Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/1C032F5A36E711EC9581EC54C4F9AE02.roa
File: 1C032F5A36E711EC9581EC54C4F9AE02.roa (raw, json)
Hash identifier: zuaM96z3jhp+fAEf2SKv65O5x2n5mX1/wYZc1QfKJIE=
Subject key identifier: 95:63:63:20:91:CE:CD:3A:46:9C:86:49:38:C4:D8:2A:2B:55:C3:25
Certificate issuer: /CN=A9130837/serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF
Certificate serial: 044E
Authority key identifier: 53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/1C032F5A36E711EC9581EC54C4F9AE02.roa
Signing time: Thu 05 Dec 2024 00:03:09 +0000
ROA not before: Thu 05 Dec 2024 00:03:09 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 132372
IP address blocks: 103.175.50.0/24 maxlen: 24
103.175.51.0/24 maxlen: 24
2400:18a0::/32 maxlen: 32
2400:18a0:1001::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1102 (0x44e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9130837
Validity
Not Before: Dec 5 00:03:09 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=6750edbd-9b81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:60:a7:67:b8:cd:ed:b8:9c:ad:f5:c3:77:e9:
a7:52:6f:14:07:ec:33:17:67:14:51:dd:43:8d:e9:
b7:75:35:af:2b:a3:37:67:8f:47:43:41:79:85:af:
84:48:4c:f4:b1:75:75:bc:b2:98:b3:c6:ce:87:82:
46:91:a9:79:65:9a:92:b1:99:bb:24:50:6c:ac:ac:
17:2d:3d:84:84:a4:98:02:b7:a0:69:45:79:cb:a7:
cc:f4:d3:35:5d:e2:34:03:45:7f:cb:0c:98:7a:2e:
ca:58:54:b2:4f:6c:83:c8:ce:65:bd:01:29:63:b7:
13:9f:f1:78:89:90:53:7a:7e:99:70:de:91:86:6d:
3f:21:1c:ee:fb:ca:0e:53:c7:0b:93:83:d6:ee:bb:
99:4e:56:71:9d:7d:53:1e:6f:c6:73:6e:0a:52:d7:
37:26:ec:77:ff:e1:c4:71:e4:ec:c9:1e:80:15:45:
ff:60:f1:0b:18:12:b1:0f:6f:56:5a:58:e8:83:f9:
2d:87:92:eb:7e:12:8d:2f:bf:73:0f:fd:6b:7f:7f:
1f:cc:72:1d:09:d6:a3:bf:c2:3c:a6:a5:82:6b:1f:
c8:60:6b:2d:f0:84:b2:54:45:5b:0f:84:b0:3b:61:
b4:11:9c:5d:3a:90:37:03:ed:0b:c5:ad:d6:36:1b:
ff:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:63:63:20:91:CE:CD:3A:46:9C:86:49:38:C4:D8:2A:2B:55:C3:25
X509v3 Authority Key Identifier:
keyid:53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/1C032F5A36E711EC9581EC54C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.50.0/23
IPv6:
2400:18a0::/32
Signature Algorithm: sha256WithRSAEncryption
3a:a0:1f:30:00:61:52:16:60:23:e8:b0:36:67:68:de:be:f2:
be:a5:f1:a8:f4:9f:0d:0b:69:4b:87:97:23:6b:9a:73:12:76:
1c:68:ab:0d:13:71:ab:6a:ac:c3:cd:eb:45:bc:63:c2:44:d1:
2d:c3:0d:37:16:25:dd:e7:48:d3:4b:58:fe:0c:77:86:1b:f5:
3c:1c:ef:e3:56:57:56:29:9b:f9:1c:91:5f:12:36:40:d2:b8:
62:8d:60:24:9c:b3:48:2e:1a:fd:e3:30:5c:02:c2:20:df:12:
36:ce:74:9a:58:cc:6a:39:2b:fa:9e:63:81:d8:15:53:a2:43:
02:af:d2:f4:30:72:01:1d:90:16:7a:fc:41:c4:81:62:6b:c9:
c0:60:0d:74:fa:5f:51:34:b6:73:06:66:59:de:d1:c7:9b:8c:
0d:2a:4a:0d:e9:e8:91:2e:86:62:a2:b6:75:ed:09:9e:04:02:
92:fe:cb:34:2a:64:c1:5c:91:d0:d8:bd:c2:35:59:a2:2b:15:
90:dc:5d:27:b4:9b:9e:1e:7e:6e:54:34:92:86:c9:1e:c7:30:
77:41:02:44:ab:f4:dc:7e:39:38:bc:7a:86:e5:4b:ea:d8:70:
08:22:7f:e3:32:9d:d2:5c:b6:6d:34:4e:0f:b3:6b:f0:a2:a5:
27:0a:26:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:50:41 2025 by rpki-client