Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/408FA3AE0B8711EF84722044C4F9AE02.roa
File: 408FA3AE0B8711EF84722044C4F9AE02.roa (raw, json)
Hash identifier: LES/bdvSave+/TMfmn0ou1lczOFNqkm3wkYstqJKJz8=
Subject key identifier: D7:5D:89:F5:A0:5C:DE:0B:19:EF:CB:CD:EE:99:58:63:82:6C:B4:7C
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 9094
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/408FA3AE0B8711EF84722044C4F9AE02.roa
Signing time: Thu 30 May 2024 16:28:33 +0000
ROA not before: Thu 30 May 2024 16:28:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 152702
IP address blocks: 103.124.208.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37012 (0x9094)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: May 30 16:28:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a930-70e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d7:59:7d:2e:da:0f:ef:c8:b5:9e:18:a6:fa:
90:95:d7:a5:a1:c6:87:20:ab:77:af:76:28:03:17:
a7:90:cb:01:ef:c6:57:5c:0c:fb:ae:dc:43:bd:fd:
f8:83:ed:52:b4:9b:df:59:92:60:01:1f:77:47:7d:
7f:8a:d8:42:87:aa:fb:56:6f:33:e4:ad:86:c8:aa:
6d:b1:ab:05:4c:a4:8a:37:bd:f8:8d:66:c5:c7:ae:
11:34:2c:18:3e:9e:b8:55:9a:41:7b:ff:53:81:cb:
de:30:75:53:8f:92:ad:c6:0d:5b:26:e5:01:f7:87:
82:01:52:4b:59:23:fc:81:c7:b6:d8:d7:66:b6:8e:
db:c0:dc:98:ea:be:dc:1e:b2:19:0e:b3:58:05:f6:
a9:5e:b1:44:44:d4:57:61:b6:de:89:73:88:d6:99:
1d:03:80:03:a8:7a:ac:cb:15:39:df:ac:e2:8d:a6:
94:a1:b2:76:6d:05:38:91:54:73:86:00:9a:b6:be:
2b:60:cf:61:22:f7:a3:2f:11:df:5a:20:40:e0:ea:
e4:bf:61:58:94:ab:b7:b6:a9:26:47:e3:f1:52:66:
03:9f:ce:8d:c3:0c:64:68:8f:40:94:96:2b:c3:05:
ec:2d:83:c9:bb:8c:58:00:78:8d:27:07:79:14:44:
8a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:5D:89:F5:A0:5C:DE:0B:19:EF:CB:CD:EE:99:58:63:82:6C:B4:7C
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/408FA3AE0B8711EF84722044C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.208.0/23
Signature Algorithm: sha256WithRSAEncryption
56:b4:0e:3f:45:a1:09:05:e0:af:0a:12:6c:ca:ca:85:bd:32:
0d:20:c4:b1:0f:7b:50:40:a3:1f:ea:2c:eb:51:7c:b5:ae:ee:
e6:08:7a:77:9f:37:d6:d9:8c:d1:c2:2a:27:e8:ed:c3:e2:05:
4a:a1:8b:62:da:18:1b:42:4f:be:12:ea:5d:15:57:d1:8b:fb:
15:af:c4:73:c8:8e:bf:ea:96:a0:59:25:50:ec:7a:78:88:36:
41:48:43:e5:d3:3e:65:91:5a:77:dc:92:76:66:c1:a6:39:8a:
5c:af:9e:62:1d:1d:cd:34:cd:80:ce:e4:9c:70:44:7f:ce:0c:
cf:1b:5a:2e:df:19:90:a1:c1:2f:fd:dc:14:f3:ab:e1:c5:c6:
f1:ea:cd:c9:75:46:b5:1b:a4:11:93:d8:ab:ad:05:80:b3:e5:
66:ad:d0:f8:e3:94:d0:f9:e9:ef:84:4e:18:bc:93:91:20:f4:
07:a9:59:f5:46:23:98:8c:af:42:b0:4a:46:f9:f5:a3:a6:88:
2c:45:9d:e7:f1:b9:ba:f5:8e:85:ed:aa:e8:a9:c4:70:ca:ee:
02:01:8f:0d:c2:63:30:ac:f4:72:26:e5:1b:76:da:da:8b:b7:
a5:86:4b:45:e2:2d:2e:95:f3:e5:89:68:6c:51:cd:dd:df:01:
0d:af:a3:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:20:59 2025 by rpki-client