Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/8C7D223C2DAB11EF88127264C4F9AE02.roa
File: 8C7D223C2DAB11EF88127264C4F9AE02.roa (raw, json)
Hash identifier: qHX8rwWLzYwQ68AYEwJa6sYGgUw03regWlERxMTMTs4=
Subject key identifier: CC:AF:CE:B8:CA:35:E4:02:1F:F5:7C:20:B3:6C:A2:07:BA:25:E3:1D
Certificate issuer: /CN=A91A13A6/serialNumber=C47589962ED0D3892622BE5B7B8BEEFE8CE788A7
Certificate serial: D5
Authority key identifier: C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/8C7D223C2DAB11EF88127264C4F9AE02.roa
Signing time: Thu 13 Feb 2025 07:08:32 +0000
ROA not before: Thu 13 Feb 2025 07:08:32 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 10111
IP address blocks: 157.10.105.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 213 (0xd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A13A6
Validity
Not Before: Feb 13 07:08:32 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67ad9a6f-c687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:66:cd:59:8e:c1:02:57:97:02:e4:ef:c3:9b:
2f:08:df:bd:0c:22:18:75:90:89:60:04:7b:41:f8:
82:9d:55:43:22:64:e7:f0:df:94:0a:71:88:21:25:
f8:4c:6e:ba:63:17:38:da:a3:ba:14:95:e1:ad:00:
e2:64:b2:24:67:4b:ac:6a:d6:ce:ee:47:7b:9e:8b:
46:d8:9d:33:65:14:6f:77:73:fe:b4:79:00:b3:0b:
48:2b:20:a4:b0:a5:b2:53:4a:ab:0d:6f:8d:a5:9b:
01:8c:9e:6d:29:9b:d2:94:0a:06:79:a4:6b:6d:50:
c6:e3:81:cd:af:37:ff:0f:a1:76:aa:f1:ee:0c:19:
8e:e8:37:dd:f8:6a:29:35:bf:23:f9:f9:0f:43:00:
6a:59:00:93:81:8d:7e:d3:19:85:7a:63:d4:25:09:
4d:3b:ec:c4:3f:d6:e4:04:9e:e9:ee:11:ab:35:ee:
ec:81:db:e8:97:fa:61:91:9b:f1:c6:80:83:56:df:
17:9f:e6:0d:42:67:93:99:f9:5f:22:8f:3b:78:62:
50:45:79:49:6d:ae:82:66:03:80:e8:d6:dc:7b:ad:
56:f8:60:b7:5c:0e:d0:6a:16:7c:d5:83:f6:0f:07:
2f:6f:a6:f1:c3:68:c6:b7:fb:89:94:bd:9e:62:ec:
e1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:AF:CE:B8:CA:35:E4:02:1F:F5:7C:20:B3:6C:A2:07:BA:25:E3:1D
X509v3 Authority Key Identifier:
keyid:C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/8C7D223C2DAB11EF88127264C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.105.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:1e:aa:03:b5:50:c7:a1:6f:1e:73:48:78:ee:45:6f:2a:a1:
c4:74:4a:99:32:fc:44:cb:1b:5f:a3:92:65:67:d4:97:b0:cc:
4b:21:05:ec:64:ff:71:48:f2:ca:fd:da:d2:cc:5a:09:6a:9e:
04:7f:3a:36:85:96:50:2d:35:74:2f:06:11:94:d0:c0:1b:1f:
8f:03:76:a3:c6:1d:44:56:d3:5b:44:87:6c:5d:11:16:d3:72:
f1:6a:b8:2d:9d:4a:92:8f:62:a7:50:7e:e1:45:88:cf:1c:c3:
43:56:e5:b5:b4:0c:68:43:cc:12:f5:1c:5a:51:86:03:cb:39:
26:18:86:2e:da:80:bf:c3:0a:88:9d:17:51:82:26:ee:49:34:
25:e4:6d:21:cf:fb:cc:cd:d5:d1:fc:0d:9c:ac:b3:da:e3:17:
ed:0e:c0:66:49:78:f7:2d:ca:a3:d0:c3:5f:62:e3:89:c9:8c:
56:ea:1c:40:e9:c3:86:36:d0:31:8e:82:97:05:eb:1f:25:04:
3a:94:92:92:27:ca:57:a8:7e:a3:e6:04:b6:8d:a5:6d:a8:61:
38:a8:33:29:8d:8f:5e:af:73:29:72:95:ec:52:19:d9:56:72:
a0:59:a9:60:a6:b6:5e:fd:4e:ba:0e:af:32:8c:c8:d3:ca:4a:
49:db:de:db
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTEzQTYxMTAvBgNVBAUTKEM0NzU4OTk2MkVEMEQzODkyNjIyQkU1QjdCOEJFRUZF
OENFNzg4QTcwHhcNMjUwMjEzMDcwODMyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2FkOWE2Zi1jNjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAymbNWY7BAleXAuTvw5svCN+9DCIYdZCJYAR7QfiCnVVDImTn8N+UCnGIISX4
TG66Yxc42qO6FJXhrQDiZLIkZ0usatbO7kd7notG2J0zZRRvd3P+tHkAswtIKyCk
sKWyU0qrDW+NpZsBjJ5tKZvSlAoGeaRrbVDG44HNrzf/D6F2qvHuDBmO6Dfd+Gop
Nb8j+fkPQwBqWQCTgY1+0xmFemPUJQlNO+zEP9bkBJ7p7hGrNe7sgdvol/phkZvx
xoCDVt8Xn+YNQmeTmflfIo87eGJQRXlJba6CZgOA6Nbce61W+GC3XA7QahZ81YP2
Dwcvb6bxw2jGt/uJlL2eYuzhwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMyvzrjK
NeQCH/V8ILNsoge6JeMdMB8GA1UdIwQYMBaAFMR1iZYu0NOJJiK+W3uL7v6M54in
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTNBNi84MDc5NEM5QUMw
OEMxMUVFQkQ4MDVCMjRDNEY5QUUwMi94SFdKbGk3UTA0a21JcjViZTR2dV9vem5p
S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL3hIV0psaTdRMDRrbUlyNWJlNHZ1X296bmlLYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTEzQTYvODA3OTRDOUFDMDhDMTFFRUJEODA1QjI0QzRGOUFFMDIvOEM3RDIyM0My
REFCMTFFRjg4MTI3MjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBACdCmkwDQYJKoZIhvcNAQELBQADggEBAIseqgO1UMehbx5z
SHjuRW8qocR0Spky/ETLG1+jkmVn1JewzEshBexk/3FI8sr92tLMWglqngR/OjaF
llAtNXQvBhGU0MAbH48DdqPGHURW01tEh2xdERbTcvFquC2dSpKPYqdQfuFFiM8c
w0NW5bW0DGhDzBL1HFpRhgPLOSYYhi7agL/DCoidF1GCJu5JNCXkbSHP+8zN1dH8
DZyss9rjF+0OwGZJePctyqPQw19i44nJjFbqHEDpw4Y20DGOgpcF6x8lBDqUkpIn
yleofqPmBLaNpW2oYTioMymNj16vcylylexSGdlWcqBZqWCmtl79TroOrzKMyNPK
Sknb3ts=
-----END CERTIFICATE-----
Generated at Sun Apr 6 22:00:37 2025 by rpki-client