Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/E3865FE0784D11E898A8FA2BC4F9AE02.roa
File: E3865FE0784D11E898A8FA2BC4F9AE02.roa (raw, json)
Hash identifier: njDcucBkvgRT9ZNkFIgG9ETsr5STOrvwkHy6KttkUdI=
Subject key identifier: BE:A4:FC:99:D6:61:6B:AD:EF:21:97:37:14:B7:75:A2:F4:77:D8:12
Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C
Certificate serial: 2968
Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/E3865FE0784D11E898A8FA2BC4F9AE02.roa
Signing time: Tue 31 Dec 2024 15:52:46 +0000
ROA not before: Tue 31 Dec 2024 15:52:46 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 134162
IP address blocks: 110.49.0.0/24 maxlen: 24
119.31.108.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10600 (0x2968)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911BD54
Validity
Not Before: Dec 31 15:52:46 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=6774134e-8083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:63:b8:dc:13:4d:72:ae:30:28:e1:7f:58:74:
90:4f:85:79:75:c4:b0:55:e6:59:99:27:07:ab:84:
32:38:0a:ec:0c:9a:a9:26:00:72:62:ff:db:d5:f0:
bc:18:9e:1f:5a:14:2b:53:86:52:0d:03:32:0a:4e:
ba:e8:10:27:9f:99:eb:64:54:bf:80:0d:7c:f6:ab:
01:d3:50:ce:6c:ce:28:3e:d9:4b:43:df:ae:c2:a2:
9e:d3:ec:8e:6b:f0:fd:09:0a:d2:1e:89:14:73:5c:
13:6b:a0:95:42:0e:38:f2:93:d1:4d:8d:18:9f:37:
08:29:26:2c:6d:d0:c8:6a:a2:f7:a2:64:76:89:08:
47:0b:83:4a:04:68:99:90:66:74:fd:dc:88:7e:19:
32:08:22:c8:3b:55:a3:ba:e9:2c:f2:ca:41:d4:5c:
18:c7:b7:9a:1f:9b:5b:a1:0c:09:3e:bd:4f:56:c9:
e9:fa:e2:76:af:6b:f6:b8:c1:8e:04:67:c5:81:38:
57:d6:04:6d:20:c1:71:15:1c:cb:d2:30:ec:d6:dc:
11:40:44:aa:55:b0:c3:68:b9:80:04:e9:1e:3c:af:
70:db:3d:c0:0e:e3:09:d1:12:c1:03:e4:5f:96:bc:
13:19:9a:fb:0b:24:85:d4:eb:71:9e:d2:6a:46:a7:
b8:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A4:FC:99:D6:61:6B:AD:EF:21:97:37:14:B7:75:A2:F4:77:D8:12
X509v3 Authority Key Identifier:
keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/E3865FE0784D11E898A8FA2BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
110.49.0.0/24
119.31.108.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:2a:6d:f9:ae:e5:9b:35:f8:9d:fd:e6:a3:94:86:6a:2c:64:
00:75:71:e8:72:87:ac:05:6e:bb:6b:31:f2:ef:28:40:2c:ff:
b0:92:e6:47:04:7b:2f:3d:99:52:d3:0a:a6:48:8b:38:73:64:
14:89:84:83:d6:32:0c:b2:4c:0f:78:c7:7a:92:40:8a:5a:03:
f2:10:14:c0:8d:8d:7e:96:eb:5f:b4:6f:ef:82:1f:d5:8a:87:
f1:ae:75:10:a7:0d:75:50:a0:e9:de:e6:1c:15:80:6e:ec:8b:
0b:65:81:3d:cc:45:be:11:5a:f7:c8:72:dc:41:ab:33:bd:d8:
59:63:d3:d5:f6:b1:de:09:60:b9:6d:d9:57:5b:14:5e:0a:53:
aa:29:c0:fc:5f:2d:c2:3b:31:e9:42:76:e2:6c:6b:97:b1:c2:
e1:d1:10:f8:99:eb:e3:17:98:a6:7a:fd:27:33:58:e4:f4:00:
00:82:ea:d6:75:96:7d:db:aa:84:8d:79:e5:01:b3:b6:13:19:
17:4a:86:94:97:2d:9d:62:63:f6:1a:82:f1:f7:ca:9f:b7:f4:
16:d0:56:34:15:e2:ae:8f:be:bd:05:97:19:a5:d0:25:dc:d9:
75:51:f3:49:82:44:2d:cf:db:d4:fd:27:f8:e8:d8:93:17:ea:
66:8d:33:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:45:07 2025 by rpki-client