Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F46D3E561E8611EF8CA03D1CC4F9AE02.roa
File: F46D3E561E8611EF8CA03D1CC4F9AE02.roa (raw, json)
Hash identifier: C7hpOOOBrOHHrE+3BSkQkn8IMe0PZaO/qXDg1K8pBm0=
Subject key identifier: 3D:60:9E:58:15:C5:2E:25:C9:DD:92:B9:4E:23:50:27:1B:43:B7:B3
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 90D8
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F46D3E561E8611EF8CA03D1CC4F9AE02.roa
Signing time: Thu 30 May 2024 16:29:39 +0000
ROA not before: Thu 30 May 2024 16:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 103.114.65.0/24 maxlen: 24
103.114.66.0/24 maxlen: 24
103.114.67.0/24 maxlen: 24
103.179.94.0/23 maxlen: 24
103.179.96.0/23 maxlen: 24
103.180.214.0/23 maxlen: 24
103.180.238.0/23 maxlen: 24
103.181.152.0/23 maxlen: 24
103.212.132.0/22 maxlen: 22
103.212.132.0/24 maxlen: 24
103.212.133.0/24 maxlen: 24
103.212.134.0/24 maxlen: 24
103.212.135.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37080 (0x90d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: May 30 16:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a973-8906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d5:7c:d9:4d:9d:e2:bc:1a:16:cf:eb:8a:35:
fb:53:19:dd:92:db:27:e5:7e:23:ce:5c:d8:21:f1:
1d:46:a3:1d:db:de:15:b6:70:db:5b:4e:dd:44:e4:
2d:f0:86:99:6e:6a:fa:ae:ad:d6:d3:39:6c:e8:46:
29:fd:39:18:62:f2:77:63:da:40:23:79:ad:ad:5c:
32:4c:75:4f:92:b5:a8:6a:28:7a:5e:f1:68:9a:d5:
e6:64:7c:a9:03:2f:10:a4:48:93:61:f1:a8:7a:a3:
9c:f8:8a:27:d4:82:00:f9:1c:41:85:f4:51:33:31:
5d:a8:da:5a:79:4a:27:9a:a3:73:cf:e8:24:47:76:
2e:fe:91:de:77:21:e0:c1:60:bb:a6:81:4d:4a:57:
4c:dc:d0:98:3b:b2:5f:f2:92:df:d9:80:11:41:00:
ec:b9:44:79:3f:70:59:c2:08:66:76:4c:f8:9f:a8:
2c:83:fd:8f:20:a3:cd:77:e7:4b:1f:0c:66:6c:72:
56:fd:01:71:6f:dd:ce:18:3d:d7:80:a2:4a:70:07:
96:77:e7:88:88:54:b1:6c:16:07:1d:d2:2d:1a:33:
9e:17:3c:34:cb:8a:df:df:cb:23:8a:89:64:ea:ae:
78:e2:14:37:96:ec:65:e4:45:18:cc:b9:83:83:d1:
30:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:60:9E:58:15:C5:2E:25:C9:DD:92:B9:4E:23:50:27:1B:43:B7:B3
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F46D3E561E8611EF8CA03D1CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.114.65.0-103.114.67.255
103.179.94.0-103.179.97.255
103.180.214.0/23
103.180.238.0/23
103.181.152.0/23
103.212.132.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:d3:c4:2b:ff:8b:f3:ce:c6:46:80:9a:e9:d7:53:12:e0:82:
6d:66:5a:6a:a3:c7:45:84:57:67:06:0a:94:89:8d:4c:27:58:
20:95:75:34:ae:26:64:a0:a9:c5:0f:88:00:c4:d1:06:0f:1c:
7a:a9:6c:8f:5b:cf:09:72:9f:79:18:55:29:21:bf:30:89:cd:
fc:60:bc:82:b3:14:2f:2c:de:ac:d2:c3:d2:45:3a:93:e9:dc:
b4:d1:56:89:62:e8:3e:1a:8c:71:b0:74:a8:b0:42:c5:96:69:
c1:de:9e:28:0a:58:ea:49:8c:a8:7a:79:ca:f8:01:f7:35:da:
76:0f:2d:d3:d0:8e:09:91:91:66:5f:c6:de:40:84:ae:f5:e0:
0a:9b:06:64:a0:6b:21:52:7d:de:4d:f1:85:ac:b4:53:34:15:
86:62:f8:e5:f4:7f:a6:0b:0a:53:59:68:11:aa:e1:a7:da:72:
5e:02:d6:6f:f8:a5:5e:87:f2:01:f4:54:b5:6c:db:3e:1b:17:
b2:cc:18:fb:f6:b0:34:b5:49:77:0a:d7:f9:b0:02:47:67:60:
e6:9c:37:80:86:e0:cf:a9:0a:4e:33:5f:d7:e1:f2:9e:cc:5a:
3a:f0:8a:a6:2f:ea:17:88:fa:5a:0f:e9:cc:32:6f:c9:87:f2:
8f:80:31:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:58:31 2025 by rpki-client