Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/1ADC81F6F04F11EF8618AB1AC4F9AE02.roa
File: 1ADC81F6F04F11EF8618AB1AC4F9AE02.roa (raw, json)
Hash identifier: L9vrr7TmTOs+Hmc1r0kvt1GfHauvFvScRj+Vbd+wz8k=
Subject key identifier: 99:C0:7A:B3:64:C7:AD:98:40:DD:CF:17:1A:14:4E:A9:13:5B:F7:2D
Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Certificate serial: 35DB
Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/1ADC81F6F04F11EF8618AB1AC4F9AE02.roa
Signing time: Fri 21 Feb 2025 12:26:41 +0000
ROA not before: Fri 21 Feb 2025 12:26:41 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 329007
IP address blocks: 116.90.100.0/24 maxlen: 24
116.90.105.0/24 maxlen: 24
116.90.115.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13787 (0x35db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5D7E
Validity
Not Before: Feb 21 12:26:41 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67b87101-bc2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:88:a1:27:da:30:d5:9f:cf:c1:f2:51:ce:b0:
b1:39:e3:ae:00:c1:68:fe:5c:40:71:eb:51:a8:5e:
3b:0b:fc:d8:22:89:21:ab:2b:f1:df:b5:fd:8f:60:
fa:aa:6b:5c:b6:84:28:27:c3:1b:37:38:10:2c:9c:
18:0d:ef:10:9b:b4:c3:01:76:01:6b:f1:56:77:7e:
5d:8d:49:e1:be:70:c2:cd:aa:7b:4e:2e:b7:b2:0a:
a8:0b:38:b7:56:58:4d:b8:e7:e0:be:ab:46:bb:86:
0b:18:b6:eb:2c:20:ee:b1:41:f1:23:7b:0c:15:e5:
d3:d7:f1:95:0e:64:df:d3:41:0f:d2:11:13:9d:92:
db:aa:f0:89:4c:87:65:63:35:46:d0:e2:46:e5:83:
ed:e1:5a:2c:8b:fb:d2:ba:4c:65:a2:6e:0b:31:1d:
35:80:83:d8:a8:25:03:b1:ce:04:71:eb:c9:bf:09:
32:0f:de:1b:b2:15:99:3d:92:27:cb:36:6b:f2:dc:
67:53:33:4f:3b:51:73:9c:67:c8:ea:4d:3b:5f:af:
df:48:0a:e7:75:37:65:4c:38:b7:00:c2:1b:8d:6d:
ad:91:94:8f:40:c6:b6:cd:52:31:42:c0:07:31:03:
0b:17:4f:bf:56:69:cd:19:a8:c5:17:b8:7d:b0:72:
f8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:C0:7A:B3:64:C7:AD:98:40:DD:CF:17:1A:14:4E:A9:13:5B:F7:2D
X509v3 Authority Key Identifier:
keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/1ADC81F6F04F11EF8618AB1AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.90.100.0/24
116.90.105.0/24
116.90.115.0/24
Signature Algorithm: sha256WithRSAEncryption
44:5d:25:ae:a6:66:41:c3:3f:26:dd:60:3c:aa:e4:0b:80:0d:
d5:66:bb:53:16:32:37:60:c0:56:79:fd:07:1e:9b:6f:24:20:
da:d4:bb:05:02:cb:80:f7:7c:eb:db:3a:25:68:e4:af:9e:86:
8b:bd:5a:9e:25:b6:70:17:70:21:85:f9:4a:4c:ee:a5:f8:d9:
74:e0:e5:2a:7e:7b:0d:76:b5:32:a2:99:1a:ad:d5:6f:ad:57:
e0:f1:65:b9:c3:69:25:9d:14:81:e0:bc:7d:11:89:53:f5:79:
b2:03:99:15:da:45:5e:2b:82:fd:64:f2:0f:09:c0:e8:44:91:
15:c4:02:22:0d:f8:21:54:fa:b6:b9:ca:59:3b:c2:7a:72:e2:
f0:6e:5c:4d:ee:30:fb:27:d1:51:1f:81:13:22:84:1d:91:1e:
e5:10:a2:d8:19:15:3e:80:da:65:8b:f2:26:44:6d:67:43:ea:
2e:b5:f5:01:ed:a0:e9:28:73:4c:51:8d:92:b7:27:ba:db:93:
0f:50:c2:2b:a2:3e:21:e6:41:21:6b:79:81:1d:43:e4:eb:6d:
79:77:55:09:3c:0b:ae:5e:28:ab:4a:24:52:59:b0:5d:ed:f7:
e7:b6:e9:90:c2:73:91:99:95:eb:76:b8:72:55:61:a9:57:5d:
1a:2d:8e:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:42:45 2025 by rpki-client