Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/595310E440C911EE9F1D5F41C4F9AE02.roa
File: 595310E440C911EE9F1D5F41C4F9AE02.roa (raw, json)
Hash identifier: Z7+3DvwJtElz8GyUhaEbEO58MPBIQdKLUzyM58gm72k=
Subject key identifier: 04:FB:F8:6B:A6:1E:A9:1C:0F:FB:3C:5F:EF:DA:98:1E:8F:53:C7:D4
Certificate issuer: /CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43
Certificate serial: 10E4
Authority key identifier: 70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/595310E440C911EE9F1D5F41C4F9AE02.roa
Signing time: Fri 28 Feb 2025 18:26:57 +0000
ROA not before: Fri 28 Feb 2025 18:26:57 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 135413
IP address blocks: 103.132.248.0/22 maxlen: 22
103.132.251.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4324 (0x10e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9129797
Validity
Not Before: Feb 28 18:26:57 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67c1fff0-8d40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:27:6e:25:b0:1c:44:c3:a1:ed:94:49:ce:af:
76:54:d7:a7:8d:a5:56:1e:99:64:20:0b:3f:d5:7e:
60:69:41:d5:c6:e7:28:0f:b9:04:9e:9b:c6:01:0b:
62:c9:d8:c2:f3:af:1a:67:89:c3:9d:ab:fa:04:88:
33:12:07:16:0e:54:f4:ba:b4:21:b4:21:0d:dd:ce:
91:15:1f:78:56:91:e3:95:bd:57:ea:2e:b9:46:3d:
78:28:8a:df:19:0f:fb:ad:30:1b:c1:71:a3:fb:f7:
5c:2a:ec:f3:37:c7:21:10:ac:4e:74:20:fb:ef:57:
ae:ac:94:75:29:7a:42:a8:06:6f:e3:f6:6c:fc:da:
bb:80:b0:27:d1:ce:bc:83:6f:9d:55:39:23:4e:7d:
06:ea:7c:b3:ea:17:f2:18:f2:f5:f5:09:23:ba:94:
59:9b:f3:29:59:b8:07:35:70:fc:09:a5:a1:65:3d:
ec:28:6c:bd:94:36:00:91:04:50:ae:e4:e3:fe:aa:
f9:c9:ab:84:20:dc:5e:32:5f:47:9f:1d:bd:79:23:
17:79:90:e8:d7:5e:cf:ac:d0:aa:d3:c7:95:da:3c:
b3:a9:ab:ea:cc:01:7e:bd:22:0d:d9:0c:58:63:f4:
26:37:0f:a9:6f:d1:58:6c:70:20:97:a6:97:f5:5b:
9d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:FB:F8:6B:A6:1E:A9:1C:0F:FB:3C:5F:EF:DA:98:1E:8F:53:C7:D4
X509v3 Authority Key Identifier:
keyid:70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/595310E440C911EE9F1D5F41C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.132.248.0/22
Signature Algorithm: sha256WithRSAEncryption
21:d3:a9:04:90:fa:2b:dc:1c:0f:de:7d:9b:fb:ca:3d:26:52:
df:12:9b:d3:e9:a0:c5:8d:bc:8c:1d:03:52:3f:17:5e:8b:31:
ce:c7:49:38:bb:cb:68:a9:8f:28:31:05:a2:bc:33:09:4e:ab:
63:c4:5e:eb:7f:e6:23:75:6e:09:30:9c:a6:31:e6:7a:f7:24:
e8:01:0e:bf:30:b0:25:18:7f:75:17:4c:d6:8c:82:23:1a:ca:
f8:26:b9:ef:23:56:32:9f:43:a7:71:df:17:3c:6b:60:91:73:
e4:ab:e8:57:35:2d:a3:7b:b2:bb:32:8c:0d:2b:05:ae:58:e8:
bc:e0:8a:c0:19:29:7c:6d:6b:44:37:b9:47:ae:44:7b:30:49:
0d:5e:2c:3a:b9:59:49:bc:6e:eb:9c:bd:05:2d:1f:3b:c3:2b:
5b:68:6b:44:16:93:67:55:73:53:f5:77:e5:93:be:0b:78:0d:
e8:84:16:08:e9:3f:bf:6d:02:8d:bf:4b:16:d8:80:21:10:63:
60:c2:41:eb:69:40:90:94:a7:07:5d:90:cc:db:95:9b:6a:cf:
fa:b9:4f:19:06:30:66:d7:d2:d5:52:43:ca:e6:8e:fa:e4:46:
03:ac:9e:1e:b8:6a:ee:b6:0d:05:61:4c:26:79:9e:c1:72:05:
d9:73:cc:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:20:19 2025 by rpki-client