Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/F89619526C6311EDBCFA073FC4F9AE02.roa
File: F89619526C6311EDBCFA073FC4F9AE02.roa (raw, json)
Hash identifier: Q8fkkGrqe6VWY1NSxvpkuBNxBOO5q5TMyg82AwHyup0=
Subject key identifier: B4:37:C2:B0:DB:4D:5D:15:91:AB:9A:2F:B5:7F:9D:29:D4:33:8A:4B
Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256
Certificate serial: 9B
Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/F89619526C6311EDBCFA073FC4F9AE02.roa
Signing time: Fri 01 Sep 2023 22:57:46 +0000
ROA not before: Fri 01 Sep 2023 22:57:46 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 136969
IP address blocks: 103.151.46.0/24 maxlen: 24
103.151.47.0/24 maxlen: 24
2400:3fa0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155 (0x9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917357E
Validity
Not Before: Sep 1 22:57:46 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=64f26c69-2cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:2f:73:28:82:1f:0c:58:0a:90:e2:80:6a:df:
bc:96:df:47:b6:a0:fd:3c:a3:34:99:24:f3:b1:2d:
47:7b:ff:c1:a8:50:33:0a:2d:6a:63:0b:6a:e7:0e:
6a:b2:fd:46:7e:d8:1f:e8:6f:ca:b1:6e:80:d6:c1:
ee:d8:c2:b4:5f:5c:77:b2:98:b9:7b:29:be:ab:e6:
32:c0:00:85:84:80:f5:82:cf:5c:60:05:5c:1c:44:
74:6f:cd:b9:03:45:1a:a0:d9:70:d0:11:fc:95:17:
fa:6b:af:8c:b0:7c:53:98:aa:00:14:f8:85:ec:b3:
67:93:a9:33:2c:10:86:29:36:1f:4c:8f:1b:22:fa:
d9:c9:23:95:63:a3:68:af:75:70:6a:ac:d3:30:ee:
b0:a0:21:47:c8:6c:7c:58:25:d7:63:9b:69:74:c4:
e1:0a:1c:92:9b:23:1d:d9:11:e8:bd:32:55:5a:7f:
0a:88:a5:83:82:39:ed:05:f6:20:18:1a:ff:ed:c0:
60:42:23:95:0b:a2:40:fe:65:37:98:38:b5:a5:c5:
4c:1c:5c:ca:ca:ae:0d:6e:88:45:55:c8:32:dc:63:
f0:63:a9:e5:d4:8d:f2:b1:ec:bc:a5:21:a7:95:25:
e5:e7:96:9c:cd:0e:2a:fe:84:b6:50:52:b8:f7:34:
84:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:37:C2:B0:DB:4D:5D:15:91:AB:9A:2F:B5:7F:9D:29:D4:33:8A:4B
X509v3 Authority Key Identifier:
keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/F89619526C6311EDBCFA073FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.46.0/23
IPv6:
2400:3fa0::/32
Signature Algorithm: sha256WithRSAEncryption
04:0b:af:2e:85:a7:2a:a9:3e:f0:67:c5:49:a6:8f:da:23:eb:
84:2a:3c:89:72:b9:5b:67:ac:79:6c:5f:25:82:1f:0b:a4:63:
ca:84:cc:82:78:58:d1:a3:53:cf:ac:1c:f2:05:1e:0d:f6:87:
94:09:df:20:0a:c8:57:7f:bd:63:db:55:f8:9a:5b:a7:67:4f:
c1:e1:d8:54:28:e4:51:28:af:11:5d:dc:d0:dd:1f:fe:e8:8a:
9d:a3:b7:15:76:9d:50:26:31:68:df:90:19:51:75:8f:f3:84:
82:47:ec:45:32:54:44:fd:a7:bf:60:78:02:92:17:c0:b1:72:
d2:f3:ec:a3:ef:d6:85:59:3a:6e:65:7d:20:90:8e:4d:57:80:
88:c5:e3:25:7a:08:cb:54:9e:10:97:19:55:9f:ca:89:bf:c5:
07:6e:ea:4c:a2:d4:ae:2d:c9:d7:c7:46:3d:7e:29:13:cf:48:
7b:09:a1:bf:d3:f6:17:e9:48:13:db:35:92:41:d0:9d:15:cf:
08:bd:c4:bb:27:32:1e:45:08:af:bb:f2:1d:8e:33:ea:c9:59:
ec:c8:a2:67:87:02:91:d9:c0:1d:27:d7:58:ab:81:97:b6:d5:
dc:c8:b2:05:25:3f:f3:58:f6:75:fd:8a:0e:06:d2:14:46:36:
d0:77:b8:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:17:09 2025 by rpki-client