Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/46BEDD64662411EBADFEB364C4F9AE02.roa
File: 46BEDD64662411EBADFEB364C4F9AE02.roa (raw, json)
Hash identifier: rBSQRTDzDNTdo/Fn8PCTBFu4JOqtjUs4xyOXhorxe8w=
Subject key identifier: 73:A4:F9:FA:44:D5:55:4E:94:29:72:D4:9D:D1:F2:19:9E:3A:A0:8D
Certificate issuer: /CN=A9142BCC/serialNumber=020556F97D545434D2C854121DC5DC64634A64AC
Certificate serial: 186C
Authority key identifier: 02:05:56:F9:7D:54:54:34:D2:C8:54:12:1D:C5:DC:64:63:4A:64:AC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgVW-X1UVDTSyFQSHcXcZGNKZKw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/46BEDD64662411EBADFEB364C4F9AE02.roa
Signing time: Wed 18 Dec 2024 16:44:33 +0000
ROA not before: Wed 18 Dec 2024 16:44:33 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 134732
IP address blocks: 59.153.100.0/22 maxlen: 24
103.198.136.0/22 maxlen: 24
2401:f40::/32 maxlen: 36
2401:f40:e::/48 maxlen: 48
2401:f40:f::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6252 (0x186c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9142BCC
Validity
Not Before: Dec 18 16:44:33 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=6762fbf1-0f15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:79:21:3a:bd:64:bd:03:90:d9:4e:75:c0:96:
72:d3:3d:c1:d4:15:02:3d:7b:5e:38:0a:e1:2d:83:
38:83:6a:2b:72:a9:e2:b7:89:8b:be:f2:2e:40:4b:
c7:92:5a:be:68:f4:c1:8d:30:c4:f9:07:6e:43:cf:
e3:88:e5:92:0c:14:d5:37:51:2b:e8:d1:bb:5a:94:
27:0e:b3:e5:44:8c:8a:2b:60:df:4a:f8:3d:3e:d5:
8b:73:03:06:23:9e:6e:86:be:fa:cd:df:a5:e3:15:
0d:a1:8d:f3:c8:c6:78:cc:90:96:69:b2:d7:f8:fb:
9a:7f:33:52:ba:fe:53:fc:75:7a:6b:22:49:1d:55:
0a:d2:13:dd:f9:53:0c:b6:99:7f:2f:1f:a9:e3:67:
7d:0f:6c:52:d0:ef:32:b2:4e:42:62:a8:ad:59:ad:
e2:67:59:53:e0:ac:7d:ed:a2:17:ae:13:1c:b7:f3:
70:4c:a5:2a:9a:42:0b:f4:f1:07:e2:e2:cb:ea:10:
91:c3:8c:4b:79:e3:78:d5:e5:a0:f2:f4:32:4b:0c:
e2:be:dd:1c:5c:89:f2:d8:6a:bc:c1:26:0e:42:e8:
6e:d7:b9:64:5a:c1:da:21:df:ef:d2:98:47:99:1d:
09:0e:e7:c6:88:03:d7:4a:18:5e:7f:4d:34:78:53:
04:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A4:F9:FA:44:D5:55:4E:94:29:72:D4:9D:D1:F2:19:9E:3A:A0:8D
X509v3 Authority Key Identifier:
keyid:02:05:56:F9:7D:54:54:34:D2:C8:54:12:1D:C5:DC:64:63:4A:64:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/AgVW-X1UVDTSyFQSHcXcZGNKZKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgVW-X1UVDTSyFQSHcXcZGNKZKw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/46BEDD64662411EBADFEB364C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.153.100.0/22
103.198.136.0/22
IPv6:
2401:f40::/32
Signature Algorithm: sha256WithRSAEncryption
b1:6b:18:a5:f8:43:9b:3d:88:8b:4e:ba:23:9c:49:f2:49:01:
3c:64:d9:fd:6a:08:52:9c:58:f4:7a:0e:0a:2f:ae:38:82:98:
3f:fc:3e:66:10:23:02:79:50:3c:8b:54:16:24:52:cb:ba:39:
2b:59:cc:1b:85:45:49:d7:cc:ec:47:f3:3a:c2:5f:dc:19:92:
1a:c2:c0:c0:6e:dc:0c:73:9c:45:b3:72:2c:54:88:a1:e8:75:
f9:b5:75:15:5f:12:19:fd:bd:0f:76:fc:c8:eb:1d:63:84:15:
af:5d:c7:31:66:ae:13:60:de:44:61:dd:b1:82:78:02:c2:d1:
3d:46:08:2a:7c:5c:0d:7f:98:94:ad:1b:66:21:ab:21:ef:f4:
68:60:a1:50:02:a7:51:3f:aa:e3:16:bc:32:a1:82:f3:94:6a:
41:3e:aa:8b:5a:bd:3d:c1:f5:7f:27:b6:10:75:41:33:1e:52:
bf:15:4b:ea:70:5b:ad:11:f8:14:09:9a:7b:58:65:d4:4a:c3:
8a:02:97:f7:29:72:fb:6c:49:51:0c:28:9b:8e:f6:04:1e:3c:
3a:33:1f:d3:08:a5:de:86:59:f2:a4:c0:76:7c:e7:c7:9e:3a:
a4:c1:d0:c8:b1:57:43:7f:c9:bb:ac:f0:76:4f:c0:ea:4b:9b:
46:d5:fd:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:20:46 2025 by rpki-client