Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/FA93793637C011EB97405947C4F9AE02.roa
File: FA93793637C011EB97405947C4F9AE02.roa (raw, json)
Hash identifier: mkvl6eYOBUcYWRwYiBwVS0K1wVeK5CC5TdYufIA/AfQ=
Subject key identifier: 0A:31:87:BC:B1:8F:4F:8A:55:00:A9:04:99:E6:53:B4:29:7C:62:4F
Certificate issuer: /CN=A9190491/serialNumber=5FC3E86DAE43531588EB015D501E3171205F0851
Certificate serial: 06B4
Authority key identifier: 5F:C3:E8:6D:AE:43:53:15:88:EB:01:5D:50:1E:31:71:20:5F:08:51
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8Poba5DUxWI6wFdUB4xcSBfCFE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/FA93793637C011EB97405947C4F9AE02.roa
Signing time: Tue 08 Oct 2024 22:31:20 +0000
ROA not before: Tue 08 Oct 2024 22:31:20 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 14413
IP address blocks: 103.20.92.0/22 maxlen: 24
2405:2300::/33 maxlen: 48
2405:2300:8000::/34 maxlen: 48
2405:2300:c000::/35 maxlen: 48
2405:2300:e000::/36 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1716 (0x6b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9190491
Validity
Not Before: Oct 8 22:31:20 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=6705b2b7-caa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fc:e6:94:5f:ac:8e:91:6c:75:d7:d7:9d:4d:
d0:1c:d5:35:b6:71:ef:21:f0:b0:e6:27:d9:f9:52:
9a:f3:d4:4f:bf:a8:ea:89:a8:c7:7e:60:84:5e:1b:
99:58:91:e8:30:a5:16:32:be:66:80:f1:d9:86:8d:
94:1d:8b:3d:36:03:41:b5:de:35:5d:29:39:e9:97:
ac:b1:49:f5:3a:c6:0b:22:79:fb:26:3e:da:a8:a5:
a1:bf:fb:ff:6e:b3:c3:bc:db:8e:35:f2:c0:e6:22:
94:93:a4:90:f8:6b:b3:34:19:5a:31:ca:36:af:bf:
11:bf:4c:74:17:b8:97:b5:7c:d8:d8:cf:78:a0:13:
3d:92:69:3a:71:8f:54:76:67:aa:b8:a3:85:02:ee:
bc:25:ba:f6:6b:57:6c:fc:00:a7:97:20:17:77:85:
ea:11:e3:3c:f3:0a:ce:4c:3e:19:e8:aa:d8:a5:b7:
9d:49:20:8e:07:6d:36:42:13:02:01:6c:8b:75:b5:
1f:e8:41:ba:8a:a4:0c:08:12:00:00:0f:20:90:d2:
eb:10:e5:7d:76:ca:2c:68:83:5f:63:29:cb:b8:4e:
31:19:2f:e0:a0:a8:35:5f:59:44:5c:0b:f8:bb:25:
5d:be:9b:b5:db:76:c8:b7:65:46:d3:10:70:49:31:
4c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:31:87:BC:B1:8F:4F:8A:55:00:A9:04:99:E6:53:B4:29:7C:62:4F
X509v3 Authority Key Identifier:
keyid:5F:C3:E8:6D:AE:43:53:15:88:EB:01:5D:50:1E:31:71:20:5F:08:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/X8Poba5DUxWI6wFdUB4xcSBfCFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8Poba5DUxWI6wFdUB4xcSBfCFE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/FA93793637C011EB97405947C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.20.92.0/22
IPv6:
2405:2300::-2405:2300:efff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
55:36:96:45:dc:69:97:41:4a:3b:44:e3:4e:e8:a5:2b:64:d8:
97:5a:d2:ad:ae:ce:cb:aa:3e:84:53:d5:5e:63:99:79:8c:4c:
1f:d8:94:9b:14:81:ee:4c:eb:62:b1:c3:3e:16:d1:4d:42:a6:
f9:6b:9e:01:60:6d:da:8f:51:2a:81:87:02:74:38:b4:f6:64:
1a:20:83:48:ae:30:a8:3b:d8:82:28:a2:c0:42:d8:af:5d:3d:
a4:ac:70:c0:a3:21:ad:67:a5:d2:7f:1f:14:b8:52:fb:12:98:
c3:cf:43:e3:74:4d:7b:bd:ea:99:1f:b3:0b:2c:b6:db:d7:b3:
99:bb:1c:dd:33:c7:fa:2e:1e:e3:5e:7b:ff:7c:c7:c4:25:5f:
76:74:15:1d:15:90:3f:ca:7e:60:8c:27:0d:bd:12:49:0b:b9:
d7:11:b2:a0:53:c2:0d:fe:ad:80:0b:0d:6e:9d:b9:83:c3:86:
10:bc:fa:db:73:e4:39:66:5f:7e:7e:11:6d:a9:6f:51:f9:ee:
86:29:58:d6:3e:56:9b:62:9b:aa:b2:21:98:24:d8:44:b3:ba:
5f:56:33:8e:db:e7:35:d0:6f:36:cd:a6:9b:63:5b:07:1b:97:
ec:ec:57:b9:e9:b5:4b:2a:8a:d6:33:4e:e2:21:3a:99:bd:d6:
a2:c7:50:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:22:49 2025 by rpki-client