Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/1ECA8050696211EC8A05D115C4F9AE02.roa
File: 1ECA8050696211EC8A05D115C4F9AE02.roa (raw, json)
Hash identifier: TDJGQsW2NIk73+noi3yai+lnEcUS65iyjDduaFF8MsU=
Subject key identifier: 66:61:7B:57:7F:5A:5F:17:60:2F:65:72:78:70:42:36:1E:AB:50:2D
Certificate issuer: /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9
Certificate serial: 0BBF
Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/1ECA8050696211EC8A05D115C4F9AE02.roa
Signing time: Thu 10 Oct 2024 19:27:38 +0000
ROA not before: Thu 10 Oct 2024 19:27:38 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 59239
IP address blocks: 103.100.234.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3007 (0xbbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A45E0
Validity
Not Before: Oct 10 19:27:38 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=67082aaa-9806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ab:d7:26:6c:93:39:4a:66:90:c1:7b:d8:a6:
e7:32:01:4a:02:d7:aa:2a:31:94:73:5c:4d:9e:b6:
0f:ba:2f:53:5f:b9:d2:ac:87:20:6e:7c:d3:e9:c1:
3f:70:1f:98:66:35:c0:df:97:ce:aa:47:ad:7c:db:
ff:3d:95:34:b4:75:42:82:f7:0c:93:d4:c7:94:5a:
84:2a:c9:be:c2:9a:64:e1:98:d3:58:0e:92:2b:0c:
7f:ec:82:f0:e2:5d:ae:01:d6:c4:8d:11:13:d5:82:
fa:8a:e6:ca:83:04:1d:4d:78:c0:d0:d2:d5:0a:44:
1f:32:ce:d9:15:a4:9e:5c:3a:2f:3c:1a:a3:3c:cb:
85:d2:0a:ce:31:ae:95:70:67:07:e5:84:ea:1f:aa:
e4:d5:2b:0c:3c:f7:b2:bc:21:ff:83:a4:c3:ff:c2:
f1:48:39:68:f7:26:78:3a:2b:86:c5:f5:f2:34:75:
9f:4a:c7:24:fa:48:d1:6d:00:e0:ca:39:54:a8:00:
da:47:a2:28:8b:0c:99:8a:53:59:3a:d6:3f:cd:c2:
ff:c3:7b:bc:f7:b6:30:d4:34:ac:88:2d:c3:d3:a1:
56:21:33:68:05:ca:2f:a5:e8:45:68:37:33:37:28:
5c:87:7d:d1:09:bf:25:04:78:b9:5a:04:14:a5:61:
c5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:61:7B:57:7F:5A:5F:17:60:2F:65:72:78:70:42:36:1E:AB:50:2D
X509v3 Authority Key Identifier:
keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/1ECA8050696211EC8A05D115C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.234.0/24
Signature Algorithm: sha256WithRSAEncryption
44:7f:35:8b:71:33:a1:11:b4:da:6f:60:b8:6d:62:d8:c2:8c:
05:5e:aa:fb:61:3b:e9:e0:04:9c:cc:18:53:da:92:34:aa:76:
ed:c7:3b:5f:7e:72:28:39:b2:3e:d2:68:d4:4f:f7:8c:54:4a:
6e:f9:55:de:a1:80:52:aa:fd:cd:2c:3b:01:77:37:3e:b3:ca:
35:04:7c:ab:d2:b3:65:03:6b:38:ed:58:25:d7:be:a2:2c:12:
fc:c9:7d:76:0d:df:30:d7:ed:c1:49:df:8b:df:70:74:a6:ad:
d5:6f:65:cb:2e:9b:86:50:c9:fc:c3:78:00:f8:88:64:5d:88:
47:0e:27:24:b5:64:70:11:e0:21:f0:31:20:2f:8e:38:59:06:
74:52:58:57:22:60:fb:83:b5:5a:ca:cf:38:5f:04:ab:0b:49:
e3:37:f3:56:f9:30:d0:99:4b:5f:13:6a:fb:81:e7:b3:0e:02:
5e:ed:8c:c1:41:84:92:45:25:87:e0:85:8c:b3:61:4b:92:2d:
c4:7f:2a:10:9f:75:df:f4:95:73:6d:c2:35:31:aa:55:52:e1:
e0:27:60:a9:9d:f1:31:0d:56:4e:ba:1e:34:1b:04:fc:51:50:
9a:0d:82:c5:5e:7f:2a:c9:5f:e3:e8:df:ef:f7:26:bd:be:95:
f2:b0:6a:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:35:22 2025 by rpki-client