Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DC60EB0EC53011EFA049767EC4F9AE02.roa
File: DC60EB0EC53011EFA049767EC4F9AE02.roa (raw, json)
Hash identifier: 6ZerQhVXiscxFXBgJmxvpSjkdICGpGA6aevLjQTiRpI=
Subject key identifier: DC:BA:18:6F:D9:6C:A4:9B:0C:55:C4:E1:50:50:BB:FE:8F:B3:68:94
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: A0A0
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DC60EB0EC53011EFA049767EC4F9AE02.roa
Signing time: Sat 28 Dec 2024 15:31:52 +0000
ROA not before: Sat 28 Dec 2024 15:31:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 133283
IP address blocks: 45.114.36.0/22 maxlen: 24
103.44.156.0/22 maxlen: 24
103.86.95.0/24 maxlen: 24
103.252.240.0/23 maxlen: 24
2401:4aa0::/36 maxlen: 36
2401:4aa0:1000::/36 maxlen: 36
2401:4aa0:2000::/36 maxlen: 36
2401:4aa0:3000::/36 maxlen: 36
2401:4aa0:4000::/36 maxlen: 36
2401:4aa0:5000::/36 maxlen: 36
2401:4aa0:6000::/36 maxlen: 36
2401:4aa0:7000::/36 maxlen: 36
2401:4aa0:8000::/36 maxlen: 36
2401:4aa0:9000::/36 maxlen: 36
2401:4aa0:a000::/36 maxlen: 36
2401:4aa0:b000::/36 maxlen: 36
2401:4aa0:c000::/36 maxlen: 36
2401:4aa0:d000::/36 maxlen: 36
2401:4aa0:e000::/36 maxlen: 36
2401:4aa0:f000::/36 maxlen: 36
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41120 (0xa0a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Dec 28 15:31:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=677019e8-6782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:67:e1:ac:1e:ce:e9:81:0a:b6:f4:e1:8b:af:
69:14:ad:37:8f:2a:13:88:f4:bb:85:c2:38:12:08:
a5:63:b0:d3:83:3f:e7:f2:1a:88:b7:cf:9a:08:b5:
69:67:5e:7c:48:f6:a9:51:f6:d5:60:4d:eb:64:0a:
5a:00:5c:28:8c:ce:8e:e7:44:47:e4:a3:e5:c3:8a:
52:1e:b0:c0:0c:07:ae:71:ff:5d:ce:18:34:f6:5b:
b2:0f:55:9a:4f:4f:aa:af:15:ec:03:37:ac:0c:34:
a2:8f:44:7f:5e:c0:a0:52:64:e7:97:4c:64:d9:4c:
bf:a2:59:b8:55:01:25:a9:c5:af:82:0e:77:79:9a:
a6:60:4f:0e:4c:80:aa:f1:34:a1:f6:39:02:2a:18:
19:9c:2f:dd:f1:19:7d:a0:62:e6:f4:be:85:39:44:
f7:08:8c:12:0e:59:27:fd:b1:db:6e:55:4e:5f:f2:
1b:b0:a9:45:11:99:d5:f1:3c:56:2f:5b:d0:f8:68:
7b:ab:af:53:48:26:6f:ef:7b:0a:ef:eb:0b:5f:c9:
78:e0:c4:b1:16:8b:53:f3:ff:d3:12:da:72:b7:1a:
df:8f:10:f9:a2:97:39:98:61:de:57:f5:75:93:6f:
46:22:bf:36:49:5d:5a:a6:45:ae:d5:c6:19:ce:28:
a9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:BA:18:6F:D9:6C:A4:9B:0C:55:C4:E1:50:50:BB:FE:8F:B3:68:94
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DC60EB0EC53011EFA049767EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.114.36.0/22
103.44.156.0/22
103.86.95.0/24
103.252.240.0/23
IPv6:
2401:4aa0::/32
Signature Algorithm: sha256WithRSAEncryption
11:08:40:ee:7e:f3:b7:bc:38:a7:45:47:cc:ee:22:d3:19:14:
ee:4b:b5:12:bb:d8:f7:0a:9a:e6:32:82:9c:52:56:7a:d2:2c:
14:71:19:9c:10:e6:08:db:6d:a3:36:7e:69:8b:23:af:a6:4a:
e8:60:16:94:83:23:f3:93:fc:5d:e6:2d:74:4e:b7:ea:8e:1e:
b3:39:52:b2:69:e6:9d:f9:b5:b9:51:94:18:83:ca:56:81:98:
9e:de:22:3e:1f:54:48:a9:e3:65:a1:d8:7c:e1:41:80:03:65:
42:88:30:31:55:f3:72:e5:a4:28:e4:99:df:88:48:2f:ea:f4:
aa:7d:c1:54:26:1a:f6:ce:a2:66:61:a9:38:25:29:c7:0c:81:
4b:dc:ff:98:e8:13:a3:e9:32:56:a7:12:82:7a:34:68:86:19:
d4:df:5b:95:22:76:0f:b6:7a:a9:d3:28:9a:27:07:2f:46:9e:
19:0b:37:98:6f:d0:5a:0a:4f:cf:3d:9f:54:37:75:60:cc:65:
8e:3c:f4:a0:b3:06:89:0a:fd:e5:00:74:b4:b8:c4:a5:c9:63:
96:b0:25:be:fa:57:98:06:4b:a1:36:8b:f9:33:88:ed:d6:03:
bc:3b:99:99:2b:bb:49:dc:88:cd:67:9f:52:f4:70:0a:86:bd:
2a:d4:9f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:52:03 2025 by rpki-client