Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/77490C9A792F11EEBF849942C4F9AE02.roa
File: 77490C9A792F11EEBF849942C4F9AE02.roa (raw, json)
Hash identifier: +qSb4R4TGVMwO8UibifLnyUfy5g07BZr/1fOfOFiaKg=
Subject key identifier: 3E:95:32:FC:9A:34:76:0C:AB:D5:B4:9F:09:DC:62:C6:16:D0:72:BC
Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020
Certificate serial: 01A3
Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/77490C9A792F11EEBF849942C4F9AE02.roa
Signing time: Sun 09 Feb 2025 02:24:54 +0000
ROA not before: Sun 09 Feb 2025 02:24:54 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 132292
IP address blocks: 203.7.140.0/22 maxlen: 22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 419 (0x1a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911F316
Validity
Not Before: Feb 9 02:24:54 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67a811f5-ee86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cd:ed:73:66:ba:b1:d7:e1:b6:53:77:e5:9a:
e2:5a:ee:a2:c2:15:55:c2:21:4e:8e:71:80:71:dd:
39:cc:c2:bd:6a:ac:78:ba:e1:69:8c:ba:1f:b7:4e:
76:ac:a3:5a:31:3d:08:3b:c5:5c:64:a8:04:98:fc:
37:c3:ce:46:a0:24:c3:2e:5f:7d:48:a0:e3:72:0b:
6f:a5:c5:8b:a2:0d:27:81:91:db:41:60:18:30:b1:
e2:61:46:13:b2:dd:47:ca:07:1f:f7:f3:24:14:56:
a5:63:9d:58:06:78:94:bb:ec:aa:c2:81:83:52:ad:
c1:3c:01:23:f3:fe:e6:08:fb:97:fb:ea:32:13:0a:
e0:b2:01:6e:b3:c2:b1:a1:31:47:1f:03:da:59:0c:
c1:9c:7b:c7:9d:e6:62:fd:31:e8:aa:b2:35:90:e3:
77:92:e2:c6:de:f6:f9:4b:9d:6e:18:41:88:9c:63:
d8:af:68:3a:49:79:d9:14:20:62:7d:65:f2:5e:37:
25:e4:22:79:2e:ca:5b:99:49:a8:13:80:5f:d4:46:
61:ab:90:2f:a9:ca:c8:de:2d:aa:f9:b9:8e:17:d6:
91:01:36:cf:35:48:38:da:de:26:ff:7e:2a:3c:ea:
4e:f0:d8:fb:ba:9a:68:ca:08:15:b6:df:33:08:2e:
4b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:95:32:FC:9A:34:76:0C:AB:D5:B4:9F:09:DC:62:C6:16:D0:72:BC
X509v3 Authority Key Identifier:
keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/77490C9A792F11EEBF849942C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.7.140.0/22
Signature Algorithm: sha256WithRSAEncryption
bd:6d:3b:9a:4c:b2:a3:88:8f:53:93:dd:ee:3d:d7:54:b1:f7:
ca:64:37:23:89:5c:05:1b:ca:91:17:41:25:50:fa:f7:7d:6b:
8e:1c:9e:a0:96:21:38:51:4f:06:2d:20:c3:11:42:1e:ff:f8:
85:0f:15:3c:cd:2c:2a:a7:be:14:9b:9d:34:49:d7:4e:d2:76:
0b:d1:01:c7:9f:1c:36:f0:d5:b3:8d:4e:43:39:8d:a9:24:51:
4b:76:de:a9:79:24:a9:cf:8f:99:14:dc:0c:87:a2:23:90:17:
97:0f:a4:ce:e7:af:a2:3a:95:98:cf:24:cb:f6:d4:c7:cf:87:
1c:7d:57:b4:e3:73:ea:3e:fa:87:bb:a7:c7:eb:0d:0a:21:4c:
72:96:10:79:f0:25:5a:3f:18:b9:bd:a0:0e:19:2e:4a:ef:52:
a1:67:7e:4a:ab:f2:18:ee:1f:d9:b7:d1:66:f3:d5:47:3d:11:
aa:97:61:ea:ef:d1:9f:6b:8e:92:dc:09:5a:7b:90:6e:48:62:
83:84:a3:54:f5:5c:32:2e:17:b6:fc:bd:31:65:fb:1d:2c:e0:
24:0f:87:93:9b:d5:45:96:1a:36:3f:d7:0f:ea:cc:8d:92:ed:
9c:58:97:c5:78:42:d4:78:90:c6:cc:54:fa:ce:31:44:76:a1:
8b:7b:17:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:57:10 2025 by rpki-client