Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/05F2D47EFBE511EFA186694BC4F9AE02.roa
File: 05F2D47EFBE511EFA186694BC4F9AE02.roa (raw, json)
Hash identifier: IkEjb/yGRHk/uQJGwMGQ/U+tx2W+JXn7QEZviTI95MI=
Subject key identifier: 12:4C:BC:A4:92:DD:D0:73:89:7C:15:7E:A9:0F:58:E6:E5:8F:DC:A5
Certificate issuer: /CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208
Certificate serial: 034E
Authority key identifier: 64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/05F2D47EFBE511EFA186694BC4F9AE02.roa
Signing time: Sat 08 Mar 2025 06:17:34 +0000
ROA not before: Sat 08 Mar 2025 06:17:34 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 135386
IP address blocks: 157.119.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 846 (0x34e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91462B5
Validity
Not Before: Mar 8 06:17:34 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67cbe0fe-d209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:92:6a:d3:b5:dd:62:c0:f5:b8:6a:0a:b2:9c:
57:b7:4e:d1:51:b0:50:6e:03:4f:4a:76:75:49:e3:
45:ab:69:b6:bb:ed:7d:1d:96:84:10:ed:8a:fa:29:
b2:66:52:4c:67:22:24:92:86:9c:66:62:53:f9:ba:
69:f0:b2:32:b4:c8:af:a7:86:1c:8e:3d:fd:ed:07:
fd:55:1c:b4:ef:f0:38:9b:9e:8e:97:c9:21:67:f5:
b6:26:3d:d8:bc:0f:7e:83:73:58:6b:1e:aa:3a:8c:
f7:22:9a:d1:d2:37:fe:d2:a9:e9:9b:e8:80:e6:61:
24:35:73:8d:21:27:e9:43:86:f6:09:0a:52:c1:2b:
74:2e:62:99:03:0d:4b:16:b9:bb:b2:01:d6:f2:38:
6a:dd:7a:cb:0e:7a:dc:0b:95:e2:1c:62:f4:e5:42:
9a:22:e1:90:af:7f:36:c9:bf:12:96:07:77:de:71:
c6:e7:31:50:0e:30:6d:af:6b:08:49:46:6a:54:93:
4a:2b:f4:0f:4c:e7:28:61:5b:17:db:7e:2a:4c:eb:
3e:94:35:89:9c:77:31:69:80:74:a7:99:fa:6c:b7:
37:38:5b:cb:c8:9c:8a:e3:c7:00:c3:83:f2:3d:40:
40:e5:0e:eb:26:29:44:e3:12:35:0e:60:26:ca:d8:
78:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:4C:BC:A4:92:DD:D0:73:89:7C:15:7E:A9:0F:58:E6:E5:8F:DC:A5
X509v3 Authority Key Identifier:
keyid:64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/05F2D47EFBE511EFA186694BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.119.22.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:75:50:75:50:da:0e:b0:1b:dc:e5:4c:48:8c:74:bf:43:d5:
65:30:18:2d:2c:5b:31:12:81:03:15:cd:31:4e:21:b7:cb:71:
23:2b:ad:22:57:fc:31:80:e2:93:aa:06:d4:aa:4e:9e:c6:a5:
9e:35:0c:00:3b:69:90:6a:d7:d0:19:6d:e3:da:8e:18:5b:27:
a8:91:ca:ca:01:9d:31:25:7b:7f:6b:85:3a:46:1b:da:af:1d:
c2:9f:5a:d6:8d:60:c9:91:e8:94:a6:43:07:a7:0b:be:0e:49:
84:ec:ae:e1:af:11:73:5d:d9:0a:2f:56:d6:29:26:af:36:53:
72:b9:ab:ea:62:07:3a:e3:07:80:fa:d0:62:a8:be:fa:01:e8:
7e:e3:0b:bc:94:17:91:ff:16:e0:24:56:6c:a2:65:4b:aa:d9:
1f:47:54:2c:fd:ed:d2:f8:9a:f8:b5:26:f5:fe:d3:59:78:91:
ec:5e:83:3e:82:52:4f:1e:1e:1b:20:bd:ea:61:f8:07:c0:f8:
7e:cf:4a:cf:f9:f2:5f:68:4a:c8:b6:d2:b7:b8:15:e8:0c:fd:
ec:9b:92:50:64:52:bf:3b:bb:6a:19:61:e0:e9:bd:c8:00:ab:
ce:f3:41:30:94:70:9f:45:4b:fb:a2:e9:e9:df:04:3a:da:96:
0d:99:48:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:31:49 2025 by rpki-client