Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130416/CA6D58B4B67411EDBEB60F39C4F9AE02/B4B36C90B67C11EDBF54387EC4F9AE02.roa
File: B4B36C90B67C11EDBF54387EC4F9AE02.roa (raw, json)
Hash identifier: 9LL2jFxmosp+P68Y+IMuJuup155rCy+0uhbV0Kpwvx0=
Subject key identifier: 74:3B:31:DC:3F:92:FE:C3:81:B3:69:F7:A1:E6:B0:AC:E6:A1:5D:16
Certificate issuer: /CN=A9130416/serialNumber=9906A870DADD14F6D4BA86F2CC2C1E5E470DE8B2
Certificate serial: 0D
Authority key identifier: 99:06:A8:70:DA:DD:14:F6:D4:BA:86:F2:CC:2C:1E:5E:47:0D:E8:B2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mQaocNrdFPbUuobyzCweXkcN6LI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9130416/CA6D58B4B67411EDBEB60F39C4F9AE02/B4B36C90B67C11EDBF54387EC4F9AE02.roa
Signing time: Thu 09 Mar 2023 07:36:03 +0000
ROA not before: Thu 09 Mar 2023 07:36:03 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 149621
IP address blocks: 103.182.210.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13 (0xd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9130416
Validity
Not Before: Mar 9 07:36:03 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=64098c63-99d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:94:a8:e6:ef:0f:89:5c:93:28:9b:16:a3:07:
1e:94:50:2d:9e:8b:ab:6b:ba:d8:b6:23:22:15:a1:
fb:db:1e:b4:b5:9e:96:f5:bf:61:c4:cf:32:ec:18:
82:0d:42:11:11:a3:b3:f0:43:4f:97:0e:59:52:60:
af:e3:96:8b:f8:bf:28:4c:35:8b:36:84:1f:cd:25:
f4:fa:5c:8c:07:a4:2a:59:32:fd:d3:7e:9e:7c:90:
b6:b1:8b:91:df:e2:ad:24:8a:ed:05:b6:f9:8e:00:
fe:29:14:9c:2a:9e:5d:71:72:12:e9:8f:b3:7c:b7:
e5:29:4d:91:97:62:b1:3d:c4:89:3a:98:23:8f:79:
bf:5d:22:4b:66:a6:88:a5:97:6c:b0:9b:57:92:eb:
83:67:4b:90:52:57:0b:ef:b4:1f:8d:8e:b0:87:cd:
a2:5f:39:b8:34:36:6f:75:da:f0:10:c3:a1:cb:37:
a4:d6:be:69:96:73:26:8c:d9:14:8c:ec:36:5d:e1:
be:06:9e:e5:a1:b9:a4:d2:1d:0a:7b:49:a0:57:38:
05:9d:40:88:02:48:78:b3:b3:2e:70:76:e7:93:e4:
e9:d4:30:97:fe:54:74:3f:05:b9:a2:85:40:71:98:
c0:ec:aa:89:90:a8:0a:4e:fc:57:ff:09:b7:28:d0:
fc:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:3B:31:DC:3F:92:FE:C3:81:B3:69:F7:A1:E6:B0:AC:E6:A1:5D:16
X509v3 Authority Key Identifier:
keyid:99:06:A8:70:DA:DD:14:F6:D4:BA:86:F2:CC:2C:1E:5E:47:0D:E8:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9130416/CA6D58B4B67411EDBEB60F39C4F9AE02/mQaocNrdFPbUuobyzCweXkcN6LI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mQaocNrdFPbUuobyzCweXkcN6LI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130416/CA6D58B4B67411EDBEB60F39C4F9AE02/B4B36C90B67C11EDBF54387EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.182.210.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:91:cf:1d:d5:17:fc:c1:da:e0:1d:39:96:b9:46:fc:f6:88:
40:ca:77:68:f2:a3:04:ae:da:d4:23:c6:e3:78:b0:18:65:71:
b3:a4:ae:6d:ad:68:ea:42:9e:2d:33:ef:70:74:0f:fb:c5:68:
9c:f9:58:9e:df:21:c6:e3:30:35:6d:e1:fa:61:de:b4:21:be:
bf:ee:c9:8a:14:ee:df:c7:c3:0d:3e:41:8a:76:f5:77:e4:b6:
7e:1f:ff:50:f5:17:68:09:b5:cc:ab:a0:be:0a:31:8a:29:6e:
03:a6:fd:43:2c:ad:e2:8d:ff:3a:82:42:42:90:fb:90:50:02:
c9:91:ac:2e:90:e7:03:44:da:97:3f:7d:f8:bf:52:46:ab:be:
b2:5a:63:90:5e:de:e3:06:1f:b4:af:8a:11:08:89:ef:67:8f:
a4:02:4f:66:7d:40:a8:fc:11:ab:5d:5d:07:81:53:cd:ce:ee:
b2:23:2b:f1:57:41:56:49:16:df:69:4b:56:4b:db:57:3c:07:
4c:74:94:0a:3f:f2:15:3f:ba:0c:d1:2d:29:43:95:aa:f6:a5:
33:ad:b3:4d:0c:70:59:0d:3e:9c:0b:9d:8e:ec:06:13:04:ac:
bc:ca:d2:e4:a8:31:64:3c:69:0c:b7:f2:57:f2:88:2c:54:80:
2b:be:8d:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 21:33:57 2025 by rpki-client