Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1F1/4FEBF24A09DA11EDA03C9817C4F9AE02/9F884FECF6A411EF836A164EC4F9AE02.roa
File: 9F884FECF6A411EF836A164EC4F9AE02.roa (raw, json)
Hash identifier: bSmhzQODxNfMVArlE9vGl0Ey79DTDloRgo/7EP6URZM=
Subject key identifier: 67:E1:1B:0B:22:BA:CF:F2:96:33:2E:CD:AD:32:30:0F:EE:20:0F:F7
Certificate issuer: /CN=A914E1F1/serialNumber=F3F273F3EFCE551EE33C844D440AA30EDA087E2C
Certificate serial: 0263
Authority key identifier: F3:F2:73:F3:EF:CE:55:1E:E3:3C:84:4D:44:0A:A3:0E:DA:08:7E:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_Jz8-_OVR7jPIRNRAqjDtoIfiw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914E1F1/4FEBF24A09DA11EDA03C9817C4F9AE02/9F884FECF6A411EF836A164EC4F9AE02.roa
Signing time: Sat 01 Mar 2025 13:53:59 +0000
ROA not before: Sat 01 Mar 2025 13:53:59 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 149006
IP address blocks: 103.176.19.0/24 maxlen: 24
2400:1fe0::/32 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 611 (0x263)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914E1F1
Validity
Not Before: Mar 1 13:53:59 2025 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=67c31176-4617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b4:fa:df:51:ac:3a:81:1e:cf:9f:79:98:a9:
80:a4:f5:17:0c:71:bc:dd:5d:eb:79:d0:a5:12:c3:
a8:2e:eb:eb:d5:f2:66:94:03:07:fc:6d:34:f3:37:
fe:63:cf:7a:18:ac:d2:d9:83:a2:a0:1a:17:0f:68:
c9:51:e5:b8:9b:23:8a:ae:87:4a:02:54:c6:37:ec:
6a:73:f0:7e:c9:22:5a:46:5f:4d:75:2f:9c:58:a6:
08:74:b1:1e:f4:34:09:3d:cd:ca:ca:63:dc:a9:d7:
a8:e1:fc:c3:d5:d8:3a:44:8e:d5:e5:83:b9:e0:bd:
3f:bb:22:59:ca:1e:aa:63:6a:1b:c5:80:0a:f2:2f:
b8:65:28:35:00:e5:09:90:44:1d:a7:07:5f:e3:3d:
01:b2:87:2b:18:18:54:6a:16:b5:4d:c8:e4:8a:b6:
6f:5a:14:32:37:70:be:4a:11:95:1f:0f:d5:d4:75:
8b:ef:28:f4:29:de:dd:37:03:03:da:01:3d:1f:92:
16:56:11:e8:49:26:0a:38:6c:7a:19:0c:07:2e:c1:
91:a8:21:fd:6c:bf:c5:bf:de:2c:26:f5:f0:8a:63:
c8:5e:1d:1c:f4:44:3f:9d:37:d9:7d:03:d6:3f:b1:
83:41:94:31:18:f9:9f:a9:2e:32:28:e0:8a:7e:73:
ec:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E1:1B:0B:22:BA:CF:F2:96:33:2E:CD:AD:32:30:0F:EE:20:0F:F7
X509v3 Authority Key Identifier:
keyid:F3:F2:73:F3:EF:CE:55:1E:E3:3C:84:4D:44:0A:A3:0E:DA:08:7E:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914E1F1/4FEBF24A09DA11EDA03C9817C4F9AE02/8_Jz8-_OVR7jPIRNRAqjDtoIfiw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_Jz8-_OVR7jPIRNRAqjDtoIfiw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1F1/4FEBF24A09DA11EDA03C9817C4F9AE02/9F884FECF6A411EF836A164EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.176.19.0/24
IPv6:
2400:1fe0::/32
Signature Algorithm: sha256WithRSAEncryption
17:83:93:ee:fb:2f:d3:60:11:93:66:24:a6:57:78:d0:b0:bb:
d9:b9:46:17:3f:b0:c8:62:e0:ed:3d:6c:52:0d:17:f0:d7:4b:
04:2c:b7:81:b3:bc:56:39:d0:82:2e:d3:0c:36:4e:e8:9e:98:
0e:ea:63:19:dd:93:79:11:e3:b4:89:10:35:cc:bd:fd:54:3d:
75:7a:8a:12:18:e2:df:90:15:3d:cd:9a:01:24:a9:71:d8:fc:
f5:a5:11:33:7b:a1:b8:34:e0:3c:22:fb:51:81:ab:5e:64:6f:
e0:95:1f:03:ee:13:e4:e0:d2:8d:f5:0a:3e:db:db:05:57:7f:
3a:a7:2d:16:ff:0a:a4:e8:06:4f:a8:9c:a1:9b:1e:83:8f:a0:
1a:cb:49:1c:69:c9:d1:4a:9d:a3:f2:04:03:17:c3:7c:7e:7c:
3a:c7:6f:a9:ef:cf:3d:9a:8c:4f:8a:53:db:a7:3b:b8:08:6f:
34:e0:b2:4b:66:03:e8:b3:60:09:9c:46:17:ae:53:a8:e0:56:
4b:c8:fb:7c:a6:08:b6:bf:8f:6e:90:cf:db:cf:5a:00:6c:fb:
6e:76:b5:e0:0b:74:2d:a2:9b:96:94:93:4e:30:43:77:bb:44:
e8:df:ae:ed:58:11:a4:c7:4d:c0:b7:2e:d1:89:c9:cc:72:67:
f2:de:ab:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:26:03 2025 by rpki-client