Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/D7F4292A53BE11EF819E6347C4F9AE02.roa
File: D7F4292A53BE11EF819E6347C4F9AE02.roa (raw, json)
Hash identifier: 6rzzTql+rTT5ufDrgPaNF73NsxCvIwZoNJ1l8tZG9WU=
Subject key identifier: 37:8A:F3:38:70:99:7F:E2:69:BE:51:3F:13:87:E2:03:B0:4A:58:D3
Certificate issuer: /CN=A914781A/serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D
Certificate serial: 34B9
Authority key identifier: 4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/D7F4292A53BE11EF819E6347C4F9AE02.roa
Signing time: Tue 04 Mar 2025 15:30:56 +0000
ROA not before: Tue 04 Mar 2025 15:30:56 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 135381
IP address blocks: 203.130.151.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13497 (0x34b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914781A
Validity
Not Before: Mar 4 15:30:56 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67c71cb0-32fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4f:0f:44:9c:4c:9d:af:6a:a8:ee:e4:60:23:
ff:cd:26:ea:df:c0:19:7b:21:1d:b9:aa:d2:55:8f:
5f:65:87:8f:2d:cc:7a:0e:25:38:ea:97:a0:bb:ab:
64:83:1e:a8:6b:5b:ac:bc:83:62:5c:88:4b:cb:86:
d5:0e:a1:15:f6:90:65:19:69:bb:fb:db:35:c2:4d:
1d:16:bd:e9:79:64:07:2c:fe:6e:a2:17:8a:e4:4f:
a0:08:8a:31:35:f1:81:b4:2e:ac:8d:3a:3d:06:42:
b1:c7:83:e8:c7:a3:2a:fa:ae:a9:3d:8f:77:a8:35:
0b:0e:0f:bf:f1:9b:ef:6d:4a:5c:d6:d7:2b:8b:33:
24:a9:a7:8f:95:be:e9:ca:57:88:d8:60:26:33:b4:
f1:57:50:cc:be:3b:5e:8d:18:b7:bf:c3:4c:6f:7e:
3e:e5:71:0f:11:4f:9b:a9:04:2d:e3:c6:2f:c7:a4:
86:d9:55:1c:99:a2:ec:ee:94:72:e5:93:0e:5e:17:
ec:20:ca:3e:3f:d4:10:54:79:25:83:39:57:9f:ca:
dd:3f:d7:1f:99:92:7b:6a:fd:c2:43:f4:f5:23:6e:
c0:fd:16:2e:c4:d2:11:98:68:1c:58:c9:a9:83:25:
33:e5:c9:37:01:fa:39:a0:37:94:ac:ab:d0:94:dc:
97:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:8A:F3:38:70:99:7F:E2:69:BE:51:3F:13:87:E2:03:B0:4A:58:D3
X509v3 Authority Key Identifier:
keyid:4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/D7F4292A53BE11EF819E6347C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.130.151.0/24
Signature Algorithm: sha256WithRSAEncryption
76:de:18:8c:f0:35:b7:c1:c7:c5:d9:9a:82:64:ba:61:41:5f:
a2:09:08:7e:f9:76:e8:c1:c8:9a:c4:fe:82:82:13:d0:25:e4:
70:82:c0:1b:e7:08:76:22:ba:bb:c5:49:3c:f5:57:96:4a:16:
c4:e1:3b:ab:bc:b0:ad:5a:b8:1e:46:e7:07:fb:b4:a1:84:64:
5f:21:20:f0:e5:72:0a:8b:a1:55:e0:2b:b7:2f:da:bd:14:0a:
9e:f2:86:71:b3:e7:3d:32:00:45:bb:c7:69:9c:90:3f:82:3b:
b1:25:c6:92:34:10:82:fd:17:94:b5:d6:19:ff:38:a6:02:77:
32:66:3a:f1:fe:f8:74:22:67:3e:1b:10:b9:0c:26:9a:86:dc:
68:d5:5e:f8:39:44:95:3f:ec:c2:33:d1:ef:09:cc:d7:33:ce:
d6:1f:ba:43:df:5d:99:b1:6a:3c:88:47:c3:b9:41:2a:e4:e2:
58:2c:08:a7:88:80:03:94:a0:26:96:95:8d:8a:90:0b:c2:b2:
b1:f1:3e:92:2e:62:47:29:b5:69:2a:3e:b1:11:f0:c2:1b:2d:
7f:72:f2:99:6b:e7:14:06:a5:70:6d:44:14:20:b1:23:cd:6d:
0c:89:c8:ae:40:3a:1b:d9:ce:2a:ea:91:96:91:36:81:a0:a4:
db:19:98:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:13:19 2025 by rpki-client