Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/4754ED7C16BF11EBB31D5A6AC4F9AE02.roa
File: 4754ED7C16BF11EBB31D5A6AC4F9AE02.roa (raw, json)
Hash identifier: U9fyIm2NmXEuQVuMNuljEU3QyW88+XoUu1PsqGUQ4wY=
Subject key identifier: 7B:F1:7F:2A:34:33:2F:90:EE:AA:17:AC:0E:F0:5C:81:05:5C:91:85
Certificate issuer: /CN=A914781A/serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D
Certificate serial: 34BA
Authority key identifier: 4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/4754ED7C16BF11EBB31D5A6AC4F9AE02.roa
Signing time: Tue 04 Mar 2025 15:30:57 +0000
ROA not before: Tue 04 Mar 2025 15:30:57 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 138915
IP address blocks: 2404:4a00:5542:3a5::/64 maxlen: 64
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13498 (0x34ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914781A
Validity
Not Before: Mar 4 15:30:57 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67c71cb1-a755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4d:96:d1:f1:fc:2e:73:10:8f:fe:05:bd:b1:
bd:35:cb:09:2c:99:54:28:a5:27:b3:ef:bf:bb:88:
7c:d9:ae:05:2c:48:48:b8:9f:5f:04:09:fa:10:07:
52:21:2f:d3:d5:77:dd:50:61:0e:f6:03:f5:49:12:
5e:88:4c:a8:33:b0:8e:eb:ec:d5:72:4f:3e:c5:09:
c3:e9:e2:1d:bc:f3:2b:d3:f4:08:3b:d2:b4:f8:bc:
13:95:9a:e7:f0:b8:9a:a7:c7:3e:a0:9a:89:69:06:
18:8f:3e:72:98:75:8a:17:73:6b:56:e0:de:36:65:
38:10:67:55:6c:18:57:25:d3:e6:7a:52:66:da:af:
6c:c1:5b:cc:6e:36:5c:c4:a0:09:79:d8:28:d1:9b:
d2:fc:5a:f5:b3:53:24:49:2d:a2:71:53:0a:6d:8c:
52:3e:46:23:73:bc:4b:ca:91:6a:e0:a3:76:da:57:
df:44:7d:dc:2d:00:bb:6d:b8:92:57:b3:c6:60:41:
83:2f:cc:2c:a6:96:0f:af:bf:23:59:5f:6d:92:ef:
c0:96:a3:af:10:b6:4e:98:2c:00:a6:f9:53:72:a0:
29:e1:d7:16:06:91:ae:1b:93:da:41:2a:cd:9a:1c:
85:ce:fb:8c:5a:f1:af:e1:1b:ed:b7:70:48:78:1d:
fc:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F1:7F:2A:34:33:2F:90:EE:AA:17:AC:0E:F0:5C:81:05:5C:91:85
X509v3 Authority Key Identifier:
keyid:4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/4754ED7C16BF11EBB31D5A6AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:4a00:5542:3a5::/64
Signature Algorithm: sha256WithRSAEncryption
d1:13:dd:b5:ae:69:2d:94:2c:08:5a:a2:9f:32:71:d1:35:d5:
d0:3f:62:ec:aa:6d:2c:27:1b:e3:47:1f:16:07:c6:e5:d2:55:
32:33:72:81:16:47:6f:b6:02:d0:2b:af:86:62:ec:a5:1e:ec:
44:7e:f5:62:d2:12:60:55:fe:3d:03:7a:79:d9:27:f5:0d:6f:
c8:6e:04:b4:34:b6:10:c6:df:1b:a1:3f:1b:53:37:7b:01:fd:
76:07:ef:c6:69:02:56:e2:0f:c4:c1:34:66:87:d3:42:f0:a4:
c8:65:55:00:0b:b8:18:b5:0b:74:1a:18:b7:42:ec:d3:6c:f8:
1a:95:b6:07:0a:c5:68:68:8a:93:50:51:a8:e6:3d:57:72:1b:
31:46:17:11:3e:73:42:55:dd:31:01:4b:6f:65:79:52:56:0a:
42:d9:1d:74:46:d0:93:b5:58:b3:cc:63:80:d4:25:54:57:b5:
32:0b:3d:fe:fc:14:f7:fd:bf:d4:0f:fc:7b:e3:53:3e:9c:8a:
4f:e6:e0:73:b4:a4:84:94:5c:6b:8a:b0:ec:a2:8d:d5:0e:19:
b6:3b:84:f9:9b:2c:94:5d:df:fb:ce:e0:20:f4:fb:63:4b:66:
58:46:94:64:1b:85:85:c6:97:eb:f3:ab:f5:0c:ad:ba:7e:a1:
4a:12:e2:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:20:32 2025 by rpki-client