Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/5997C4D0719A11EEBBA64415C4F9AE02.roa
File: 5997C4D0719A11EEBBA64415C4F9AE02.roa (raw, json)
Hash identifier: Hp/eOFNkR2xgWHtgC9ufiwjj3RXaiKIv6Ds84jBh4w8=
Subject key identifier: 9D:11:94:A6:7E:9F:DE:90:F7:04:DD:4F:3A:48:74:98:2C:19:79:79
Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24
Certificate serial: 067F
Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/5997C4D0719A11EEBBA64415C4F9AE02.roa
Signing time: Mon 20 Jan 2025 17:37:26 +0000
ROA not before: Mon 20 Jan 2025 17:37:26 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 6134
IP address blocks: 103.244.88.0/22 maxlen: 24
116.206.176.0/22 maxlen: 24
2001:df5:8300::/48 maxlen: 48
2401:e9e0::/36 maxlen: 36
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1663 (0x67f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918BB4D
Validity
Not Before: Jan 20 17:37:26 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=678e89d6-32fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:54:d2:d7:96:75:55:09:b6:60:67:4f:cb:65:
20:54:56:c1:74:08:98:f0:93:e8:ee:e9:e7:6d:5b:
a2:31:e2:2e:9f:99:87:12:0b:02:dd:f9:1a:c5:b3:
f5:a2:a8:92:f7:e5:95:3e:5e:49:a2:d4:21:0b:a6:
7b:56:32:1b:6f:c6:92:a5:77:c6:22:ba:93:ea:0e:
18:cd:d7:07:61:15:5e:e9:fc:3b:ab:57:15:f0:d9:
08:80:a8:f4:19:32:ce:31:da:b8:0c:c7:5f:2e:85:
74:d0:5e:19:a3:9a:0a:44:44:a6:b3:77:ef:43:7b:
d5:1d:3c:65:64:e1:5f:51:aa:43:a3:76:be:ff:fe:
aa:a7:08:49:d1:1b:a9:8b:c2:ed:85:76:d6:83:8b:
00:17:75:fd:5b:5d:2b:7f:4f:88:b8:d1:e8:ea:07:
e0:ab:2e:3e:f4:5d:0a:c3:c4:37:60:48:5e:d4:97:
c0:1a:70:fa:da:17:e8:60:16:84:e6:08:e2:22:c6:
49:b7:f9:66:2f:ab:48:80:dd:00:6e:83:8e:a0:86:
6c:38:bc:af:25:fb:51:60:ee:9b:a1:11:bd:18:c3:
6d:2b:2f:f4:4b:04:b2:6a:7a:1b:11:af:bb:e4:6c:
46:a6:8b:c5:22:7c:c5:4e:fe:50:53:82:f0:04:8a:
52:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:11:94:A6:7E:9F:DE:90:F7:04:DD:4F:3A:48:74:98:2C:19:79:79
X509v3 Authority Key Identifier:
keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/5997C4D0719A11EEBBA64415C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.244.88.0/22
116.206.176.0/22
IPv6:
2001:df5:8300::/48
2401:e9e0::/36
Signature Algorithm: sha256WithRSAEncryption
12:64:0a:36:ed:10:5f:01:09:d8:16:d1:42:fe:14:bb:bf:da:
5c:eb:b1:25:80:cb:5a:e7:52:8a:5f:61:40:e3:b2:a4:a2:1a:
b2:fa:23:ee:c8:97:94:23:98:a0:17:b2:96:82:bd:0b:ae:89:
fb:73:33:e5:b9:c7:b1:a9:9b:ed:94:20:38:4d:fa:4c:11:87:
c5:da:57:f8:c2:05:be:0e:fc:bf:46:8e:2e:d1:49:d6:e0:11:
94:24:6a:af:29:44:1b:32:4a:9d:f7:56:6f:80:b6:d8:7d:57:
b3:bd:13:fb:40:96:eb:fb:e8:ee:2b:a8:0a:0f:50:36:da:38:
de:b3:ab:87:0c:0e:90:ad:27:1a:1f:ce:ad:40:18:b5:64:0b:
8f:cc:53:ea:c9:6f:c1:a9:dc:20:c6:3c:cf:76:4b:30:a2:06:
d9:be:f6:d2:88:e7:6d:20:15:17:94:6f:34:35:74:e2:dc:ff:
b9:84:24:b1:6f:4b:fa:c7:fb:06:4f:56:c4:f6:fa:4c:e6:f7:
84:05:eb:bb:63:70:37:3f:83:63:8f:76:da:b3:17:a0:b7:80:
f6:0d:3d:3c:92:4e:42:e9:fb:b6:36:a3:a0:96:1a:6e:ea:c8:
8c:74:e5:e8:8e:ee:0c:f4:67:50:ba:b1:c7:49:bf:16:e1:d3:
0d:f8:4e:1c
-----BEGIN CERTIFICATE-----
MIIFkDCCBHigAwIBAgICBn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0
QzkxNTRGMjQwHhcNMjUwMTIwMTczNzI2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzhlODlkNi0zMmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAz1TS15Z1VQm2YGdPy2UgVFbBdAiY8JPo7unnbVuiMeIun5mHEgsC3fkaxbP1
oqiS9+WVPl5JotQhC6Z7VjIbb8aSpXfGIrqT6g4YzdcHYRVe6fw7q1cV8NkIgKj0
GTLOMdq4DMdfLoV00F4Zo5oKRESms3fvQ3vVHTxlZOFfUapDo3a+//6qpwhJ0Rup
i8LthXbWg4sAF3X9W10rf0+IuNHo6gfgqy4+9F0Kw8Q3YEhe1JfAGnD62hfoYBaE
5gjiIsZJt/lmL6tIgN0AboOOoIZsOLyvJftRYO6boRG9GMNtKy/0SwSyanobEa+7
5GxGpovFInzFTv5QU4LwBIpSkwIDAQABo4ICtDCCArAwHQYDVR0OBBYEFJ0RlKZ+
n96Q9wTdTzpIdJgsGXl5MB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1
MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU
eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEJCNEQvQ0E1NjNCRTg2NTIyMTFFQjgwRjZFOTRCQzRGOUFFMDIvNTk5N0M0RDA3
MTlBMTFFRUJCQTY0NDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPgYIKwYBBQUHAQcBAf8E
LzAtMBIEAgABMAwDBAJn9FgDBAJ0zrAwFwQCAAIwEQMHACABDfWDAAMGBCQB6eAA
MA0GCSqGSIb3DQEBCwUAA4IBAQASZAo27RBfAQnYFtFC/hS7v9pc67ElgMta51KK
X2FA47Kkohqy+iPuyJeUI5igF7KWgr0Lron7czPlucexqZvtlCA4TfpMEYfF2lf4
wgW+Dvy/Ro4u0UnW4BGUJGqvKUQbMkqd91ZvgLbYfVezvRP7QJbr++juK6gKD1A2
2jjes6uHDA6QrScaH86tQBi1ZAuPzFPqyW/BqdwgxjzPdkswogbZvvbSiOdtIBUX
lG80NXTi3P+5hCSxb0v6x/sGT1bE9vpM5veEBeu7Y3A3P4Njj3basxegt4D2DT08
kk5C6fu2NqOglhpu6siMdOXoju4M9GdQurHHSb8W4dMN+E4c
-----END CERTIFICATE-----
Generated at Sat Apr 5 01:58:05 2025 by rpki-client