Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/76C782CC836811E9B8830935C4F9AE02.roa
File: 76C782CC836811E9B8830935C4F9AE02.roa (raw, json)
Hash identifier: S6BUVTLFR5ykemKBBu8dE6BaxtUQEDDw3K/csPghGJc=
Subject key identifier: E1:84:2C:6B:05:53:68:89:10:D9:D9:25:43:BC:73:94:D9:17:7C:15
Certificate issuer: /CN=A91D58EC/serialNumber=731E27E12FB3DB0B6CCC0B20F186809BA08D0915
Certificate serial: 0EBC
Authority key identifier: 73:1E:27:E1:2F:B3:DB:0B:6C:CC:0B:20:F1:86:80:9B:A0:8D:09:15
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx4n4S-z2wtszAsg8YaAm6CNCRU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/76C782CC836811E9B8830935C4F9AE02.roa
Signing time: Thu 30 Jan 2025 20:39:15 +0000
ROA not before: Thu 30 Jan 2025 20:39:15 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 64073
IP address blocks: 14.102.98.0/23 maxlen: 24
103.139.184.0/23 maxlen: 24
103.250.88.0/22 maxlen: 24
163.47.128.0/22 maxlen: 24
202.179.140.0/22 maxlen: 24
2404:e940::/32 maxlen: 32
2407:8b00::/32 maxlen: 32
2407:8b00::/36 maxlen: 36
2407:8b00:1::/48 maxlen: 48
2407:8b00:1000::/36 maxlen: 36
2407:8b00:1160::/43 maxlen: 43
2407:8b00:1162::/48 maxlen: 48
2407:8b00:2000::/36 maxlen: 36
2407:8b00:3000::/36 maxlen: 36
2407:8b00:9000::/36 maxlen: 36
2407:8b00:c003::/48 maxlen: 48
2407:8b00:f000::/36 maxlen: 36
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3772 (0xebc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D58EC
Validity
Not Before: Jan 30 20:39:15 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=679be373-8efb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ad:22:fd:1c:d8:2a:cf:7b:59:6c:5f:91:b8:
bf:b9:f4:31:dd:ae:9a:a9:2c:3c:be:1a:e2:de:23:
c9:80:90:69:a1:95:f7:c7:bb:18:5c:a5:6b:5c:bf:
55:34:6e:c0:c9:37:7c:e2:2a:e8:ef:2a:67:a1:6c:
60:63:2c:e8:fe:f2:a1:c8:c0:22:b7:90:4f:76:51:
09:7a:3d:86:f2:ee:54:2c:cf:d7:65:c3:e3:f0:58:
74:00:54:56:ce:98:4f:fb:a5:b4:fe:0d:f6:0e:0d:
67:35:ea:4f:d1:bd:4e:0b:8c:7b:d5:d7:89:a9:52:
7b:65:ac:f2:91:b8:11:b9:d2:ca:61:1c:6d:8d:80:
90:0b:59:d3:a9:85:bf:60:b2:ac:52:1a:f8:e4:f6:
29:9f:a5:e7:b9:40:39:12:ae:61:63:de:34:27:7e:
ff:46:16:f6:bb:52:aa:3a:f7:08:39:a2:19:4f:59:
c3:e3:18:2e:0f:ff:4c:4a:f1:11:3b:83:59:1c:1c:
53:91:89:fb:3a:60:0b:14:3d:34:38:fd:75:e9:8f:
a3:39:a7:42:92:1c:2c:28:67:b1:0a:ff:2e:00:58:
fb:7c:44:39:e9:d8:b1:f9:04:5c:08:b2:40:fa:c3:
5a:79:5c:c8:a8:b4:67:a1:de:8a:74:1d:d8:c2:b0:
e8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:84:2C:6B:05:53:68:89:10:D9:D9:25:43:BC:73:94:D9:17:7C:15
X509v3 Authority Key Identifier:
keyid:73:1E:27:E1:2F:B3:DB:0B:6C:CC:0B:20:F1:86:80:9B:A0:8D:09:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/cx4n4S-z2wtszAsg8YaAm6CNCRU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx4n4S-z2wtszAsg8YaAm6CNCRU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/76C782CC836811E9B8830935C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.102.98.0/23
103.139.184.0/23
103.250.88.0/22
163.47.128.0/22
202.179.140.0/22
IPv6:
2404:e940::/32
2407:8b00::/32
Signature Algorithm: sha256WithRSAEncryption
37:d1:eb:f8:c9:16:f8:02:38:5a:e2:1f:4d:17:7c:32:67:e2:
d6:77:fc:e4:fc:ce:6c:7c:88:1c:68:de:bc:f1:23:46:ed:51:
90:54:f1:03:82:85:b3:9b:56:bd:58:75:29:9a:da:ad:3d:df:
34:67:82:00:f8:3b:99:37:46:29:4c:76:b6:5a:bf:a1:45:ae:
28:a6:18:73:91:f2:44:54:5a:47:f8:b3:22:1f:58:98:8f:99:
fc:77:43:b9:17:d0:60:1b:55:e9:d3:33:fb:f4:69:68:18:3d:
1d:f6:da:d0:d4:90:7e:f5:d3:d8:01:c0:59:21:32:e6:0d:21:
c0:e2:de:1d:60:66:2f:70:b7:b7:6d:8c:b2:91:89:ec:5c:14:
fd:d3:99:e2:f9:66:17:ca:19:d2:ae:d3:4b:37:d1:e9:c6:21:
3b:e9:71:c1:9f:16:8c:57:ae:61:8f:b9:9d:b4:59:3b:7c:b9:
aa:69:4b:ba:e3:df:49:1a:93:9e:64:c5:98:02:8d:88:72:01:
66:78:b0:6c:f0:ae:24:9e:ec:cf:ff:50:1f:62:9e:16:37:64:
ff:17:0f:33:03:57:31:6e:ac:26:de:a3:f1:24:59:a7:85:e9:
8d:a4:d6:7c:32:01:f9:1e:a0:47:61:20:b3:65:0c:17:b7:dc:
3b:56:97:c2
-----BEGIN CERTIFICATE-----
MIIFnzCCBIegAwIBAgICDrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDU4RUMxMTAvBgNVBAUTKDczMUUyN0UxMkZCM0RCMEI2Q0NDMEIyMEYxODY4MDlC
QTA4RDA5MTUwHhcNMjUwMTMwMjAzOTE1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzliZTM3My04ZWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3K0i/RzYKs97WWxfkbi/ufQx3a6aqSw8vhri3iPJgJBpoZX3x7sYXKVrXL9V
NG7AyTd84iro7ypnoWxgYyzo/vKhyMAit5BPdlEJej2G8u5ULM/XZcPj8Fh0AFRW
zphP+6W0/g32Dg1nNepP0b1OC4x71deJqVJ7ZazykbgRudLKYRxtjYCQC1nTqYW/
YLKsUhr45PYpn6XnuUA5Eq5hY940J37/Rhb2u1KqOvcIOaIZT1nD4xguD/9MSvER
O4NZHBxTkYn7OmALFD00OP116Y+jOadCkhwsKGexCv8uAFj7fEQ56dix+QRcCLJA
+sNaeVzIqLRnod6KdB3YwrDoEwIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFOGELGsF
U2iJENnZJUO8c5TZF3wVMB8GA1UdIwQYMBaAFHMeJ+Evs9sLbMwLIPGGgJugjQkV
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENThFQy9BRjUwQTBFODgz
NjcxMUU5ODQ0Mzc3MzRDNEY5QUUwMi9jeDRuNFMtejJ3dHN6QXNnOFlhQW02Q05D
UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2N4NG40Uy16Mnd0c3pBc2c4WWFBbTZDTkNSVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RDU4RUMvQUY1MEEwRTg4MzY3MTFFOTg0NDM3NzM0QzRGOUFFMDIvNzZDNzgyQ0M4
MzY4MTFFOUI4ODMwOTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E
PjA8MCQEAgABMB4DBAEOZmIDBAFni7gDBAJn+lgDBAKjL4ADBALKs4wwFAQCAAIw
DgMFACQE6UADBQAkB4sAMA0GCSqGSIb3DQEBCwUAA4IBAQA30ev4yRb4Ajha4h9N
F3wyZ+LWd/zk/M5sfIgcaN688SNG7VGQVPEDgoWzm1a9WHUpmtqtPd80Z4IA+DuZ
N0YpTHa2Wr+hRa4ophhzkfJEVFpH+LMiH1iYj5n8d0O5F9BgG1Xp0zP79GloGD0d
9trQ1JB+9dPYAcBZITLmDSHA4t4dYGYvcLe3bYyykYnsXBT905ni+WYXyhnSrtNL
N9HpxiE76XHBnxaMV65hj7mdtFk7fLmqaUu6499JGpOeZMWYAo2IcgFmeLBs8K4k
nuzP/1AfYp4WN2T/Fw8zA1cxbqwm3qPxJFmnhemNpNZ8MgH5HqBHYSCzZQwXt9w7
VpfC
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:36:43 2025 by rpki-client