Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/28C6CC78C9A211EF80529168C4F9AE02.roa
File: 28C6CC78C9A211EF80529168C4F9AE02.roa (raw, json)
Hash identifier: JU+9r/BR6enDzpMO0NXDd4C16/4XfFl9aRRHlEnxHMw=
Subject key identifier: 1D:CD:D1:10:41:A4:E4:27:EF:2C:70:5B:B6:4B:82:46:51:8A:C1:DC
Certificate issuer: /CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4
Certificate serial: 34A2
Authority key identifier: 86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/28C6CC78C9A211EF80529168C4F9AE02.roa
Signing time: Fri 03 Jan 2025 07:12:58 +0000
ROA not before: Fri 03 Jan 2025 07:12:58 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 7540
IP address blocks: 117.18.96.0/24 maxlen: 24
117.18.98.0/24 maxlen: 24
117.18.105.0/24 maxlen: 24
117.18.116.0/24 maxlen: 24
202.181.137.0/24 maxlen: 24
202.181.138.0/24 maxlen: 24
202.181.140.0/24 maxlen: 24
202.181.141.0/24 maxlen: 24
202.181.142.0/24 maxlen: 24
202.181.150.0/24 maxlen: 24
202.181.152.0/24 maxlen: 24
202.181.154.0/24 maxlen: 24
202.181.160.0/24 maxlen: 24
202.181.161.0/24 maxlen: 24
202.181.162.0/24 maxlen: 24
202.181.163.0/24 maxlen: 24
202.181.164.0/24 maxlen: 24
202.181.165.0/24 maxlen: 24
202.181.166.0/24 maxlen: 24
202.181.167.0/24 maxlen: 24
202.181.168.0/24 maxlen: 24
202.181.169.0/24 maxlen: 24
202.181.170.0/24 maxlen: 24
202.181.171.0/24 maxlen: 24
202.181.172.0/24 maxlen: 24
202.181.173.0/24 maxlen: 24
202.181.174.0/24 maxlen: 24
202.181.175.0/24 maxlen: 24
202.181.176.0/24 maxlen: 24
202.181.178.0/24 maxlen: 24
202.181.179.0/24 maxlen: 24
202.181.189.0/24 maxlen: 24
202.181.192.0/24 maxlen: 24
202.181.193.0/24 maxlen: 24
202.181.194.0/24 maxlen: 24
202.181.195.0/24 maxlen: 24
202.181.196.0/24 maxlen: 24
202.181.197.0/24 maxlen: 24
202.181.198.0/24 maxlen: 24
202.181.199.0/24 maxlen: 24
202.181.200.0/24 maxlen: 24
202.181.201.0/24 maxlen: 24
202.181.202.0/24 maxlen: 24
202.181.203.0/24 maxlen: 24
202.181.205.0/24 maxlen: 24
202.181.206.0/24 maxlen: 24
202.181.207.0/24 maxlen: 24
202.181.208.0/24 maxlen: 24
202.181.209.0/24 maxlen: 24
202.181.210.0/24 maxlen: 24
202.181.211.0/24 maxlen: 24
202.181.212.0/24 maxlen: 24
202.181.213.0/24 maxlen: 24
202.181.214.0/24 maxlen: 24
202.181.215.0/24 maxlen: 24
202.181.216.0/24 maxlen: 24
202.181.217.0/24 maxlen: 24
202.181.220.0/24 maxlen: 24
202.181.221.0/24 maxlen: 24
202.181.222.0/24 maxlen: 24
202.181.223.0/24 maxlen: 24
202.181.224.0/24 maxlen: 24
202.181.225.0/24 maxlen: 24
202.181.226.0/24 maxlen: 24
202.181.227.0/24 maxlen: 24
202.181.228.0/24 maxlen: 24
202.181.229.0/24 maxlen: 24
202.181.230.0/24 maxlen: 24
202.181.231.0/24 maxlen: 24
202.181.233.0/24 maxlen: 24
202.181.234.0/24 maxlen: 24
202.181.235.0/24 maxlen: 24
202.181.236.0/24 maxlen: 24
202.181.237.0/24 maxlen: 24
202.181.238.0/24 maxlen: 24
202.181.239.0/24 maxlen: 24
202.181.240.0/24 maxlen: 24
202.181.241.0/24 maxlen: 24
202.181.242.0/24 maxlen: 24
202.181.243.0/24 maxlen: 24
202.181.244.0/24 maxlen: 24
202.181.245.0/24 maxlen: 24
202.181.246.0/24 maxlen: 24
202.181.247.0/24 maxlen: 24
2405:5d00::/64 maxlen: 64
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13474 (0x34a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9120B99
Validity
Not Before: Jan 3 07:12:58 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67778dfa-d142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2a:03:bf:66:19:31:70:80:d2:3b:5b:d0:90:
51:35:f9:f2:a6:d4:eb:00:94:d6:e7:67:ca:b6:a5:
e4:b4:61:99:f1:6e:28:d9:60:89:e2:1c:47:10:01:
92:34:31:28:95:0e:83:35:c3:d0:be:4e:9e:fc:d3:
b1:26:cd:ec:08:2d:64:6c:8a:21:18:83:09:a2:8b:
40:d6:3a:0f:39:bb:21:44:b2:2a:4a:f1:04:e2:45:
b1:f6:f0:04:83:ca:5a:60:53:b8:b9:a0:f0:90:29:
0b:98:82:2b:05:16:3b:c3:0d:00:4e:6e:8a:f6:70:
82:79:e1:68:90:f6:b6:85:16:58:25:36:9c:5d:ca:
41:1e:98:5e:3a:ae:60:eb:63:13:88:56:cd:c3:6d:
fd:b2:c0:e6:3e:53:72:ba:6f:ca:c9:7a:40:27:21:
24:82:a0:dc:ff:cc:dc:08:2f:f9:d0:67:35:52:f9:
bb:07:4b:71:96:1c:e6:bd:92:17:63:f1:67:b6:f3:
24:13:c8:88:0b:b8:dd:25:c9:ba:17:57:f6:7c:58:
05:de:f7:31:0c:c9:39:0e:40:d3:1a:9e:c3:9f:5e:
0f:1b:12:01:9b:c4:2f:2c:6d:f5:de:23:32:eb:df:
99:e1:bd:cf:a1:66:97:7d:fa:68:3b:5b:e2:bd:f5:
c0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CD:D1:10:41:A4:E4:27:EF:2C:70:5B:B6:4B:82:46:51:8A:C1:DC
X509v3 Authority Key Identifier:
keyid:86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/28C6CC78C9A211EF80529168C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
117.18.96.0/24
117.18.98.0/24
117.18.105.0/24
117.18.116.0/24
202.181.137.0-202.181.138.255
202.181.140.0-202.181.142.255
202.181.150.0/24
202.181.152.0/24
202.181.154.0/24
202.181.160.0-202.181.176.255
202.181.178.0/23
202.181.189.0/24
202.181.192.0-202.181.203.255
202.181.205.0-202.181.217.255
202.181.220.0-202.181.231.255
202.181.233.0-202.181.247.255
IPv6:
2405:5d00::/64
Signature Algorithm: sha256WithRSAEncryption
08:22:ff:94:dc:01:c8:65:f7:65:51:51:da:1f:05:35:e3:70:
42:6d:74:7f:ab:1e:0d:9f:fd:fe:19:0f:08:bd:e2:58:27:6e:
89:85:86:a1:67:7b:20:01:ef:d4:77:9e:ad:02:ff:51:79:26:
d3:80:c4:e9:7c:f3:4b:f1:b9:ed:78:c3:a4:8b:85:7e:39:18:
d9:aa:00:72:38:23:2d:e9:41:a3:f5:fe:a1:0a:40:a1:3d:94:
9f:3b:47:eb:d6:e9:a8:2d:a3:99:fd:6e:f9:c3:c6:fb:b3:35:
44:f9:4b:ca:18:1c:78:4a:0e:f9:d3:2c:66:9b:6b:73:02:88:
2b:9b:89:cd:e6:64:75:f5:81:dd:7b:da:06:57:4b:0b:e4:1e:
f7:69:2b:e1:b1:06:cd:a7:b2:09:0a:d9:fb:c2:b3:58:d3:6d:
8d:9d:12:7e:fd:86:59:7e:f8:f1:2b:70:c4:3d:75:d8:f7:27:
05:11:b5:14:ff:83:71:35:87:e6:37:5e:d2:71:1f:eb:01:60:
e1:1b:77:db:bd:bc:a5:d2:88:a1:0a:31:d4:b4:60:43:ff:63:
99:bf:26:21:1e:66:f9:51:5f:54:c1:72:9c:52:3c:a1:17:c5:
cb:a1:e1:3c:11:42:66:f7:03:9c:2e:27:87:2e:00:4b:99:ce:
64:61:8b:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:07:43 2025 by rpki-client