Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/757320342E4011EEBC464879C4F9AE02.roa
File: 757320342E4011EEBC464879C4F9AE02.roa (raw, json)
Hash identifier: F8kcefS3I97Fp9Z0ACrQ84pOuyd0pejyLJ6D0xqjqYQ=
Subject key identifier: 98:DF:6A:58:6E:BC:FC:4A:F0:B0:4B:B2:E5:3A:32:9F:0C:33:14:B0
Certificate issuer: /CN=A914F521/serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948
Certificate serial: 0D01
Authority key identifier: 29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/757320342E4011EEBC464879C4F9AE02.roa
Signing time: Thu 06 Jun 2024 19:33:07 +0000
ROA not before: Thu 06 Jun 2024 19:33:07 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 137843
IP address blocks: 103.104.242.0/23 maxlen: 24
2402:e840::/32 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3329 (0xd01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914F521
Validity
Not Before: Jun 6 19:33:07 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66620ef2-c129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:99:eb:9b:d5:df:c0:96:cf:e0:14:71:fa:b6:
0d:3e:eb:de:fd:d4:1c:4c:87:66:5b:57:9e:33:03:
13:d5:ef:3a:69:fd:8f:a9:a4:29:5f:fa:e2:00:37:
eb:eb:de:61:e1:f7:d9:96:18:1c:4d:9a:3e:5d:6c:
0d:35:cb:b8:4e:91:ea:e8:7f:1b:0d:5c:73:e3:9d:
6e:b0:79:39:68:fd:7d:de:0c:e0:ea:1b:7e:ef:79:
b6:0e:fe:b7:96:68:78:cb:38:25:98:d1:d8:e7:6f:
6e:57:68:42:22:03:1a:53:01:83:ba:a0:43:49:e6:
71:27:3d:6d:91:68:46:91:fd:0e:45:b1:f6:48:ef:
57:36:34:97:08:02:32:d9:2c:b6:a6:84:2e:2e:ea:
07:d1:97:ad:2f:98:8b:9a:44:4c:12:0c:e0:1d:6c:
a3:04:84:fe:d2:31:d4:9e:77:65:87:65:de:85:c5:
f9:7d:f5:85:9d:c1:e7:ac:92:1d:59:c5:9e:78:72:
72:c9:2a:aa:79:93:bb:66:f5:eb:46:bf:8a:ce:50:
a3:ff:50:54:c5:d7:c0:91:cf:8b:39:c1:53:90:34:
58:fa:3e:3b:76:ec:79:12:b1:69:46:d4:84:85:cb:
bd:74:c2:9a:32:bc:dc:f3:a9:ab:13:0b:50:0c:25:
ce:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:DF:6A:58:6E:BC:FC:4A:F0:B0:4B:B2:E5:3A:32:9F:0C:33:14:B0
X509v3 Authority Key Identifier:
keyid:29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/757320342E4011EEBC464879C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.104.242.0/23
IPv6:
2402:e840::/32
Signature Algorithm: sha256WithRSAEncryption
ab:6c:84:7c:70:09:46:0c:65:25:e7:1f:bd:c4:0a:18:69:50:
81:31:5b:0d:01:4e:a8:bb:1d:73:a2:9e:af:91:f8:2f:6f:56:
d4:15:07:c1:09:f2:ee:66:68:31:c2:fa:dd:b6:c7:7c:9d:ac:
91:ed:b9:8d:b1:ea:c0:08:04:e0:e4:96:5d:4a:d3:33:83:a4:
1c:aa:e1:bd:f0:37:af:ab:c9:9e:a8:f1:00:09:ad:b6:14:82:
5b:d0:47:51:02:b0:f0:17:72:49:a8:52:51:d3:2a:e4:fd:5e:
1a:a2:6a:58:71:56:82:25:1a:69:62:7c:0c:d1:06:52:dd:1f:
b7:c5:f4:cc:77:9d:86:72:80:99:1e:30:34:21:a5:15:aa:93:
dc:60:c0:b4:b4:07:78:97:c9:6c:9e:b3:32:30:a7:6f:48:52:
50:30:24:13:93:37:c3:76:19:e8:9c:ec:d6:d9:5a:24:1e:6b:
e8:b0:a2:4b:75:21:15:15:cf:5e:1d:b9:d6:5f:29:44:47:f4:
b0:5e:6a:e4:18:5e:03:a9:da:81:60:d9:33:3a:a1:29:0a:a6:
bf:df:9a:1b:2b:54:10:75:b4:a9:57:07:ed:19:ca:9f:17:bb:
04:94:5d:8a:d0:5c:30:5f:0b:a3:03:35:9b:81:26:e1:ae:11:
04:53:0e:3a
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICDQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NEY1MjExMTAvBgNVBAUTKDI5NzY4NzY3NTNENjU1NjJBN0NBODVFM0U5RThERjc1
MDc5N0M5NDgwHhcNMjQwNjA2MTkzMzA3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjYyMGVmMi1jMTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAw5nrm9XfwJbP4BRx+rYNPuve/dQcTIdmW1eeMwMT1e86af2PqaQpX/riADfr
695h4ffZlhgcTZo+XWwNNcu4TpHq6H8bDVxz451usHk5aP193gzg6ht+73m2Dv63
lmh4yzglmNHY529uV2hCIgMaUwGDuqBDSeZxJz1tkWhGkf0ORbH2SO9XNjSXCAIy
2Sy2poQuLuoH0ZetL5iLmkRMEgzgHWyjBIT+0jHUnndlh2XehcX5ffWFncHnrJId
WcWeeHJyySqqeZO7ZvXrRr+KzlCj/1BUxdfAkc+LOcFTkDRY+j47dux5ErFpRtSE
hcu9dMKaMrzc86mrEwtQDCXOFQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJjfalhu
vPxK8LBLsuU6Mp8MMxSwMB8GA1UdIwQYMBaAFCl2h2dT1lVip8qF4+no33UHl8lI
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjUyMS8yMTY1ODgyMEM2
N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZXS255b1hqNmVqZmRRZVh5
VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tYYUhaMVBXVldLbnlvWGo2ZWpmZFFlWHlVZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NEY1MjEvMjE2NTg4MjBDNjdFMTFFOUFGM0JBNzY1QzRGOUFFMDIvNzU3MzIwMzQy
RTQwMTFFRUJDNDY0ODc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E
HzAdMAwEAgABMAYDBAFnaPIwDQQCAAIwBwMFACQC6EAwDQYJKoZIhvcNAQELBQAD
ggEBAKtshHxwCUYMZSXnH73EChhpUIExWw0BTqi7HXOinq+R+C9vVtQVB8EJ8u5m
aDHC+t22x3ydrJHtuY2x6sAIBODkll1K0zODpByq4b3wN6+ryZ6o8QAJrbYUglvQ
R1ECsPAXckmoUlHTKuT9XhqialhxVoIlGmlifAzRBlLdH7fF9Mx3nYZygJkeMDQh
pRWqk9xgwLS0B3iXyWyeszIwp29IUlAwJBOTN8N2Geic7NbZWiQea+iwokt1IRUV
z14dudZfKURH9LBeauQYXgOp2oFg2TM6oSkKpr/fmhsrVBB1tKlXB+0Zyp8XuwSU
XYrQXDBfC6MDNZuBJuGuEQRTDjo=
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:31:11 2025 by rpki-client