Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/24C01C0CFE6C11EFB3BD393FC4F9AE02.roa
File: 24C01C0CFE6C11EFB3BD393FC4F9AE02.roa (raw, json)
Hash identifier: qV4CskwAyNc88pytkKNV9yR3G+qP3dXUxZBike8zdDc=
Subject key identifier: BB:55:EC:EF:E6:8E:F3:22:D8:31:9C:7E:B7:B7:6D:A5:8B:D2:4E:D2
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: AA42
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/24C01C0CFE6C11EFB3BD393FC4F9AE02.roa
Signing time: Tue 11 Mar 2025 11:29:50 +0000
ROA not before: Tue 11 Mar 2025 11:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 43.229.200.0/22 maxlen: 24
43.231.116.0/22 maxlen: 24
43.239.112.0/22 maxlen: 24
43.239.152.0/22 maxlen: 24
45.113.248.0/22 maxlen: 24
45.114.156.0/22 maxlen: 24
45.251.32.0/22 maxlen: 24
103.14.196.0/22 maxlen: 24
103.16.140.0/22 maxlen: 24
103.26.169.0/24 maxlen: 24
103.27.168.0/24 maxlen: 24
103.27.170.0/23 maxlen: 23
103.41.40.0/22 maxlen: 24
103.47.152.0/24 maxlen: 24
103.51.92.0/22 maxlen: 24
103.52.48.0/22 maxlen: 24
103.54.96.0/22 maxlen: 24
103.55.84.0/22 maxlen: 24
103.82.144.0/22 maxlen: 24
103.86.20.0/22 maxlen: 24
103.88.124.0/22 maxlen: 24
103.98.79.0/24 maxlen: 24
103.99.48.0/23 maxlen: 24
103.108.76.0/22 maxlen: 24
103.111.128.0/22 maxlen: 24
103.118.8.0/22 maxlen: 24
103.127.188.0/22 maxlen: 24
103.132.203.0/24 maxlen: 24
103.133.116.0/24 maxlen: 24
103.137.48.0/22 maxlen: 24
103.139.88.0/23 maxlen: 24
103.142.64.0/23 maxlen: 24
103.143.180.0/23 maxlen: 24
103.143.215.0/24 maxlen: 24
103.144.112.0/23 maxlen: 24
103.154.26.0/24 maxlen: 24
103.155.170.0/23 maxlen: 24
103.155.194.0/23 maxlen: 24
103.157.50.0/23 maxlen: 24
103.157.69.0/24 maxlen: 24
103.158.111.0/24 maxlen: 24
103.158.180.0/24 maxlen: 24
103.158.216.0/23 maxlen: 24
103.159.137.0/24 maxlen: 24
103.162.80.0/23 maxlen: 24
103.166.220.0/23 maxlen: 24
103.169.58.0/23 maxlen: 24
103.171.8.0/23 maxlen: 24
103.171.54.0/23 maxlen: 24
103.171.60.0/23 maxlen: 24
103.171.208.0/23 maxlen: 24
103.171.236.0/23 maxlen: 24
103.172.56.0/23 maxlen: 24
103.172.90.0/23 maxlen: 24
103.173.14.0/23 maxlen: 24
103.173.41.0/24 maxlen: 24
103.174.26.0/23 maxlen: 24
103.174.42.0/23 maxlen: 24
103.175.12.0/23 maxlen: 24
103.175.58.0/23 maxlen: 24
103.175.106.0/23 maxlen: 24
103.176.142.0/24 maxlen: 24
103.180.216.0/23 maxlen: 24
103.190.12.0/23 maxlen: 24
103.191.86.0/23 maxlen: 24
103.192.72.0/22 maxlen: 24
103.199.92.0/22 maxlen: 24
103.199.144.0/22 maxlen: 24
103.200.48.0/22 maxlen: 24
103.206.64.0/22 maxlen: 24
103.212.132.0/22 maxlen: 24
103.219.204.0/22 maxlen: 24
103.224.50.0/23 maxlen: 24
103.226.224.0/22 maxlen: 24
103.228.172.0/24 maxlen: 24
103.228.173.0/24 maxlen: 24
103.228.174.0/24 maxlen: 24
103.228.175.0/24 maxlen: 24
103.228.184.0/22 maxlen: 24
103.236.112.0/22 maxlen: 24
103.245.170.0/23 maxlen: 24
103.249.88.0/22 maxlen: 24
103.254.96.0/22 maxlen: 24
103.254.200.0/22 maxlen: 24
137.59.204.0/22 maxlen: 24
139.5.96.0/22 maxlen: 24
203.191.56.0/22 maxlen: 24
2001:df0:1480::/48 maxlen: 48
2400:d180:66::/48 maxlen: 48
2400:d180:67::/48 maxlen: 48
2400:d180:68::/48 maxlen: 48
2400:d180:69::/48 maxlen: 48
2400:d180:70::/48 maxlen: 48
2400:d180:71::/48 maxlen: 48
2406:68c0::/32 maxlen: 40
2407:1340::/32 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43586 (0xaa42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Mar 11 11:29:50 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67d01eae-c164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:99:19:00:62:8c:10:06:5b:6e:06:e0:77:53:
c6:3a:8c:fb:c8:25:6a:38:21:a3:4e:d0:b4:e2:41:
52:0d:40:ab:8e:1a:09:9e:d3:c7:82:61:77:cb:85:
c8:9a:23:c3:bc:50:97:d6:31:8d:d8:55:7e:93:e6:
5c:00:50:05:bd:00:c2:f8:f3:84:da:1b:9f:56:4c:
21:7d:70:d0:17:7c:33:eb:80:b7:6f:14:06:3a:7c:
3e:9e:b0:36:7c:06:33:4e:a8:18:88:45:fd:ca:63:
20:4a:91:e2:5e:b6:c4:0a:0c:62:ef:a3:c1:dc:77:
18:e5:8e:ab:36:8b:fb:0d:dc:e2:f6:6d:c0:55:e7:
bb:5e:95:17:6e:2e:10:89:e8:5b:cc:c4:bf:59:91:
56:b9:8a:a2:e0:c2:ff:63:4c:ae:f4:f1:a4:3e:ab:
fb:34:5a:ca:23:fc:4f:f6:77:ce:a9:13:36:10:53:
b1:96:44:bf:70:52:89:3f:2e:0e:75:ed:5a:04:f9:
ca:50:bc:a4:76:90:81:1d:50:ea:5d:7d:b6:e3:12:
bb:ba:58:0f:99:36:23:77:6c:5a:83:13:37:84:33:
d5:2b:d2:a1:98:03:56:9d:c8:08:ff:5f:1c:1d:81:
a4:f9:8e:f9:50:36:6b:11:94:b6:fe:95:45:7c:d6:
fe:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:55:EC:EF:E6:8E:F3:22:D8:31:9C:7E:B7:B7:6D:A5:8B:D2:4E:D2
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/24C01C0CFE6C11EFB3BD393FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.229.200.0/22
43.231.116.0/22
43.239.112.0/22
43.239.152.0/22
45.113.248.0/22
45.114.156.0/22
45.251.32.0/22
103.14.196.0/22
103.16.140.0/22
103.26.169.0/24
103.27.168.0/24
103.27.170.0/23
103.41.40.0/22
103.47.152.0/24
103.51.92.0/22
103.52.48.0/22
103.54.96.0/22
103.55.84.0/22
103.82.144.0/22
103.86.20.0/22
103.88.124.0/22
103.98.79.0/24
103.99.48.0/23
103.108.76.0/22
103.111.128.0/22
103.118.8.0/22
103.127.188.0/22
103.132.203.0/24
103.133.116.0/24
103.137.48.0/22
103.139.88.0/23
103.142.64.0/23
103.143.180.0/23
103.143.215.0/24
103.144.112.0/23
103.154.26.0/24
103.155.170.0/23
103.155.194.0/23
103.157.50.0/23
103.157.69.0/24
103.158.111.0/24
103.158.180.0/24
103.158.216.0/23
103.159.137.0/24
103.162.80.0/23
103.166.220.0/23
103.169.58.0/23
103.171.8.0/23
103.171.54.0/23
103.171.60.0/23
103.171.208.0/23
103.171.236.0/23
103.172.56.0/23
103.172.90.0/23
103.173.14.0/23
103.173.41.0/24
103.174.26.0/23
103.174.42.0/23
103.175.12.0/23
103.175.58.0/23
103.175.106.0/23
103.176.142.0/24
103.180.216.0/23
103.190.12.0/23
103.191.86.0/23
103.192.72.0/22
103.199.92.0/22
103.199.144.0/22
103.200.48.0/22
103.206.64.0/22
103.212.132.0/22
103.219.204.0/22
103.224.50.0/23
103.226.224.0/22
103.228.172.0/22
103.228.184.0/22
103.236.112.0/22
103.245.170.0/23
103.249.88.0/22
103.254.96.0/22
103.254.200.0/22
137.59.204.0/22
139.5.96.0/22
203.191.56.0/22
IPv6:
2001:df0:1480::/48
2400:d180:66::-2400:d180:69:ffff:ffff:ffff:ffff:ffff
2400:d180:70::/47
2406:68c0::/32
2407:1340::/32
Signature Algorithm: sha256WithRSAEncryption
b3:9b:77:c8:72:35:38:d0:d0:cd:1f:7e:9d:16:53:9b:19:55:
89:ac:35:ef:18:e4:92:a6:11:13:de:4b:c8:14:61:fa:e6:e3:
46:84:71:6b:b5:67:b6:e8:2c:42:dd:8a:db:15:94:51:a7:1e:
d3:e6:05:16:51:93:b9:37:5a:ae:8b:5f:3c:26:d3:1c:8c:d8:
da:0a:d6:18:7d:85:c9:3a:78:a2:54:c5:a3:c4:10:c3:40:97:
10:f1:2f:47:10:64:f4:c6:ef:52:bc:91:31:f9:8c:16:1e:53:
2f:e6:e6:c4:fb:06:b1:53:2a:00:45:eb:b9:04:0f:88:4b:1b:
e2:32:2a:1c:93:f4:36:fc:5a:96:f7:bf:00:47:aa:3f:6e:73:
ba:55:a4:35:cd:46:58:0f:73:c7:d5:fd:d6:25:23:11:92:45:
ce:f9:4c:37:69:fe:92:94:fa:e2:98:fc:18:71:80:91:a9:ed:
ec:3b:84:a0:4f:93:9d:50:b1:1b:2d:93:7c:6c:f8:47:0a:a1:
55:b3:f3:15:07:be:40:b0:4d:64:25:87:73:75:da:7c:b8:92:
1d:8a:b8:4d:09:25:f4:56:6d:1a:c5:c4:55:ee:2f:07:69:30:
47:82:82:97:8c:26:5c:86:a2:d7:e3:83:67:e5:cd:68:32:32:
6c:a8:c2:c8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:06:38 2025 by rpki-client