Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7764291AEDA211EAA22D521FC4F9AE02.roa
File: 7764291AEDA211EAA22D521FC4F9AE02.roa (raw, json)
Hash identifier: C3RZx/bjtpQY3h+qGULoq1C2J31KWRWfai49CJ6T2fo=
Subject key identifier: FB:C9:2D:17:65:39:9B:DD:45:CC:08:C0:80:89:A7:D5:22:95:09:1B
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 8860
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7764291AEDA211EAA22D521FC4F9AE02.roa
Signing time: Thu 30 May 2024 15:54:17 +0000
ROA not before: Thu 30 May 2024 15:54:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 132515
IP address blocks: 103.120.234.0/23 maxlen: 24
2001:df4:6180::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34912 (0x8860)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: May 30 15:54:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a129-3397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:18:d2:07:69:25:7f:86:85:f5:a8:95:d2:e4:
d5:75:4a:7a:ea:d7:30:60:df:c7:c6:01:f7:8d:81:
d7:1a:5a:f6:b8:b9:d5:a8:db:b4:b5:e6:79:97:fd:
5f:f9:60:69:ca:1b:a7:cd:21:4c:05:89:bc:4a:5f:
0b:77:7b:d6:4a:0d:ee:04:76:e9:a9:42:71:67:b2:
30:98:25:12:ba:2f:43:f6:f0:8c:30:90:a3:33:e3:
2c:ac:2b:35:7c:be:41:4e:5e:29:ab:b7:e5:5d:fd:
29:a9:84:04:40:a3:bb:4a:d7:bf:49:f7:b0:49:98:
d1:d0:a3:b7:18:f2:23:2d:bc:36:ab:13:c6:21:2a:
c5:6b:61:ca:cf:1c:2f:16:02:38:9b:91:35:ad:0a:
35:e0:69:7c:92:be:64:75:f6:67:b3:3f:ea:c7:41:
67:21:9d:c2:3f:59:89:ff:46:d0:75:7e:21:6a:8b:
5e:8d:05:4a:62:dc:a8:cf:ee:23:79:c2:49:75:0f:
7a:0c:0a:8a:53:bc:2a:58:b7:72:2c:54:1d:fe:fa:
48:cc:f8:8f:d0:e8:83:d4:f8:c5:e2:23:a6:04:16:
f5:42:b8:4b:40:ec:e7:49:dc:cb:0f:b2:75:18:34:
92:7a:a2:e3:40:d2:d9:74:75:bf:36:50:0b:f6:8a:
a8:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:C9:2D:17:65:39:9B:DD:45:CC:08:C0:80:89:A7:D5:22:95:09:1B
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7764291AEDA211EAA22D521FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.120.234.0/23
IPv6:
2001:df4:6180::/48
Signature Algorithm: sha256WithRSAEncryption
af:99:d1:f0:3c:14:71:5e:72:60:87:92:0f:c7:91:6f:3a:1c:
3f:88:30:6a:6e:94:e3:2a:cc:18:d4:e8:a8:84:e3:96:41:72:
e0:d2:0b:51:38:88:5e:0d:f6:47:27:58:32:7f:4a:5f:3b:e2:
6d:f4:d6:93:53:72:50:df:8e:f3:11:0d:97:88:02:49:55:de:
71:81:e8:65:ba:f3:b5:79:d6:b6:69:bc:c1:e1:a6:cd:94:0f:
1c:9e:f2:54:3b:80:ff:79:08:ad:a1:52:06:08:14:2a:9b:02:
4d:c1:52:02:88:2f:ef:cd:84:51:0e:c4:6c:d9:14:4d:ff:a9:
95:e8:19:12:b6:00:5b:43:58:f4:6c:5f:27:45:b1:16:ad:55:
f7:54:04:ba:c0:35:ed:f2:4e:40:66:55:ee:4e:e2:1c:93:a3:
6e:d7:a2:43:f4:3d:12:0f:29:fc:43:0b:9e:a7:59:b0:b3:e6:
98:a7:99:ec:bc:bb:87:0c:6f:d3:74:fd:99:9d:3f:fe:90:b2:
1e:ef:d6:81:77:40:e1:a4:46:41:a8:18:d5:9b:51:3d:85:7f:
43:1a:7a:46:9b:04:f7:f9:13:69:8a:f2:e0:53:7d:50:1e:a8:
4f:88:cb:8d:9a:f6:31:58:d9:1d:12:3f:38:cf:b5:41:92:52:
b4:ea:9b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:00:32 2025 by rpki-client