Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FA0BBE3CB2C411EFB264E25EC4F9AE02.roa
File: FA0BBE3CB2C411EFB264E25EC4F9AE02.roa (raw, json)
Hash identifier: Yc/OeA5yBzRiDP3bzK6my12G90BC1epbWf3Vqu4MP0w=
Subject key identifier: C1:53:F7:5C:95:C8:55:55:D4:65:14:CC:62:AC:E7:66:63:AE:48:F2
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 9EE1
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FA0BBE3CB2C411EFB264E25EC4F9AE02.roa
Signing time: Thu 12 Dec 2024 06:48:35 +0000
ROA not before: Thu 12 Dec 2024 06:48:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 137127
IP address blocks: 103.102.28.0/22 maxlen: 24
103.109.136.0/24 maxlen: 24
103.109.139.0/24 maxlen: 24
103.112.121.0/24 maxlen: 24
103.124.109.0/24 maxlen: 24
103.144.64.0/23 maxlen: 24
103.147.120.0/24 maxlen: 24
103.147.121.0/24 maxlen: 24
103.148.62.0/24 maxlen: 24
103.148.63.0/24 maxlen: 24
103.167.130.0/23 maxlen: 24
103.168.248.0/23 maxlen: 24
103.170.66.0/23 maxlen: 24
103.171.200.0/23 maxlen: 24
103.172.148.0/23 maxlen: 24
103.174.34.0/23 maxlen: 24
103.179.121.0/24 maxlen: 24
103.183.24.0/24 maxlen: 24
103.183.25.0/24 maxlen: 24
103.190.14.0/24 maxlen: 24
103.190.15.0/24 maxlen: 24
103.220.32.0/24 maxlen: 24
103.220.34.0/24 maxlen: 24
137.59.99.0/24 maxlen: 24
2001:df0:82c0::/48 maxlen: 48
2001:df0:e140::/48 maxlen: 48
2001:df1:25c0::/48 maxlen: 48
2400:9820::/32 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40673 (0x9ee1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Dec 12 06:48:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=675a8743-ddf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a1:16:e9:44:c3:08:f5:68:29:b8:7c:82:62:
f5:8c:bc:53:d9:8f:e1:ba:a2:8c:c5:11:ef:e8:9d:
d9:a4:73:e8:ef:3c:6a:b0:32:1e:23:4f:10:a1:c8:
d6:a0:db:be:6a:b3:81:85:10:a0:8c:2f:ad:cf:96:
e9:90:09:55:ed:7f:90:cc:d3:5c:5d:1a:a5:83:a5:
58:70:95:48:0b:8e:31:7d:7f:d3:64:13:d2:96:87:
d5:78:ac:10:ee:4d:c9:3f:48:03:80:f2:88:bc:11:
fe:2a:23:a2:b0:a4:52:f7:a7:9f:f4:2c:ce:c2:76:
fb:96:7b:c2:ba:f3:4f:fb:f7:fa:40:63:3e:25:05:
40:b0:86:03:2e:9c:18:9e:e9:10:b9:48:b2:bc:ce:
74:1b:ea:59:58:2b:21:b3:56:b0:31:83:d7:87:48:
e4:46:36:86:fb:2d:67:b5:4c:10:bb:c2:3c:46:27:
26:8e:39:a0:ee:0a:e5:1f:0c:1a:55:3f:e9:25:40:
5b:bf:4b:bd:c7:87:6b:c9:46:ff:15:3c:19:45:d5:
e4:f1:43:98:29:e3:cc:b2:a3:90:92:a5:06:04:21:
3a:33:38:89:25:36:2b:4d:7c:a1:0b:bb:ba:e2:a4:
16:60:9f:3d:22:9d:3a:32:4c:3c:dc:7d:3a:17:52:
f4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:53:F7:5C:95:C8:55:55:D4:65:14:CC:62:AC:E7:66:63:AE:48:F2
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FA0BBE3CB2C411EFB264E25EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.102.28.0/22
103.109.136.0/24
103.109.139.0/24
103.112.121.0/24
103.124.109.0/24
103.144.64.0/23
103.147.120.0/23
103.148.62.0/23
103.167.130.0/23
103.168.248.0/23
103.170.66.0/23
103.171.200.0/23
103.172.148.0/23
103.174.34.0/23
103.179.121.0/24
103.183.24.0/23
103.190.14.0/23
103.220.32.0/24
103.220.34.0/24
137.59.99.0/24
IPv6:
2001:df0:82c0::/48
2001:df0:e140::/48
2001:df1:25c0::/48
2400:9820::/32
Signature Algorithm: sha256WithRSAEncryption
6f:3d:19:95:36:59:f9:4d:b8:f9:69:3b:1e:14:d6:db:8e:52:
f8:46:af:25:7a:fb:29:61:0d:66:ef:8c:be:2e:9b:7b:41:cd:
88:a0:cc:ad:68:7a:25:57:6a:1a:14:05:a2:48:70:23:1f:3b:
45:65:0d:54:75:d3:4c:2e:94:d1:24:97:70:dd:ad:ff:ab:03:
32:7c:ac:c2:3c:af:fe:23:a8:5b:a5:6f:60:fe:5f:18:15:07:
8f:73:69:98:bf:c6:ed:c9:c4:fd:1d:70:ec:9d:76:6a:4a:d6:
34:e2:1a:5a:f3:d2:43:5e:6b:79:89:a2:17:a1:0e:a8:f3:57:
8d:17:ab:dc:37:8a:9d:46:8e:fa:02:e1:f4:5d:92:91:7b:84:
23:79:b1:f3:af:3c:11:08:32:4e:c6:d6:8a:4b:d8:2b:ba:f4:
e4:14:04:79:1c:5c:6c:1e:e9:c8:c1:72:fa:34:a5:63:e0:ea:
23:a3:1c:9e:e1:c4:c2:71:36:7b:c0:78:2f:02:4a:64:40:ab:
c3:fd:4b:05:35:eb:c3:7c:e3:c1:79:b3:b8:86:82:e2:a4:a4:
46:f9:14:cb:cc:a2:bf:fa:ee:07:fb:6b:4d:a0:15:33:95:46:
2b:78:0c:66:0f:b0:f6:5a:ac:a1:62:e1:18:cc:67:aa:76:e4:
a1:ef:60:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:24:55 2025 by rpki-client