Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/191363A69DD911EC99D91668C4F9AE02.roa
File: 191363A69DD911EC99D91668C4F9AE02.roa (raw, json)
Hash identifier: oqniAucPfqcKV0mTFTmt9sxkwi/yyX2GOXb0nYNRsyI=
Subject key identifier: 23:98:D8:4C:22:A3:D8:34:5E:1F:33:8F:6A:A4:5A:FA:22:94:09:E5
Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81
Certificate serial: 1AB7
Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/191363A69DD911EC99D91668C4F9AE02.roa
Signing time: Mon 24 Mar 2025 14:50:37 +0000
ROA not before: Mon 24 Mar 2025 14:50:37 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 3938
IP address blocks: 116.51.22.176/28 maxlen: 28
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6839 (0x1ab7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6D5D
Validity
Not Before: Mar 24 14:50:37 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67e1713d-7956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:c8:0c:cb:ad:be:96:eb:34:64:27:32:d0:c8:
bd:8a:2a:79:fe:ad:db:72:50:45:46:ca:78:13:b1:
a5:fb:e3:c0:0f:65:a3:e0:53:62:13:60:b8:da:9e:
e5:7c:d9:fe:0f:9a:71:90:5c:a1:38:e4:46:65:f7:
8d:49:f5:f4:a7:6c:4b:25:e2:1e:da:37:1c:e3:9f:
6c:51:d1:f2:57:b6:fc:1c:24:a8:e5:5e:ab:be:01:
1c:b7:1f:53:d0:27:3e:1f:61:f2:27:52:91:38:ee:
02:59:6c:1b:e1:e0:78:08:ac:9a:e4:bd:eb:94:90:
69:0c:66:66:01:f2:2e:26:f3:c2:0d:b6:63:96:1a:
be:2d:3b:c2:4b:7f:d6:99:c3:db:cd:87:86:5e:cd:
f6:a4:2c:64:2f:5f:25:cd:92:08:c6:00:ae:7f:9f:
bf:ac:b5:a9:b8:42:ce:9e:2d:4c:73:31:67:66:b0:
c7:ea:ac:e7:19:2c:c6:ae:ef:4a:57:c1:c2:b7:90:
1b:64:aa:af:2f:ff:8d:68:cc:66:90:c1:4e:e0:ca:
59:92:66:e0:c0:8a:f4:23:a2:46:44:79:70:ae:74:
af:51:b3:13:15:b1:c2:e4:3e:09:6d:45:b9:93:ec:
8c:c3:13:71:b6:aa:09:c6:77:2c:68:04:40:32:cb:
fd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:98:D8:4C:22:A3:D8:34:5E:1F:33:8F:6A:A4:5A:FA:22:94:09:E5
X509v3 Authority Key Identifier:
keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/191363A69DD911EC99D91668C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.51.22.176/28
Signature Algorithm: sha256WithRSAEncryption
25:db:64:6e:0e:ed:91:58:c6:c2:5c:db:12:39:0d:e2:3d:2d:
6a:6f:50:9f:f1:eb:80:a5:2d:62:ce:1b:40:c7:53:73:37:5f:
ad:83:c4:86:e7:13:c8:96:88:9c:f5:83:fa:b3:bf:f4:e7:81:
1f:06:ee:3c:5e:2a:c9:60:54:96:ed:2a:58:e3:49:0a:46:c5:
fe:84:74:9d:be:ad:cb:48:08:dd:f1:66:59:a4:f7:ca:8e:65:
d9:5b:60:a2:a8:94:ff:f1:98:72:5f:14:80:36:7f:1b:47:bc:
dd:6d:3b:5d:a8:50:19:f3:16:98:bc:ca:17:d9:7e:fe:3a:3c:
f6:a3:71:82:b9:67:1c:d5:22:b6:c3:14:60:01:7f:7f:7a:20:
69:ef:84:c3:72:61:65:47:77:eb:d1:27:9a:6f:b1:83:a4:ab:
d8:7c:18:0a:01:09:4c:3c:88:68:2d:00:e3:d0:d2:72:b3:35:
5c:49:64:ee:24:b7:e2:9f:0e:d6:2e:f3:e5:fd:df:d4:6c:20:
23:0a:6b:ab:b9:0c:ed:15:9e:c2:5f:f9:ac:1c:2c:65:76:2e:
a1:27:20:df:2d:ed:f0:40:28:1d:a1:ea:9b:45:f1:c0:6d:65:
ef:96:b6:e1:d5:42:9b:8d:d5:fb:ec:08:20:9d:ac:9f:84:c9:
e6:c2:cb:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:26:38 2025 by rpki-client