Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/6339493A516311ED90F04711C4F9AE02.roa
File: 6339493A516311ED90F04711C4F9AE02.roa (raw, json)
Hash identifier: UZVHz0fvOssKPNLwiZ35IeL2xHQA6a7FTosxanmpoZw=
Subject key identifier: ED:25:D6:9B:6E:40:00:A1:E3:A3:08:9D:46:B0:71:FF:80:F6:71:B9
Certificate issuer: /CN=A911A702/serialNumber=88D1C994E8108FC0A533DF4BB8E2CE8D1C4B9F17
Certificate serial: 0603
Authority key identifier: 88:D1:C9:94:E8:10:8F:C0:A5:33:DF:4B:B8:E2:CE:8D:1C:4B:9F:17
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/6339493A516311ED90F04711C4F9AE02.roa
Signing time: Sun 22 Dec 2024 22:31:10 +0000
ROA not before: Sun 22 Dec 2024 22:31:10 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 53587
IP address blocks: 45.64.244.0/22 maxlen: 24
103.242.108.0/22 maxlen: 22
103.242.108.0/24 maxlen: 24
103.242.109.0/24 maxlen: 24
103.242.110.0/24 maxlen: 24
103.242.111.0/24 maxlen: 24
2401:9c80::/32 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1539 (0x603)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911A702
Validity
Not Before: Dec 22 22:31:10 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=6768932e-7263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6a:09:68:01:86:8b:6c:c5:f7:3a:ee:55:56:
b0:9c:bd:01:ec:76:42:24:45:71:1c:70:c7:70:4a:
ed:be:a0:69:c8:df:74:f3:32:17:7f:01:5b:76:8f:
87:e1:a1:5f:47:04:2a:05:0b:33:f5:fd:15:7e:c7:
4f:eb:c3:3c:f3:51:0e:18:50:b4:02:d1:47:04:36:
36:60:c3:a4:48:76:e0:c3:c8:39:cc:61:90:c8:b6:
87:30:2d:0d:c8:ac:1e:7d:e5:30:35:31:ce:0b:21:
7e:e2:cf:43:80:c7:23:e5:e2:95:03:9e:5b:94:33:
e0:80:67:f0:01:ac:50:61:f4:78:b0:28:13:e3:3a:
cb:45:b9:69:5a:9a:5f:d2:92:58:ad:94:51:0e:44:
75:4b:e1:b2:af:03:cf:94:ca:12:c6:1d:db:69:ef:
24:18:08:4b:86:98:d4:41:e1:14:d2:43:ee:eb:d7:
cd:b7:e3:3e:32:59:a6:6d:54:67:00:c4:f7:ad:60:
e9:e2:bd:db:f3:a6:e2:b0:04:b1:6b:5b:c1:68:47:
96:66:a7:19:38:e1:fa:99:10:9f:ab:c1:16:e6:64:
85:41:79:9a:46:40:77:45:90:ac:50:8e:a7:ff:81:
be:75:45:25:48:62:bd:3a:bd:d7:60:40:40:f3:1c:
60:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:25:D6:9B:6E:40:00:A1:E3:A3:08:9D:46:B0:71:FF:80:F6:71:B9
X509v3 Authority Key Identifier:
keyid:88:D1:C9:94:E8:10:8F:C0:A5:33:DF:4B:B8:E2:CE:8D:1C:4B:9F:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/6339493A516311ED90F04711C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.244.0/22
103.242.108.0/22
IPv6:
2401:9c80::/32
Signature Algorithm: sha256WithRSAEncryption
ba:a4:fc:f1:3f:be:0b:4d:9d:84:99:04:fe:51:47:15:60:5c:
76:38:45:da:ac:b1:6d:4a:7d:79:5b:c9:70:3e:1c:c2:48:d6:
74:e0:cf:05:94:f5:a0:1d:fc:48:ed:bb:2a:dc:92:84:87:f7:
a5:3b:d3:1b:79:6a:61:e3:46:77:ba:58:b0:22:b7:52:01:a3:
6e:b4:57:60:c2:07:11:8e:bf:6f:a1:8a:e2:23:c9:2e:61:b1:
89:e7:b9:49:01:8e:61:1c:bb:e7:5e:33:07:59:d3:3e:82:d9:
c1:63:63:93:91:f1:5d:41:fd:dd:c8:26:70:f7:f5:15:50:6e:
a4:9a:a2:05:c8:f3:ff:5f:16:4c:79:84:61:99:df:ce:d4:40:
1e:c9:19:7b:8b:32:ff:61:94:cd:cf:27:0c:cb:f8:53:43:fe:
68:5e:ea:8a:a1:a6:89:2b:78:71:3e:21:63:cd:68:23:61:bb:
fa:89:f0:ab:e1:43:28:fb:32:db:c4:84:04:64:78:02:d4:af:
ae:35:b7:60:fa:e6:ce:b6:73:9e:07:fd:06:35:87:29:99:db:
d6:c4:7c:57:b6:bb:22:e2:33:3b:39:75:89:7b:68:a9:3e:43:
6c:8f:1a:58:c7:20:48:eb:13:31:7a:c2:06:6f:ba:61:51:49:
64:e8:80:2d
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgICBgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUE3MDIxMTAvBgNVBAUTKDg4RDFDOTk0RTgxMDhGQzBBNTMzREY0QkI4RTJDRThE
MUM0QjlGMTcwHhcNMjQxMjIyMjIzMTEwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzY4OTMyZS03MjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA12oJaAGGi2zF9zruVVawnL0B7HZCJEVxHHDHcErtvqBpyN908zIXfwFbdo+H
4aFfRwQqBQsz9f0VfsdP68M881EOGFC0AtFHBDY2YMOkSHbgw8g5zGGQyLaHMC0N
yKwefeUwNTHOCyF+4s9DgMcj5eKVA55blDPggGfwAaxQYfR4sCgT4zrLRblpWppf
0pJYrZRRDkR1S+GyrwPPlMoSxh3bae8kGAhLhpjUQeEU0kPu69fNt+M+MlmmbVRn
AMT3rWDp4r3b86bisASxa1vBaEeWZqcZOOH6mRCfq8EW5mSFQXmaRkB3RZCsUI6n
/4G+dUUlSGK9Or3XYEBA8xxgWwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFO0l1ptu
QACh46MInUawcf+A9nG5MB8GA1UdIwQYMBaAFIjRyZToEI/ApTPfS7jizo0cS58X
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTcwMi85MzlDQUUyQzhE
RDkxMUVCOEVGQjQxNThDNEY5QUUwMi9pTkhKbE9nUWo4Q2xNOTlMdU9MT2pSeExu
eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2lOSEpsT2dRajhDbE05OUx1T0xPalJ4TG54Yy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MUE3MDIvOTM5Q0FFMkM4REQ5MTFFQjhFRkI0MTU4QzRGOUFFMDIvNjMzOTQ5M0E1
MTYzMTFFRDkwRjA0NzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E
JTAjMBIEAgABMAwDBAItQPQDBAJn8mwwDQQCAAIwBwMFACQBnIAwDQYJKoZIhvcN
AQELBQADggEBALqk/PE/vgtNnYSZBP5RRxVgXHY4RdqssW1KfXlbyXA+HMJI1nTg
zwWU9aAd/EjtuyrckoSH96U70xt5amHjRne6WLAit1IBo260V2DCBxGOv2+hiuIj
yS5hsYnnuUkBjmEcu+deMwdZ0z6C2cFjY5OR8V1B/d3IJnD39RVQbqSaogXI8/9f
Fkx5hGGZ387UQB7JGXuLMv9hlM3PJwzL+FND/mhe6oqhpokreHE+IWPNaCNhu/qJ
8KvhQyj7MtvEhARkeALUr641t2D65s62c54H/QY1hymZ29bEfFe2uyLiMzs5dYl7
aKk+Q2yPGljHIEjrEzF6wgZvumFRSWTogC0=
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:36:35 2025 by rpki-client