Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/69A7319C4F7311E988A75B37C4F9AE02.roa
File: 69A7319C4F7311E988A75B37C4F9AE02.roa (raw, json)
Hash identifier: sUKjaugG8gMNtNrmEougacrEWZeMLjYKQpUMh/WLNxo=
Subject key identifier: 3A:EA:B1:C3:6A:50:ED:CC:28:FB:F6:07:69:13:85:81:E0:56:13:97
Certificate issuer: /CN=A91D3794/serialNumber=30E589288EB65002510C877B466ABE19753BDBCE
Certificate serial: 214F
Authority key identifier: 30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/69A7319C4F7311E988A75B37C4F9AE02.roa
Signing time: Thu 30 Jan 2025 16:03:29 +0000
ROA not before: Thu 30 Jan 2025 16:03:29 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 38719
IP address blocks: 27.54.80.0/20 maxlen: 24
27.111.81.0/24 maxlen: 24
27.111.82.0/23 maxlen: 24
27.111.86.0/24 maxlen: 24
27.111.88.0/23 maxlen: 24
27.111.92.0/22 maxlen: 22
27.123.24.0/21 maxlen: 24
27.124.112.0/20 maxlen: 24
43.245.52.0/22 maxlen: 24
43.250.248.0/22 maxlen: 24
103.250.212.0/22 maxlen: 24
103.253.193.0/24 maxlen: 24
103.254.136.0/22 maxlen: 22
103.254.136.0/24 maxlen: 24
103.254.137.0/24 maxlen: 24
103.254.138.0/24 maxlen: 24
103.254.139.0/24 maxlen: 24
112.109.74.0/24 maxlen: 24
112.109.81.0/24 maxlen: 24
112.109.82.0/23 maxlen: 24
112.109.84.0/24 maxlen: 24
116.0.16.0/21 maxlen: 24
119.47.112.0/22 maxlen: 24
119.47.117.0/24 maxlen: 24
119.47.118.0/23 maxlen: 24
119.47.122.0/23 maxlen: 24
119.47.124.0/24 maxlen: 24
163.47.72.0/22 maxlen: 22
163.47.72.0/24 maxlen: 24
163.47.73.0/24 maxlen: 24
163.47.74.0/24 maxlen: 24
163.47.75.0/24 maxlen: 24
202.174.80.0/24 maxlen: 24
203.17.36.0/24 maxlen: 24
203.26.41.0/24 maxlen: 24
203.28.48.0/23 maxlen: 24
203.28.50.0/24 maxlen: 24
203.170.80.0/21 maxlen: 24
2400:6d80::/32 maxlen: 48
2407:4c00::/32 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8527 (0x214f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D3794
Validity
Not Before: Jan 30 16:03:29 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=679ba2d1-0318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f7:9a:12:33:b3:a6:da:61:12:92:73:87:f8:
a1:eb:d0:82:6d:4f:9f:34:34:f5:4b:60:02:3f:a5:
47:9b:70:57:01:22:ab:78:2f:d7:5c:79:68:b6:37:
28:2c:47:00:16:37:98:1a:f8:62:5f:48:df:7a:7f:
6f:e7:b6:ed:8b:96:e3:f7:69:99:65:d5:84:51:1a:
7f:29:47:52:92:ee:b8:93:ca:94:5f:27:26:59:2d:
b6:6d:19:95:cb:9f:1b:c8:ba:04:1e:23:13:23:43:
ef:c5:eb:e9:4f:c2:f9:b9:96:f3:16:7e:e4:f4:53:
71:9f:39:8a:3e:52:66:75:02:77:81:09:a9:2e:01:
1e:1c:d3:5e:2a:3d:b4:38:16:3c:d2:1c:21:a3:5b:
5e:c8:6f:12:1f:0f:23:81:ce:5e:84:f5:70:f1:12:
00:b7:c4:cd:6f:0e:2c:1f:32:c6:58:5a:be:d6:2f:
35:ee:c3:b1:dc:a9:84:0f:32:7b:5f:03:e2:96:fb:
a1:8e:f8:47:8d:e0:c1:4a:04:66:7b:7e:06:ac:d8:
38:96:d1:b9:a6:86:0d:7b:8e:bb:70:68:58:fd:c9:
e3:ae:6e:17:83:ad:3d:e6:05:90:9c:d8:17:78:79:
bf:38:4e:12:a3:08:f1:2b:9f:0d:ec:10:14:04:a8:
17:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:EA:B1:C3:6A:50:ED:CC:28:FB:F6:07:69:13:85:81:E0:56:13:97
X509v3 Authority Key Identifier:
keyid:30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/69A7319C4F7311E988A75B37C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.54.80.0/20
27.111.81.0-27.111.83.255
27.111.86.0/24
27.111.88.0/23
27.111.92.0/22
27.123.24.0/21
27.124.112.0/20
43.245.52.0/22
43.250.248.0/22
103.250.212.0/22
103.253.193.0/24
103.254.136.0/22
112.109.74.0/24
112.109.81.0-112.109.84.255
116.0.16.0/21
119.47.112.0/22
119.47.117.0-119.47.119.255
119.47.122.0-119.47.124.255
163.47.72.0/22
202.174.80.0/24
203.17.36.0/24
203.26.41.0/24
203.28.48.0-203.28.50.255
203.170.80.0/21
IPv6:
2400:6d80::/32
2407:4c00::/32
Signature Algorithm: sha256WithRSAEncryption
47:b3:e4:a2:40:5a:7c:f6:1b:03:af:74:2a:96:28:5d:b6:6b:
f1:41:7d:5d:90:b1:70:fd:b7:91:23:c2:d0:9e:0f:cb:5b:a6:
09:1b:78:43:00:54:e8:7e:33:6c:37:e5:af:df:db:7e:8a:1c:
65:d8:38:ef:e8:35:0b:a2:b6:fc:94:12:85:bd:ab:8e:77:23:
3f:f5:e7:bb:6e:30:92:e7:64:6a:81:5c:40:02:ff:02:08:c4:
3f:6a:e7:7e:d9:35:af:40:06:e8:d6:eb:ca:d7:9e:21:b4:1c:
61:cf:20:a0:b7:43:a8:35:9d:de:74:01:7b:54:86:3c:17:25:
b7:a8:47:d4:47:89:a4:8d:3f:3b:59:bd:ca:dd:fd:d6:e0:59:
22:1a:b0:0d:cc:d2:e4:5a:fd:78:c6:3d:88:78:52:1c:06:5f:
17:28:3c:de:24:a5:2b:82:e8:38:e0:d2:bf:bc:72:49:ac:04:
35:b6:90:f4:8b:48:50:f1:9d:49:4f:7f:b4:91:02:79:7a:ec:
ca:6d:88:e7:c5:1a:4a:be:9c:d2:80:37:ed:d5:a8:db:e3:71:
b7:b8:a6:b1:9d:17:6b:6f:ba:6e:cd:f5:8d:18:aa:d4:07:60:
3c:1c:dc:55:b3:54:7f:f3:1d:80:51:1c:6e:2f:e2:ce:87:31:
af:e9:69:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:20:36 2025 by rpki-client