Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/77792B8C0C2411EEBD6B7E83C4F9AE02.roa
File: 77792B8C0C2411EEBD6B7E83C4F9AE02.roa (raw, json)
Hash identifier: 6IY9b8CLgFEfP/8uM9x+UdHpFIQQ3U8RHH0Vni0OZdI=
Subject key identifier: 45:F1:06:71:10:F9:DD:2D:92:76:4F:50:CA:89:5C:E5:C4:8C:AB:55
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 9019
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/77792B8C0C2411EEBD6B7E83C4F9AE02.roa
Signing time: Thu 30 May 2024 16:26:33 +0000
ROA not before: Thu 30 May 2024 16:26:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 151119
IP address blocks: 103.215.115.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36889 (0x9019)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: May 30 16:26:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a8b8-51f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3f:7c:a1:44:ef:42:d9:ee:f0:cd:fa:07:b8:
17:ad:30:48:c9:cc:a6:05:f6:72:7f:50:aa:98:a6:
09:87:58:16:77:56:6a:36:33:68:b6:d3:91:ee:4d:
a3:f2:72:5a:ab:20:40:52:6f:6a:d2:ea:00:71:cb:
53:f2:0b:e6:7d:f5:a2:5d:da:2c:88:07:f3:7f:4d:
22:b1:62:5d:6a:f1:78:f9:95:43:12:c1:31:54:c8:
ff:17:a7:7e:43:29:31:85:32:b1:3c:56:6f:35:99:
fd:3b:06:d7:ab:5a:0f:75:88:bd:12:e7:e8:b6:49:
1a:48:17:e3:3c:93:ed:32:0e:a5:ce:50:4c:14:5f:
8f:f9:d9:18:72:db:87:df:00:fa:06:1a:63:c3:94:
3a:d8:16:7c:e1:0a:32:f4:85:83:03:23:b7:cf:c3:
5d:32:51:aa:dd:99:09:46:96:43:ff:95:6a:c8:f6:
d7:5f:1c:0a:d5:2e:60:d2:6e:e0:f6:22:97:e4:40:
a0:00:a6:15:8f:ef:0e:59:88:1d:e1:5e:ae:8b:b4:
25:a2:a5:9f:c4:e0:5e:c4:f5:1f:b0:1d:82:0d:ca:
35:6b:63:dd:02:e6:85:5d:88:e2:c8:34:bc:76:91:
aa:28:74:29:de:31:19:59:0a:a6:fc:d2:88:97:43:
81:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:F1:06:71:10:F9:DD:2D:92:76:4F:50:CA:89:5C:E5:C4:8C:AB:55
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/77792B8C0C2411EEBD6B7E83C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.215.115.0/24
Signature Algorithm: sha256WithRSAEncryption
02:5d:04:c1:3e:1b:20:34:a0:02:20:c9:49:89:60:d4:fa:c1:
f0:47:4f:c0:9e:af:b4:11:82:f7:b1:68:07:fd:c9:95:5d:85:
f5:b5:1f:f0:61:b8:8a:39:1d:fe:9a:13:34:7b:cb:c3:14:e1:
e9:e2:2d:37:3d:a7:6f:02:8d:44:c4:cc:a5:79:89:73:d7:21:
b0:5b:24:87:95:5c:3c:67:f2:c4:2f:c6:a2:1b:7e:ae:15:c3:
bf:71:a9:0c:42:0e:9a:fa:eb:f0:79:bd:94:1d:15:b2:b3:59:
1b:37:71:1f:b6:9f:da:a4:a1:63:dc:a0:75:9e:45:28:23:4a:
d1:31:29:06:8c:34:0e:f8:d7:b0:ea:c6:14:4c:c4:e2:05:96:
37:5f:74:c4:88:97:50:73:8a:f9:88:fa:f8:05:fe:39:b1:bd:
3a:63:ea:26:af:1f:ee:1f:9e:fd:e9:81:41:1d:68:ca:db:b1:
8c:19:f7:95:bb:d7:3b:00:69:a8:50:41:12:6b:65:03:44:99:
09:53:c6:7e:c8:04:76:64:2b:fb:d1:78:68:4d:60:03:0f:ce:
86:7c:63:e4:5a:4e:b1:19:77:f7:c7:90:30:79:31:d9:76:a9:
70:9a:b1:14:8e:ce:f2:15:e9:26:f3:92:a3:ab:2d:00:11:ee:
37:b4:f7:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:19:38 2025 by rpki-client