Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C185/202276BA9BFF11EA8436FC45C4F9AE02/DF27F546D12D11EE9F451355C4F9AE02.roa
File: DF27F546D12D11EE9F451355C4F9AE02.roa (raw, json)
Hash identifier: 4zTT34lM7O6gFPRhXB1r+qunYynBSeEm8n99il9hQxc=
Subject key identifier: 10:1F:A5:2F:87:E4:5E:8E:9E:AC:CC:4F:17:06:B5:3A:0C:08:6D:B3
Certificate issuer: /CN=A917C185/serialNumber=AE4718E5F32F004A0312FEB869ADCBBCC4EEE516
Certificate serial: 0900
Authority key identifier: AE:47:18:E5:F3:2F:00:4A:03:12:FE:B8:69:AD:CB:BC:C4:EE:E5:16
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rkcY5fMvAEoDEv64aa3LvMTu5RY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C185/202276BA9BFF11EA8436FC45C4F9AE02/DF27F546D12D11EE9F451355C4F9AE02.roa
Signing time: Thu 16 Jan 2025 20:19:23 +0000
ROA not before: Thu 16 Jan 2025 20:19:23 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 131164
IP address blocks: 113.197.74.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2304 (0x900)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C185
Validity
Not Before: Jan 16 20:19:23 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=678969cb-ea4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c6:b8:d6:47:74:29:97:24:77:4a:bf:eb:54:
d3:a2:8d:9b:b2:a6:f5:e0:ef:ee:3b:dd:d1:6e:68:
a0:e3:7b:58:6c:fc:b5:fa:f2:2c:22:ba:a6:45:f6:
6a:97:ed:bf:cf:bc:22:48:e7:5a:13:02:3d:63:64:
d3:8a:06:a1:8d:7d:ef:8a:73:24:72:2b:39:e6:8f:
92:12:b5:6d:e3:2d:a3:91:11:32:24:5d:20:7a:6e:
6a:f3:9f:7d:a5:9a:88:92:44:5e:28:4a:33:33:aa:
3d:e5:ac:72:a2:62:e9:c3:c3:df:ee:28:b0:31:b5:
7e:0e:17:16:bf:79:87:02:ff:e0:01:a8:fa:2b:9c:
82:fa:9f:45:50:93:f3:00:8f:95:eb:47:ea:a1:64:
67:41:3d:8b:b6:17:e3:b6:2e:ad:61:94:e2:e5:88:
33:ac:fb:77:d2:6c:88:74:f1:47:01:be:f5:f1:34:
a4:87:72:4c:1a:4d:eb:05:0c:24:e5:be:04:7a:54:
43:ab:d9:83:60:8c:40:2a:cc:f8:ba:e1:3a:2d:a2:
e7:3f:bf:d4:54:7f:ad:e1:f7:70:f0:d7:5a:25:95:
0d:a8:8e:8a:99:15:68:53:d0:49:9d:9e:2c:a8:59:
b8:7b:10:94:1e:b6:dc:4e:87:e8:a9:29:43:2e:c5:
a2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:1F:A5:2F:87:E4:5E:8E:9E:AC:CC:4F:17:06:B5:3A:0C:08:6D:B3
X509v3 Authority Key Identifier:
keyid:AE:47:18:E5:F3:2F:00:4A:03:12:FE:B8:69:AD:CB:BC:C4:EE:E5:16
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C185/202276BA9BFF11EA8436FC45C4F9AE02/rkcY5fMvAEoDEv64aa3LvMTu5RY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rkcY5fMvAEoDEv64aa3LvMTu5RY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C185/202276BA9BFF11EA8436FC45C4F9AE02/DF27F546D12D11EE9F451355C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.197.74.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:e6:39:c2:d4:a8:1c:bf:ac:e6:4a:08:a3:9c:1d:99:4e:29:
3b:27:5e:10:0f:af:d1:9a:35:1f:f1:d0:36:2a:e5:f3:d8:54:
c1:70:9b:1e:7e:1b:be:54:e0:ab:d6:e7:cf:63:c0:da:9c:4b:
74:bf:3d:c4:f8:00:ee:c0:05:5a:c1:84:2c:15:78:f4:e7:5b:
c5:4c:fc:66:8f:b5:45:5e:66:4e:eb:8b:ca:8f:58:31:30:94:
c8:89:58:a8:60:c5:35:f3:4a:ba:91:e9:d7:35:d1:52:83:7c:
42:8c:62:ab:a8:82:01:75:65:12:65:db:1b:6a:61:09:13:d3:
c8:4b:2a:e0:be:76:a8:fe:d8:e3:e7:03:99:b8:7b:cd:94:35:
b4:63:13:b9:74:04:2c:18:fd:3b:a3:74:1b:fe:af:51:46:c2:
ae:2b:82:02:41:93:86:c3:c4:5a:7c:ad:a7:9d:8d:c4:b4:4c:
ae:df:c2:87:ac:35:30:90:7e:ec:f4:ec:34:dc:16:8e:f4:bc:
e4:b0:f6:08:84:0f:03:cd:c0:f1:fd:f4:fd:aa:9d:f0:80:f3:
b9:2e:5d:fa:cb:eb:a7:5a:d5:96:ba:14:da:42:16:91:2c:a3:
dd:41:7e:24:29:36:76:c1:30:36:d3:21:77:83:d8:14:49:d3:
f1:f0:fb:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:47:48 2025 by rpki-client