Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/ED816DEC95DA11EC993BD050C4F9AE02.roa
File: ED816DEC95DA11EC993BD050C4F9AE02.roa (raw, json)
Hash identifier: H2GtJ0iPg0F8hSUg65wTV+ujzqji+9qmbwmD4ETHfZY=
Subject key identifier: C7:CE:DC:56:C2:94:DC:40:4E:10:ED:7F:5A:A6:D2:77:91:DA:28:A3
Certificate issuer: /CN=A9179D1F/serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0
Certificate serial: 038D
Authority key identifier: 1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/ED816DEC95DA11EC993BD050C4F9AE02.roa
Signing time: Sat 29 Mar 2025 01:26:26 +0000
ROA not before: Sat 29 Mar 2025 01:26:26 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 149523
IP address blocks: 103.182.150.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 909 (0x38d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9179D1F
Validity
Not Before: Mar 29 01:26:26 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67e74c42-67a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:78:6f:5c:15:49:18:91:04:33:35:e6:83:a0:
f3:02:f2:3f:8c:76:03:84:8d:45:cd:4d:df:ca:b2:
d3:f7:39:fb:c6:70:f2:2c:5f:ab:94:84:12:23:fd:
2a:27:2d:13:74:d0:8f:27:e1:38:1b:a8:db:e4:5d:
57:3a:d1:d5:5d:0a:d3:ea:50:05:55:1a:aa:8b:e8:
c0:ae:46:59:85:57:7d:6c:7d:3f:05:ce:8c:98:bf:
29:27:33:32:4e:06:26:80:6c:2d:64:03:16:82:87:
c6:45:42:48:d9:ff:21:ea:c4:2d:37:09:20:ea:a9:
6a:cd:dc:b4:99:46:b1:41:87:fe:ce:aa:67:84:4f:
ad:ac:4a:52:3f:7c:bb:d5:2b:fd:ef:28:ed:ec:2d:
cf:a3:6d:c0:80:a6:54:1b:5e:b4:e3:54:f2:b9:86:
2f:42:74:e9:41:9e:69:8a:04:f8:33:71:1d:1d:15:
7d:56:32:bf:c8:af:c9:f9:c9:d0:89:16:db:3b:28:
80:ae:10:3d:bc:5e:b7:d2:9f:be:87:fe:c7:65:59:
31:2a:a7:3f:76:04:48:c9:c6:0f:7b:94:b0:95:91:
e6:52:e3:ce:ca:40:f7:6a:a3:df:0d:0b:53:f5:8c:
df:2d:0e:1e:79:7d:b5:14:8f:34:fd:b9:54:34:67:
a2:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:CE:DC:56:C2:94:DC:40:4E:10:ED:7F:5A:A6:D2:77:91:DA:28:A3
X509v3 Authority Key Identifier:
keyid:1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/ED816DEC95DA11EC993BD050C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.182.150.0/23
Signature Algorithm: sha256WithRSAEncryption
42:1c:d8:e5:94:a6:a2:53:94:b5:91:5d:f8:9a:85:99:69:60:
3f:30:99:39:15:06:18:93:82:7c:7b:5a:9d:05:4e:1e:c1:3f:
f6:87:0f:7e:50:3d:1f:87:fb:ff:89:32:7b:d5:65:5f:a3:cb:
32:f0:f7:0f:c3:db:24:60:6e:cd:95:a8:ec:e6:4b:28:8a:ae:
b5:9e:ed:f2:54:75:cf:8b:c3:6c:22:4b:19:a8:fc:ce:ff:97:
4a:d7:ea:d8:d2:72:f7:41:19:bf:41:38:8a:47:31:8d:43:71:
56:14:ea:5b:1e:87:89:0e:ce:c4:e8:17:b5:28:a9:91:d9:96:
7a:64:c8:42:88:d4:92:3c:2d:e8:1d:a8:a4:8f:f8:c3:c9:db:
44:20:8b:bb:48:4a:95:30:cd:b2:5a:6f:69:dd:8e:b7:4c:0f:
04:bd:6e:e4:c3:44:89:08:7c:db:9e:8b:76:41:89:d2:6b:49:
7c:e1:50:8a:77:e6:c6:38:df:da:78:60:b8:13:df:04:32:f4:
56:ea:d7:a8:4f:28:50:f2:63:67:a7:ec:84:58:7a:9e:07:27:
cc:93:a2:9c:1c:65:2f:ea:67:f7:8c:55:17:26:6c:24:d4:1a:
3d:3b:69:bd:13:6a:94:74:33:c2:ee:b6:1d:a5:52:09:30:23:
18:62:0a:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:52:15 2025 by rpki-client