Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa
File: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (raw, json)
Hash identifier: Tcq182MtoqsdyOozDsgfHLvUMXaT5QP5utPDgkahfpk=
Subject key identifier: 0F:35:BB:6E:66:8D:1C:CF:02:B3:03:B7:75:4A:60:F6:64:D6:F4:D0
Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6
Certificate serial: 04A6
Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa
Signing time: Wed 17 Jul 2024 01:02:27 +0000
ROA not before: Wed 17 Jul 2024 01:02:27 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 142300
IP address blocks: 103.167.162.0/24 maxlen: 24
103.167.163.0/24 maxlen: 24
2001:df6:b980::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1190 (0x4a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C17A9
Validity
Not Before: Jul 17 01:02:27 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66971823-e14b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:0b:e9:3f:e7:23:7a:80:1b:3b:d9:b5:19:67:
72:ea:ab:ea:ea:7a:21:dc:36:8c:0d:e7:9b:5e:87:
3f:4b:96:ad:a2:dc:06:b9:14:0d:f4:ea:92:d8:73:
d1:26:69:90:29:6f:1f:fd:7b:eb:56:1c:32:d7:38:
7b:73:7e:4b:d2:14:3d:6b:cd:73:9f:ea:94:d9:94:
1c:2b:b2:1a:64:56:6b:9e:bf:8b:f9:51:d5:f6:4f:
8a:63:df:2f:ff:6c:18:f9:ae:4d:48:e0:39:f2:57:
e1:c9:bb:71:d4:ca:e3:e1:8b:06:49:4f:dc:5c:94:
2b:31:1f:86:e8:6c:73:43:68:06:24:14:8d:40:73:
ad:5e:9a:aa:9c:38:f6:ec:18:66:5a:85:b5:65:ea:
56:e5:55:86:9f:33:86:35:7a:88:eb:b3:cd:75:9e:
0d:89:7b:fa:eb:b1:75:b9:5e:06:38:bc:3a:bb:86:
64:ae:79:c3:d8:b1:91:d6:fd:87:51:aa:a3:9a:a3:
03:0d:89:07:0e:4d:66:ba:cc:32:69:05:2f:0e:cd:
41:1b:65:bf:5c:91:3e:a2:72:e0:46:a6:5c:2c:30:
0d:ff:6a:85:0b:ea:b1:5a:c0:c0:ad:7b:ed:60:66:
07:d8:a9:0c:e4:64:88:fd:90:b8:61:fb:da:2c:6d:
54:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:35:BB:6E:66:8D:1C:CF:02:B3:03:B7:75:4A:60:F6:64:D6:F4:D0
X509v3 Authority Key Identifier:
keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.167.162.0/23
IPv6:
2001:df6:b980::/48
Signature Algorithm: sha256WithRSAEncryption
99:57:92:61:0e:53:5c:33:43:29:36:29:a8:92:8a:a8:3b:ca:
f4:62:7f:37:f3:08:83:50:a2:5c:99:eb:43:ab:43:9c:bf:29:
c9:70:91:88:e3:06:47:0d:ee:07:8a:a6:e9:a4:24:25:2b:5e:
7e:fc:e7:a3:a2:18:0f:30:91:83:cb:7c:d8:a7:69:64:16:ba:
89:ad:5a:19:ae:e0:a6:d9:dc:46:f0:c2:87:b5:db:aa:fa:99:
69:62:ef:be:4f:fd:ee:00:9f:c1:6a:15:74:a7:5f:f1:de:40:
d7:1f:20:70:38:b9:6d:a7:e0:ed:52:c9:a4:59:1b:b7:fd:17:
34:b8:19:a5:a8:b9:6d:f8:75:ca:fa:c4:6a:f7:77:c4:15:5f:
cf:82:4c:a8:ce:39:50:1b:60:b1:fa:f7:bb:84:ce:1b:18:84:
5a:00:55:ab:53:56:d7:08:87:90:28:9b:10:38:9a:02:75:bf:
e1:b4:b4:f7:98:8f:21:26:0b:f0:c6:60:e3:8e:12:c8:49:38:
ce:0d:0b:7f:f2:3f:cb:68:9b:e3:5c:74:a8:98:c4:ec:76:05:
69:3d:c9:cb:7b:b7:96:97:a5:73:30:c0:83:74:81:2d:85:35:
96:7a:43:10:77:ab:4a:26:09:39:af:6e:b5:34:74:47:ec:1d:
af:ef:6c:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:26:19 2025 by rpki-client