Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6A8E1656427111EFB74D602BC4F9AE02.roa
File: 6A8E1656427111EFB74D602BC4F9AE02.roa (raw, json)
Hash identifier: YQcecpP7v5wHRSeW35bMig+nuxy8LsO6L2AeJe9eNFo=
Subject key identifier: 56:1B:36:FC:9B:6A:2A:22:C3:C0:CC:96:57:2B:EB:87:BC:8A:CC:F4
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 9488
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6A8E1656427111EFB74D602BC4F9AE02.roa
Signing time: Mon 15 Jul 2024 06:13:56 +0000
ROA not before: Mon 15 Jul 2024 06:13:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 138252
IP address blocks: 103.132.24.0/22 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38024 (0x9488)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Jul 15 06:13:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6694be24-6f25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:53:8b:c2:d8:da:45:00:3a:75:46:6c:d3:96:
cc:fc:65:7e:ea:dd:c4:4c:32:e9:d4:8f:1c:c3:32:
97:94:25:6f:bf:6b:0a:69:4a:7b:f0:d6:3e:bc:bd:
35:1b:09:f9:07:f7:35:a1:88:eb:ec:f6:03:8d:bb:
d3:68:35:83:ee:1d:63:5e:8f:82:f1:fc:9c:a6:37:
ff:d3:dd:af:3c:c6:b5:5d:eb:8e:a9:e2:1a:19:56:
3e:0d:a3:23:07:9d:e9:47:4b:2c:86:ef:11:67:ad:
c1:3c:73:90:30:d5:1b:3b:44:a9:91:4e:c4:17:c7:
c6:02:5f:8e:af:2a:39:20:2b:d5:0f:60:5e:94:d7:
87:a2:d5:8b:83:8d:59:bb:11:b9:5e:51:a4:fe:42:
76:e7:a2:a1:e1:be:a7:e7:25:41:a8:d1:c0:fe:b0:
76:88:2b:75:6c:21:51:50:70:29:b8:8a:37:58:8d:
7f:a4:2f:f5:1f:c1:f4:6a:00:44:50:cd:9c:d6:7d:
61:26:de:24:a3:f0:ce:af:ad:3a:c6:d9:2d:c8:dc:
f5:24:1c:32:90:39:10:78:e1:63:4a:61:4c:a7:ba:
2d:fb:c7:84:46:6f:07:2a:3d:b2:66:e2:1d:83:3b:
f1:85:54:da:b0:ff:44:19:38:63:0c:03:a0:5d:07:
67:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1B:36:FC:9B:6A:2A:22:C3:C0:CC:96:57:2B:EB:87:BC:8A:CC:F4
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6A8E1656427111EFB74D602BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.132.24.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:cd:2e:0c:52:5b:a7:df:32:da:01:ce:b6:ae:a7:44:86:b6:
8f:7f:61:0e:ac:5c:44:b8:7c:78:af:ca:d5:e1:18:f0:d2:e3:
08:32:04:82:37:7e:a1:30:9f:c0:2c:44:45:de:2b:5f:69:d1:
c9:26:fb:d6:63:68:af:ef:73:cd:77:d0:d9:35:3c:e3:a7:9d:
a3:af:63:f0:e1:5f:d0:f3:df:80:10:ac:41:b8:93:1e:fe:66:
88:02:da:b7:cf:1c:1c:bd:b7:3c:45:23:83:c3:8b:82:f1:45:
17:8e:a7:ea:22:b8:ed:0e:33:53:b7:ba:27:fb:7b:88:77:95:
73:8c:2c:02:66:06:9e:bc:f7:fb:b0:ab:77:d7:44:bc:59:ae:
1b:2b:dc:be:9b:16:1e:4b:80:ec:99:f1:e9:46:7d:a2:f1:8a:
40:0e:b1:07:42:a2:c9:df:bd:ee:18:f8:46:62:a1:6a:2b:73:
be:16:82:b7:36:f4:e8:c0:fa:cf:d3:31:83:32:ff:dc:77:be:
de:08:6d:64:44:9b:fb:3b:60:ee:32:cf:07:51:2e:8e:8e:f1:
1b:e8:80:5f:8d:cc:2a:00:9d:64:12:a8:ae:e8:79:1d:85:74:
f1:bb:33:e2:5c:fc:e9:4d:49:66:73:e7:c8:3f:ad:91:b5:69:
aa:18:1b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:06:43 2025 by rpki-client