Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/F077B26084A511EAB3356318C4F9AE02.roa
File: F077B26084A511EAB3356318C4F9AE02.roa (raw, json)
Hash identifier: O+lQpLC76CUfbQC3++B3YbYRl2wT/3U7auCOte6MczQ=
Subject key identifier: 24:C2:16:46:7B:56:BE:8C:37:AC:00:2F:EE:A8:59:DC:2D:C3:67:08
Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C
Certificate serial: 2963
Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/F077B26084A511EAB3356318C4F9AE02.roa
Signing time: Tue 31 Dec 2024 15:52:42 +0000
ROA not before: Tue 31 Dec 2024 15:52:42 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 132866
IP address blocks: 49.229.32.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10595 (0x2963)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911BD54
Validity
Not Before: Dec 31 15:52:42 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67741349-c9d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b8:20:17:67:9d:af:1f:2f:59:d0:49:4d:41:
1e:68:80:d0:a6:41:dd:6e:56:ef:5c:44:a5:98:f0:
42:ea:00:9d:7f:31:67:d4:f0:2a:35:d9:b5:0a:1b:
a7:05:4e:32:a4:a9:d8:5e:fd:fe:dc:a8:1d:0d:15:
1a:a9:94:78:ad:70:07:69:70:ca:f2:a6:83:b6:3a:
5b:4d:49:84:e9:65:41:86:ad:15:96:9c:d2:3a:45:
3d:ff:cf:6f:33:a1:08:73:95:18:f0:35:23:dc:45:
ea:3d:70:f8:07:9c:41:83:dc:a2:b3:5e:4b:5f:95:
c0:c0:74:db:eb:0f:24:d6:81:47:c6:e9:52:4a:c8:
c7:8b:ee:f9:eb:bf:7b:68:61:45:6f:61:08:ec:70:
11:ba:71:41:b0:60:07:e2:5b:a1:4d:1d:3a:9f:fd:
a0:10:a3:25:64:ff:9b:aa:6f:0d:eb:1b:f3:e8:6b:
57:99:1e:b6:94:ba:cb:bd:4d:2e:67:9c:c9:86:4b:
a8:6f:41:b9:72:74:5e:ca:25:8c:86:d9:a7:cc:bf:
7e:12:8b:32:73:c0:27:1a:6a:bc:e3:bd:b8:a7:4c:
aa:a3:db:53:2b:e0:19:aa:53:82:cd:26:88:0a:ae:
fc:3f:d6:40:6a:d8:03:34:8b:f7:d9:5e:fd:1d:5c:
f6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C2:16:46:7B:56:BE:8C:37:AC:00:2F:EE:A8:59:DC:2D:C3:67:08
X509v3 Authority Key Identifier:
keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/F077B26084A511EAB3356318C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.229.32.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:19:ef:24:02:4b:53:cb:62:fb:2b:30:ec:04:81:a3:2a:b0:
f4:36:52:d7:ea:5b:ff:3c:c8:e0:42:a5:d0:2d:86:b6:6f:07:
33:85:19:05:4a:df:41:0c:ee:a9:f8:c5:c5:f0:30:9d:d7:a7:
a6:38:00:b0:6c:1f:70:36:e4:80:63:1e:52:99:e5:e5:15:0b:
8c:a4:72:49:8a:94:ad:58:47:10:a2:72:4e:b9:4b:41:32:47:
2c:61:d7:05:3f:8c:07:ca:2e:6f:58:0e:df:7c:f4:49:fd:64:
1f:10:1b:45:78:cb:c7:99:2f:b2:f0:08:ed:7c:6c:27:d7:74:
d0:48:a8:99:e5:b7:ff:c7:5a:98:05:66:3f:3b:22:60:f6:88:
36:d9:22:24:65:0f:18:05:2c:da:5a:93:12:39:3f:bb:b9:fb:
11:6d:33:59:e9:5b:0a:42:27:46:db:1d:c0:45:84:d4:6a:42:
26:82:98:ae:ee:39:cd:1d:05:ee:52:47:fb:4d:57:b9:18:7d:
b8:71:dc:4e:05:f8:2f:69:c6:00:10:47:6c:0d:b0:92:39:1b:
18:26:e7:f0:bc:f2:aa:15:12:2b:48:17:0b:a4:71:73:d6:15:
d2:b6:2f:3d:a1:55:22:1e:84:c9:aa:21:ce:da:c7:ea:85:e1:
f8:32:cc:97
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICKWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2
QUYyMDcxNUMwHhcNMjQxMjMxMTU1MjQyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02Nzc0MTM0OS1jOWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzLggF2edrx8vWdBJTUEeaIDQpkHdblbvXESlmPBC6gCdfzFn1PAqNdm1Chun
BU4ypKnYXv3+3KgdDRUaqZR4rXAHaXDK8qaDtjpbTUmE6WVBhq0VlpzSOkU9/89v
M6EIc5UY8DUj3EXqPXD4B5xBg9yis15LX5XAwHTb6w8k1oFHxulSSsjHi+756797
aGFFb2EI7HARunFBsGAH4luhTR06n/2gEKMlZP+bqm8N6xvz6GtXmR62lLrLvU0u
Z5zJhkuob0G5cnReyiWMhtmnzL9+Eosyc8AnGmq84724p0yqo9tTK+AZqlOCzSaI
Cq78P9ZAatgDNIv32V79HVz2+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCTCFkZ7
Vr6MN6wAL+6oWdwtw2cIMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw
NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj
VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvRjA3N0IyNjA4
NEE1MTFFQUIzMzU2MzE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAAx5SAwDQYJKoZIhvcNAQELBQADggEBAFoZ7yQCS1PLYvsr
MOwEgaMqsPQ2UtfqW/88yOBCpdAthrZvBzOFGQVK30EM7qn4xcXwMJ3Xp6Y4ALBs
H3A25IBjHlKZ5eUVC4ykckmKlK1YRxCick65S0EyRyxh1wU/jAfKLm9YDt989En9
ZB8QG0V4y8eZL7LwCO18bCfXdNBIqJnlt//HWpgFZj87ImD2iDbZIiRlDxgFLNpa
kxI5P7u5+xFtM1npWwpCJ0bbHcBFhNRqQiaCmK7uOc0dBe5SR/tNV7kYfbhx3E4F
+C9pxgAQR2wNsJI5Gxgm5/C88qoVEitIFwukcXPWFdK2Lz2hVSIehMmqIc7ax+qF
4fgyzJc=
-----END CERTIFICATE-----
Generated at Sat Apr 5 02:13:34 2025 by rpki-client