Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911E369/0E2FB3C888D811ED9B85E548C4F9AE02/7369922E680A11EEA25B1D1FC4F9AE02.roa
File: 7369922E680A11EEA25B1D1FC4F9AE02.roa (raw, json)
Hash identifier: 24GbMLp8DMTZ3h6VXw3inwkNu/B522DsUckUsbm7BTg=
Subject key identifier: 70:4E:41:C4:F1:E9:C3:79:CF:26:4A:86:6D:99:12:DF:DD:A3:EA:63
Certificate issuer: /CN=A911E369/serialNumber=FE1391C0B226C8CEBFA4A2AD6696AE4B82BF7E27
Certificate serial: 019F
Authority key identifier: FE:13:91:C0:B2:26:C8:CE:BF:A4:A2:AD:66:96:AE:4B:82:BF:7E:27
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_hORwLImyM6_pKKtZpauS4K_fic.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911E369/0E2FB3C888D811ED9B85E548C4F9AE02/7369922E680A11EEA25B1D1FC4F9AE02.roa
Signing time: Thu 27 Feb 2025 04:27:04 +0000
ROA not before: Thu 27 Feb 2025 04:27:04 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 141386
IP address blocks: 103.60.7.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 415 (0x19f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911E369
Validity
Not Before: Feb 27 04:27:04 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67bfe998-854c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9c:04:97:87:11:02:cb:22:cf:1d:f7:7d:0e:
99:38:9f:eb:58:25:b5:2f:4a:b3:85:5f:c0:06:b4:
fe:82:f7:a0:a6:c6:95:ad:ae:73:42:95:bf:43:0f:
37:e3:7f:85:c0:d2:e0:eb:9f:7f:a3:83:88:21:a0:
72:44:28:ce:88:ca:44:57:18:e4:81:da:75:61:b1:
20:7b:b4:69:56:f9:95:19:4a:b2:c6:2d:21:90:a9:
3b:ea:fe:6d:aa:6b:56:90:2d:e3:3c:ca:40:cb:9d:
eb:24:39:45:a1:be:3f:6b:0f:b9:4f:08:26:77:9e:
84:16:c0:54:a8:10:fe:5d:22:8b:86:53:0a:cb:e3:
73:46:0e:ad:ba:af:f8:48:5e:8e:44:84:67:9e:b3:
c5:cf:75:3d:b4:6c:54:1d:79:55:be:c5:c8:c7:a7:
f8:c2:67:80:52:9a:f0:7c:4c:69:de:b7:ac:63:19:
f5:f6:0f:92:55:e5:4b:36:bd:29:44:66:a6:d2:0d:
d3:20:c0:c7:82:f3:a2:f2:cb:18:ca:8d:0d:d8:81:
2f:72:b9:07:13:9c:7c:cd:ce:02:ee:45:92:88:7e:
c1:02:94:8c:fc:8b:0d:9e:49:44:ad:0c:55:34:23:
46:e8:33:49:23:d4:0e:cc:0e:28:24:c5:bd:74:38:
66:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:4E:41:C4:F1:E9:C3:79:CF:26:4A:86:6D:99:12:DF:DD:A3:EA:63
X509v3 Authority Key Identifier:
keyid:FE:13:91:C0:B2:26:C8:CE:BF:A4:A2:AD:66:96:AE:4B:82:BF:7E:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911E369/0E2FB3C888D811ED9B85E548C4F9AE02/_hORwLImyM6_pKKtZpauS4K_fic.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_hORwLImyM6_pKKtZpauS4K_fic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E369/0E2FB3C888D811ED9B85E548C4F9AE02/7369922E680A11EEA25B1D1FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.60.7.0/24
Signature Algorithm: sha256WithRSAEncryption
72:e7:49:81:57:03:1d:0e:7e:b2:61:50:b4:64:34:65:c9:64:
4b:da:08:0c:c2:88:10:d2:0d:b2:b4:ed:ea:de:b1:8c:10:88:
0e:66:e2:6d:a3:7a:ab:9c:a2:05:ca:a2:2a:d5:dd:95:da:11:
1d:d7:d6:19:5b:67:e3:d0:55:a4:9c:b9:4c:d9:09:18:96:ee:
a4:16:76:17:05:8f:e0:20:b2:4a:b6:09:e3:96:9e:6c:b2:6c:
fe:24:b4:32:a6:23:d1:27:89:83:5e:b4:82:86:21:19:7a:52:
a8:55:01:41:76:52:b2:9e:67:3d:5f:fc:02:f1:d7:06:93:27:
0b:99:66:f6:5e:80:ed:5f:00:47:8b:b7:45:cd:fd:fe:d8:24:
15:2b:27:73:e3:87:6e:b9:15:3a:c1:bf:de:6d:46:4c:28:eb:
cd:1d:b5:df:da:79:73:a5:6b:4c:fb:75:70:92:9d:a2:e3:c3:
af:cb:5e:ac:a2:ae:e1:d4:81:aa:ca:29:2b:ae:20:05:9b:fa:
5e:92:f3:28:aa:81:8b:e9:2f:94:aa:33:0e:03:6d:a0:ea:17:
82:c3:48:50:26:3e:07:44:76:ab:71:01:dc:98:f2:4a:e1:a8:
00:08:85:3c:05:58:fb:e6:2b:b4:b5:3b:16:be:23:26:8d:da:
c3:bb:39:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:15:49 2025 by rpki-client