Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/661B46FE0A0111F09E09CD80C4F9AE02.roa
File: 661B46FE0A0111F09E09CD80C4F9AE02.roa (raw, json)
Hash identifier: Tvc7c0rjN0tn4HpWjmz5I9c0yf7SGYEIAizR6SvZOvk=
Subject key identifier: 92:17:2A:4B:40:D3:EF:6E:98:17:1F:52:08:1B:FF:D3:06:59:7C:41
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: AC80
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/661B46FE0A0111F09E09CD80C4F9AE02.roa
Signing time: Wed 26 Mar 2025 05:33:42 +0000
ROA not before: Wed 26 Mar 2025 05:33:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 138520
IP address blocks: 103.84.80.0/24 maxlen: 24
103.133.64.0/24 maxlen: 24
103.133.65.0/24 maxlen: 24
103.133.67.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44160 (0xac80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Mar 26 05:33:42 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67e391b5-3d02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:82:90:8f:54:ee:60:23:b8:9a:9a:f4:b9:58:
99:61:32:a4:14:88:26:e1:fa:dd:34:73:96:21:91:
03:6c:07:69:b7:b3:dc:b8:67:13:b0:4c:7a:ea:e6:
46:9e:55:a5:23:a9:41:09:51:cc:0c:b0:1c:c2:aa:
e3:89:48:73:f2:f9:1d:d5:46:57:58:37:fd:32:10:
74:5f:b1:ef:d2:bf:ee:eb:76:d8:7f:71:07:2f:bc:
d3:60:43:9b:0d:1f:cd:01:0b:ad:3e:b7:17:e9:d0:
36:6f:2c:5a:ac:2c:61:ad:a3:8a:64:68:5a:cc:42:
93:1f:8d:6c:6a:96:ec:91:5d:14:4a:c5:87:80:a4:
ad:ef:88:fd:20:28:6f:07:b1:df:fb:a8:2b:17:bd:
d9:f7:f8:ad:29:dd:fc:6f:5c:1e:cd:c9:28:18:e9:
e5:5a:63:36:83:a4:83:a4:44:87:d0:31:a3:e0:43:
6c:d0:e8:6a:75:9c:09:53:c7:c5:89:57:91:52:5c:
4c:00:c4:e1:a8:32:16:70:4a:3d:4f:f0:51:a8:7c:
e6:a1:db:c4:83:bf:ff:41:5e:3f:69:fd:f8:e4:f3:
f3:18:a3:1b:d6:51:d5:24:64:ad:66:ee:87:b1:4a:
45:e5:09:37:82:5e:ca:82:79:e0:1a:ea:24:dd:c2:
c4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:17:2A:4B:40:D3:EF:6E:98:17:1F:52:08:1B:FF:D3:06:59:7C:41
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/661B46FE0A0111F09E09CD80C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.84.80.0/24
103.133.64.0/23
103.133.67.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:00:ce:3d:57:01:89:10:69:c2:f0:62:fa:80:76:c0:5f:ad:
dc:61:b4:28:d8:15:e3:88:71:e4:bc:00:1d:31:72:9a:ce:e6:
63:dd:3a:c0:59:fa:18:18:6e:8e:63:29:53:56:6e:9d:38:16:
1e:7a:d6:12:f2:93:d5:fb:00:b2:32:f8:41:07:f9:42:65:6e:
a9:b4:36:2e:2e:9a:e1:15:ff:5f:f5:45:86:23:b3:74:5f:e2:
68:c6:87:54:92:25:cf:61:1f:95:01:37:a1:77:6b:c8:d8:f1:
4a:0d:1d:4d:f7:c2:d0:76:81:c0:fc:98:1d:c6:3d:89:f5:a8:
c2:fb:47:31:bd:88:a0:76:61:b6:ed:9a:13:1e:29:86:99:44:
a3:9b:42:a5:5f:b2:c7:2e:17:75:42:f5:30:52:df:5a:c0:b5:
ae:29:98:4f:2a:e8:49:1e:d2:90:06:78:59:ae:0e:ea:ff:68:
12:4b:a7:0d:26:f0:92:c3:c6:4b:59:61:1a:68:76:91:ab:07:
ac:a9:38:09:c0:78:3a:cb:da:a2:53:3b:e5:87:29:db:5f:cb:
a4:10:25:7f:53:fa:72:a5:5d:78:42:41:c0:34:ef:26:9f:48:
f9:c0:71:4d:08:5d:28:24:b5:df:7d:74:78:03:3a:70:6b:a3:
a4:08:a9:1f
-----BEGIN CERTIFICATE-----
MIIFfjCCBGagAwIBAgIDAKyAMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4
M0UzQUJDODIzMB4XDTI1MDMyNjA1MzM0MloXDTI1MDcwMTAwMDAwMFowGDEWMBQG
A1UEAxMNNjdlMzkxYjUtM2QwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAK+CkI9U7mAjuJqa9LlYmWEypBSIJuH63TRzliGRA2wHabez3LhnE7BMeurm
Rp5VpSOpQQlRzAywHMKq44lIc/L5HdVGV1g3/TIQdF+x79K/7ut22H9xBy+802BD
mw0fzQELrT63F+nQNm8sWqwsYa2jimRoWsxCkx+NbGqW7JFdFErFh4Ckre+I/SAo
bwex3/uoKxe92ff4rSnd/G9cHs3JKBjp5VpjNoOkg6REh9Axo+BDbNDoanWcCVPH
xYlXkVJcTADE4agyFnBKPU/wUah85qHbxIO//0FeP2n9+OTz8xijG9ZR1SRkrWbu
h7FKReUJN4JeyoJ54BrqJN3CxBECAwEAAaOCAqEwggKdMB0GA1UdDgQWBBSSFypL
QNPvbpgXH1IIG//TBll8QTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI
IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3
MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y
eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3
MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB
/wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu
aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF
BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzY2MUI0NkZF
MEEwMTExRjA5RTA5Q0Q4MEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6
Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCsGCCsGAQUFBwEHAQH/
BBwwGjAYBAIAATASAwQAZ1RQAwQBZ4VAAwQAZ4VDMA0GCSqGSIb3DQEBCwUAA4IB
AQCuAM49VwGJEGnC8GL6gHbAX63cYbQo2BXjiHHkvAAdMXKazuZj3TrAWfoYGG6O
YylTVm6dOBYeetYS8pPV+wCyMvhBB/lCZW6ptDYuLprhFf9f9UWGI7N0X+JoxodU
kiXPYR+VATehd2vI2PFKDR1N98LQdoHA/Jgdxj2J9ajC+0cxvYigdmG27ZoTHimG
mUSjm0KlX7LHLhd1QvUwUt9awLWuKZhPKuhJHtKQBnhZrg7q/2gSS6cNJvCSw8ZL
WWEaaHaRqwesqTgJwHg6y9qiUzvlhynbX8ukECV/U/pypV14QkHANO8mn0j5wHFN
CF0oJLXffXR4Azpwa6OkCKkf
-----END CERTIFICATE-----
Generated at Sat Apr 5 02:00:29 2025 by rpki-client