66:d9:62:c9:df:a1:38:af:07:c8:a8:
0b:42:0c:74:cc:4f:04:95:2f:d6:9e:ea:b9:c2:5b:
aa:41:22:2d:0e:6e:16:9f:94:d3:af:03:5d:06:ab:
d0:71:de:d2:6a:91:03:d0:c1:eb:82:86:40:b2:85:
cd:c3:07:5d:b9:7c:9d:9d:ce:3a:ed:a6:c9:6d:2e:
9f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:34:DA:0B:C6:9D:E6:A7:10:2F:21:1F:09:5A:5D:01:11:7C:A1:F5
X509v3 Authority Key Identifier:
keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/FF54B40CC5B211EEA92E3F62C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.93.0/24
Signature Algorithm: sha256WithRSAEncryption
63:24:c2:c9:fa:96:4b:8f:e5:02:42:d5:10:0c:0f:63:d1:00:
fa:ce:24:3b:0c:76:f7:03:7f:85:18:a7:83:a1:16:54:88:0a:
55:07:e6:f1:9c:be:b7:d0:6e:63:ec:53:07:d3:1e:f6:ac:9b:
85:04:57:2b:e0:d5:3a:8a:12:1c:56:f8:c4:64:3f:30:2f:ce:
34:1e:9c:1a:a5:4d:2b:30:16:db:0f:1a:a0:7f:4b:ff:0b:2c:
c9:15:66:f2:89:0a:92:e1:a6:aa:fb:c0:59:61:fd:bf:cc:38:
27:24:12:0c:fc:62:7c:aa:bd:92:9c:93:fe:bd:ec:5f:8b:fd:
99:1e:72:fd:b8:f4:38:f8:f4:b8:97:7c:bd:0e:0c:f7:35:df:
66:13:5c:c3:09:be:a6:25:4b:72:d5:4a:ed:e4:73:6f:32:09:
46:63:81:2b:53:6b:73:9b:0f:1b:d4:0d:e4:79:2f:62:c6:dc:
32:34:e1:71:3e:69:f8:3c:5b:12:f4:c1:86:51:11:b8:c8:4f:
6e:46:8a:d4:4a:99:ed:22:30:11:28:f7:74:84:4c:e4:aa:ff:
ea:fd:07:b9:18:8b:04:f3:d7:b5:83:d3:de:f6:b6:d7:63:40:
3a:3a:a6:d8:a3:22:34:c4:6d:75:84:9f:10:d3:85:73:44:b8:
0c:ef:5b:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 03:56:08 2025 by rpki-client