Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/7B6E2FFCC60411EB91B61B82C4F9AE02.roa
File: 7B6E2FFCC60411EB91B61B82C4F9AE02.roa (raw, json)
Hash identifier: hHxODX4MXn5oTLMVEfIj6Z8I7buUyrwNSLt469MYLzc=
Subject key identifier: 2B:B9:C4:03:DC:B5:F5:01:FC:62:29:8E:90:5C:C8:B9:94:16:82:35
Certificate issuer: /CN=A91B5418/serialNumber=6B5EBFE98A378764C1B12DCB6904E4610B50AC57
Certificate serial: 0B36
Authority key identifier: 6B:5E:BF:E9:8A:37:87:64:C1:B1:2D:CB:69:04:E4:61:0B:50:AC:57
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a16_6Yo3h2TBsS3LaQTkYQtQrFc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/7B6E2FFCC60411EB91B61B82C4F9AE02.roa
Signing time: Sun 14 May 2023 20:10:33 +0000
ROA not before: Sun 14 May 2023 20:10:33 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 138925
IP address blocks: 103.137.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2870 (0xb36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5418
Validity
Not Before: May 14 20:10:33 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=64614039-af22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:92:94:cd:a5:2e:d2:16:86:ed:6f:e0:e4:e3:
4a:b3:1b:35:05:92:b9:c9:b1:7b:7f:50:99:12:d0:
0a:0d:eb:96:b9:6b:ad:17:2a:67:2e:77:21:62:e2:
da:c9:34:0a:c3:e9:7d:e3:bf:74:93:92:da:b8:5f:
dd:95:cd:9c:00:b3:0b:f2:61:41:de:55:f3:dc:20:
8b:91:a2:14:d3:ca:43:43:1f:89:f2:77:3c:b4:7a:
40:6e:08:8d:41:aa:46:a0:ea:d5:c9:7f:e7:d4:52:
9a:c9:b8:18:0f:0b:7d:5d:f3:39:0e:d3:f8:8e:ec:
8a:64:23:d5:fe:a2:65:1c:c2:32:d2:1f:c8:04:4f:
54:65:e7:82:90:6c:3b:a8:f1:e5:03:c1:70:64:ba:
50:9c:63:48:b2:71:38:f3:3c:ad:4e:64:c7:32:77:
41:ff:3d:8b:11:4f:c2:1e:15:42:83:0d:d2:c9:90:
a2:14:de:ce:53:72:5d:94:8e:ab:32:35:d3:e6:fd:
44:c9:6c:64:03:ef:3d:29:fb:2a:b1:93:d7:81:fe:
74:64:e4:0c:11:e0:80:7a:a7:0d:da:28:17:e0:84:
78:8d:b0:d0:88:d6:68:b5:52:d6:dc:64:1d:0b:97:
91:25:ee:e0:96:63:88:80:85:de:f1:93:76:a9:cd:
02:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:B9:C4:03:DC:B5:F5:01:FC:62:29:8E:90:5C:C8:B9:94:16:82:35
X509v3 Authority Key Identifier:
keyid:6B:5E:BF:E9:8A:37:87:64:C1:B1:2D:CB:69:04:E4:61:0B:50:AC:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/a16_6Yo3h2TBsS3LaQTkYQtQrFc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a16_6Yo3h2TBsS3LaQTkYQtQrFc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/7B6E2FFCC60411EB91B61B82C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.74.0/24
Signature Algorithm: sha256WithRSAEncryption
61:2c:02:87:58:39:a8:bf:4e:ac:72:b2:96:44:80:60:6d:04:
e3:42:75:02:82:35:dd:0b:1c:9a:2f:14:c6:81:4e:fd:e7:96:
93:e8:7a:54:b7:d5:b7:93:df:9e:bb:67:7f:ef:39:a5:83:46:
37:fb:55:6f:40:85:b3:c6:b6:9d:85:39:31:56:a4:e2:3e:74:
fd:f4:b2:89:50:ff:e6:42:81:a7:af:58:27:b2:b4:dc:44:b2:
6e:9e:e2:80:a2:44:81:12:cb:21:60:64:da:c5:ca:97:36:09:
9d:84:e8:37:7a:44:39:76:f0:7c:f8:ef:13:1e:d5:39:03:95:
a7:bb:55:bd:07:61:1e:00:2c:7f:ee:26:0a:75:f2:64:10:1d:
dd:39:8b:9e:98:b0:37:b9:2b:a4:43:d5:53:1e:e3:79:34:10:
7d:77:7e:03:33:a7:7d:06:08:d5:31:22:ed:0f:3e:ac:a3:83:
74:1c:15:45:77:19:dc:b2:04:ab:1b:82:ea:2d:15:6a:ba:a4:
23:f2:2c:98:2f:ab:50:f4:6e:04:3f:06:df:3f:10:74:c4:c9:
13:99:25:c6:bc:91:f5:51:ab:8d:9d:46:85:86:73:69:bc:f1:
ba:b6:92:d2:88:be:54:d3:9a:95:57:b3:f7:ec:45:4a:72:0a:
70:df:a5:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:24:53 2025 by rpki-client