Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/24C647DC3DFE11EAA52A0572C4F9AE02.roa
File: 24C647DC3DFE11EAA52A0572C4F9AE02.roa (raw, json)
Hash identifier: P0bYmStiB4oa4LekcidIgrNs8onI2ttf+z7KOz4RThU=
Subject key identifier: 75:C5:2B:14:EF:17:B7:4C:46:E8:B9:4D:71:11:6E:9F:E7:07:3B:94
Certificate issuer: /CN=A9163415/serialNumber=F0CB35F145E61B1C2043AFD1BA4E354147C4B55E
Certificate serial: 0AF0
Authority key identifier: F0:CB:35:F1:45:E6:1B:1C:20:43:AF:D1:BA:4E:35:41:47:C4:B5:5E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Ms18UXmGxwgQ6_Ruk41QUfEtV4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/24C647DC3DFE11EAA52A0572C4F9AE02.roa
Signing time: Tue 04 Feb 2025 19:18:28 +0000
ROA not before: Tue 04 Feb 2025 19:18:28 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 140054
IP address blocks: 103.147.230.0/24 maxlen: 24
103.178.82.0/24 maxlen: 24
2001:df2:a780::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2800 (0xaf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9163415
Validity
Not Before: Feb 4 19:18:28 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67a26804-aa02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ad:24:00:7f:53:36:2f:ef:f0:02:11:87:90:
52:92:b2:e1:9d:25:bc:77:e1:7b:86:8c:25:40:39:
5e:e5:11:6d:36:c8:6a:16:a7:a8:06:99:6c:61:d1:
a5:7d:3c:b8:8b:54:dd:aa:a9:f2:ca:38:c4:0c:9b:
a5:9d:3d:e7:ce:3e:80:59:6a:cb:00:7b:b4:9a:28:
6a:e4:29:e4:8a:21:28:50:65:81:d1:58:43:2d:7f:
76:52:f0:13:2b:dd:34:e2:ef:6e:67:26:1f:04:de:
af:8f:ab:d5:37:f5:28:70:ab:4f:c0:10:c4:f4:79:
47:8e:b8:fd:09:9f:50:6b:e0:5e:e8:95:aa:26:a9:
fa:2d:7d:35:fc:1e:14:8f:38:51:e7:f9:d8:74:6c:
77:96:bf:76:0e:36:e2:66:5d:71:c8:fa:d1:1a:94:
73:3a:9e:ad:2e:75:eb:d4:45:33:fb:af:7b:ba:3d:
7d:87:3d:f2:55:db:e4:28:fb:13:86:ae:c3:b5:e3:
bc:2e:be:01:80:b8:41:b2:9d:6e:79:f3:f5:f8:87:
38:38:02:70:e2:7c:11:af:c5:52:5c:26:ce:e6:11:
cf:b3:c5:09:f2:d3:04:da:73:67:5b:ab:af:61:00:
b1:60:6f:a0:8f:e9:0d:8c:84:93:a3:b8:f7:d6:6d:
ca:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:C5:2B:14:EF:17:B7:4C:46:E8:B9:4D:71:11:6E:9F:E7:07:3B:94
X509v3 Authority Key Identifier:
keyid:F0:CB:35:F1:45:E6:1B:1C:20:43:AF:D1:BA:4E:35:41:47:C4:B5:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/8Ms18UXmGxwgQ6_Ruk41QUfEtV4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Ms18UXmGxwgQ6_Ruk41QUfEtV4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163415/107209483DFD11EA9F3DB470C4F9AE02/24C647DC3DFE11EAA52A0572C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.230.0/24
103.178.82.0/24
IPv6:
2001:df2:a780::/48
Signature Algorithm: sha256WithRSAEncryption
77:92:9f:cb:3d:a2:e0:c9:09:a8:a7:01:e8:8d:4e:37:29:6b:
2c:f0:13:67:d6:7a:19:8e:a6:59:34:6f:6e:94:6b:95:91:03:
1c:ad:fc:de:7d:26:be:17:23:77:5a:7b:c9:a1:a4:75:9e:c9:
58:7b:bf:c4:6c:ac:98:c6:66:72:3e:89:78:d1:5e:2f:bb:6e:
98:7d:45:a2:70:cf:6a:c8:c5:a5:22:f8:e9:59:cb:7d:ba:ff:
81:41:4f:6e:ca:5a:3a:04:bc:d3:f7:8e:b9:b0:94:be:82:d5:
01:74:90:be:0f:27:5b:16:c6:c6:fb:63:a8:a6:4c:90:cd:f2:
cb:0b:31:d1:9a:b6:0d:c3:80:fd:02:b5:d2:b8:1e:a8:f2:d6:
07:9c:3b:30:07:6e:da:81:89:48:55:8f:28:12:71:ce:d3:24:
b1:6e:d6:f8:4e:14:95:eb:c9:27:04:ce:45:e9:9b:5a:bd:07:
17:d5:84:ba:d6:6a:f5:b0:c4:7d:1a:e3:b7:a7:1a:8e:b3:8c:
61:a9:2e:a7:0e:2c:67:41:45:b7:d1:df:5e:96:ec:2e:a9:07:
16:72:b3:29:e0:fa:c0:12:f9:05:29:20:04:64:e1:b0:9b:e1:
9e:26:74:15:ed:25:86:76:22:34:30:01:13:33:97:a4:95:b3:
4b:4e:d5:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:04:37 2025 by rpki-client