Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FC183FA2D17D11EF84323B26C4F9AE02.roa
File: FC183FA2D17D11EF84323B26C4F9AE02.roa (raw, json)
Hash identifier: vvUZAWWY29w6AGJI5vUDFic7PLiSW9Ue8wgzZOGUTQM=
Subject key identifier: B6:A5:36:46:5E:B4:3A:3B:50:D5:B2:41:E1:7F:0F:69:EB:69:21:F4
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: A2A0
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FC183FA2D17D11EF84323B26C4F9AE02.roa
Signing time: Mon 13 Jan 2025 11:33:10 +0000
ROA not before: Mon 13 Jan 2025 11:33:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 135834
IP address blocks: 103.80.116.0/22 maxlen: 24
103.91.86.0/24 maxlen: 24
103.91.120.0/22 maxlen: 24
103.102.119.0/24 maxlen: 24
103.102.144.0/23 maxlen: 24
103.171.209.0/24 maxlen: 24
103.181.7.0/24 maxlen: 24
103.185.244.0/24 maxlen: 24
103.185.245.0/24 maxlen: 24
103.228.9.0/24 maxlen: 24
2401:93c0::/48 maxlen: 48
2401:93c0:1::/48 maxlen: 48
2401:93c0:2::/48 maxlen: 48
2401:93c0:3::/48 maxlen: 48
2401:93c0:4::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41632 (0xa2a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Jan 13 11:33:10 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6784f9f6-db25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:dc:4a:f9:78:55:17:52:c1:d8:40:7a:e9:31:
18:3b:30:fb:61:97:9a:e0:f0:4a:96:e1:de:d8:62:
e3:e9:16:f0:c2:13:2b:2a:b8:4d:b9:e6:37:71:a1:
38:1f:78:54:33:86:ff:f5:77:7f:c8:a0:29:f9:79:
e8:a3:b8:1f:cb:07:b3:38:f4:61:5a:80:d2:a4:6e:
66:e3:01:3c:2d:83:c1:eb:9c:1d:4f:77:3a:c2:e1:
68:43:db:9f:05:6c:ed:1a:9f:fb:3c:e4:65:81:95:
e9:db:40:20:24:69:91:64:5c:64:25:1a:94:0e:32:
ec:09:03:ee:31:67:7a:bc:92:b8:51:8c:55:6a:85:
da:eb:0e:0c:8e:2e:13:8d:69:cf:4f:ae:99:41:ea:
a5:df:36:19:ec:2b:9e:d6:22:f1:3d:1e:a4:f9:b4:
6e:68:fb:99:fe:e1:fa:38:93:23:10:c8:7b:50:be:
37:5b:63:77:d2:4e:22:fe:4a:8d:f8:76:32:f3:c4:
93:54:63:1e:30:90:c9:21:78:f0:09:c1:23:ca:e9:
a1:65:06:7c:95:f0:67:7d:fd:7a:3a:7f:83:e3:9f:
e7:99:bb:6a:72:bf:e3:27:9f:9c:13:ad:63:14:ff:
e5:f1:d1:e9:34:1a:2a:db:5f:26:f2:62:f9:05:c3:
d9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A5:36:46:5E:B4:3A:3B:50:D5:B2:41:E1:7F:0F:69:EB:69:21:F4
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FC183FA2D17D11EF84323B26C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.80.116.0/22
103.91.86.0/24
103.91.120.0/22
103.102.119.0/24
103.102.144.0/23
103.171.209.0/24
103.181.7.0/24
103.185.244.0/23
103.228.9.0/24
IPv6:
2401:93c0::-2401:93c0:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
9b:64:44:6b:8f:3c:08:af:4a:09:bf:1b:8e:00:70:8b:b8:93:
a1:50:83:90:30:b4:27:5f:08:bc:62:07:69:8d:86:06:ea:99:
1e:8a:b5:e4:84:ae:f5:79:75:11:45:14:cb:fc:84:bb:3b:69:
be:24:8c:f2:8d:bf:26:76:e1:95:02:66:1a:ce:27:2d:90:cf:
15:41:bf:fe:02:db:09:47:07:c4:c2:d9:09:a7:09:df:16:26:
2f:a9:7f:34:cb:99:2d:7f:34:9e:76:5c:f6:27:f7:d1:bb:1d:
ac:bc:3e:67:1e:3f:6d:00:86:b9:e2:3c:00:93:0e:58:db:53:
7f:4e:1d:1f:ee:34:9e:5b:2c:3e:f9:78:d8:c4:03:dd:4f:24:
53:d9:f2:fb:54:8c:d9:93:cc:9f:b7:5a:d9:f5:57:ab:f4:c2:
22:9a:67:96:68:fc:59:06:a9:2c:ff:d8:1d:7b:3b:83:68:0f:
32:b6:f6:c3:f1:cd:3c:99:07:0a:32:ed:bf:b4:7d:df:98:64:
ad:e7:d7:78:12:72:8f:0b:d2:6d:6a:09:eb:65:44:5e:bd:ed:
00:79:dc:cc:9e:07:2f:ad:74:b8:f0:eb:d1:2d:9e:e7:11:0e:
1e:ba:42:d7:6b:87:2b:77:c5:40:e7:a8:fb:90:ee:5b:5f:c6:
7c:8b:35:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:00:42 2025 by rpki-client