Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/2B596C1EB6E711ECB2B1CF38C4F9AE02.roa
File: 2B596C1EB6E711ECB2B1CF38C4F9AE02.roa (raw, json)
Hash identifier: kgIOPu7kXXZcaLnjb+ZEps4tL4yCPm0pTP02tsKB7gw=
Subject key identifier: 73:6E:0C:35:49:8E:53:7D:7E:DE:91:79:48:1A:6F:2A:83:72:1C:40
Certificate issuer: /CN=A91900BF/serialNumber=28EA1557B99E2B127551CD340C3AAF4C0A61006B
Certificate serial: 016A
Authority key identifier: 28:EA:15:57:B9:9E:2B:12:75:51:CD:34:0C:3A:AF:4C:0A:61:00:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOoVV7meKxJ1Uc00DDqvTAphAGs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/2B596C1EB6E711ECB2B1CF38C4F9AE02.roa
Signing time: Sun 16 Oct 2022 03:33:02 +0000
ROA not before: Sun 16 Oct 2022 03:33:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149768
IP address blocks: 103.186.6.0/23 maxlen: 24
2400:6be0::/32 maxlen: 36
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 362 (0x16a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91900BF
Validity
Not Before: Oct 16 03:33:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=634b7b6d-5ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5a:82:af:c9:3e:fd:ec:9c:d7:79:35:9a:e1:
48:35:a0:ac:30:33:c5:7f:3d:77:02:86:d9:be:0a:
bd:5a:0c:57:da:f0:3c:8c:82:9b:37:05:77:b9:0b:
a5:6f:1a:60:33:61:e7:54:96:d1:1b:e5:72:81:6a:
55:c4:fb:ae:70:67:99:48:0c:b8:21:8c:2c:b7:ae:
83:65:50:23:3e:3c:6d:bb:90:aa:f9:b8:7a:78:eb:
07:e4:d3:38:24:01:38:e7:2d:c9:b5:3f:cb:ca:37:
db:1e:4c:ba:b8:2c:21:4e:4f:e7:c9:8a:a1:c2:7a:
2b:8b:de:e0:03:76:53:2e:01:cd:ec:4f:cd:79:5c:
82:0d:81:35:e1:b9:64:4d:3f:cc:b1:a6:e2:5b:c5:
d9:06:83:1c:b2:14:69:59:92:d2:59:1b:57:73:c8:
77:97:bd:bb:e9:f7:68:b9:50:0d:15:04:9c:87:1a:
bb:cd:e7:18:a5:77:53:b3:72:a6:97:d2:c4:12:32:
2c:9e:9a:96:7e:7d:f2:7e:5f:43:17:c7:d1:ce:dc:
85:25:d3:cd:b6:a8:8a:17:fe:af:dd:06:21:aa:ba:
09:3c:86:16:d4:f6:06:1c:ab:06:aa:ba:2e:c2:7b:
c4:53:ec:a0:ba:97:28:af:7a:cd:96:72:30:7a:ee:
cf:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:6E:0C:35:49:8E:53:7D:7E:DE:91:79:48:1A:6F:2A:83:72:1C:40
X509v3 Authority Key Identifier:
keyid:28:EA:15:57:B9:9E:2B:12:75:51:CD:34:0C:3A:AF:4C:0A:61:00:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/KOoVV7meKxJ1Uc00DDqvTAphAGs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOoVV7meKxJ1Uc00DDqvTAphAGs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/2B596C1EB6E711ECB2B1CF38C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.6.0/23
IPv6:
2400:6be0::/32
Signature Algorithm: sha256WithRSAEncryption
00:a2:27:15:38:cc:f3:f9:33:96:b3:fb:76:bc:19:bc:12:81:
fb:63:f9:e6:4d:4d:57:58:79:12:8d:0f:b6:79:e7:35:80:73:
e1:8f:32:b6:88:9c:3c:50:c5:9b:c9:f3:ee:a1:3a:81:15:1a:
47:d4:55:1d:f2:01:ca:cb:ae:42:76:53:f0:bb:8b:2f:3d:e6:
0f:e9:5d:03:2c:51:1f:cd:38:b7:16:22:b0:6b:2b:3e:d3:b0:
22:bd:04:22:68:ba:78:76:f1:ad:30:18:12:15:a4:d2:d6:c1:
cb:88:d0:d1:2c:fa:99:a1:2a:f2:1a:87:09:a0:f1:13:61:33:
e9:78:0f:53:01:bc:63:f3:9e:cc:65:98:9f:36:07:9c:9b:af:
8a:26:18:86:83:9b:2c:d0:3f:6a:17:96:5e:8f:7e:cf:b5:88:
d0:dd:81:f9:cf:ae:e2:5b:7f:3f:8f:f4:81:e0:8c:2d:0f:92:
29:25:2c:91:2e:69:46:11:39:c4:ab:ef:98:c4:c6:b8:00:e2:
64:6a:b0:07:68:f2:e0:77:b6:c3:d5:6f:22:fc:8f:8c:7f:c9:
ca:91:e3:32:57:8a:7f:43:02:b4:75:ec:27:44:60:69:79:04:
a8:50:d3:e7:ce:39:37:fc:d9:bc:33:6e:d5:9a:18:38:f3:fb:
82:2f:19:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:32:15 2025 by rpki-client