Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/6722D08898C711ED81343D33C4F9AE02.roa
File: 6722D08898C711ED81343D33C4F9AE02.roa (raw, json)
Hash identifier: 3o5e8hyJbXp/j4htRJibyxHdp4yx/meEymWjr2xFXpw=
Subject key identifier: EB:9B:1F:96:EF:5A:55:C9:39:6A:CC:F6:7B:C2:76:DD:4A:72:C9:7A
Certificate issuer: /CN=A91E9004/serialNumber=25CA44C10EA592E42B136E59D08F6751D1818FAB
Certificate serial: 017D
Authority key identifier: 25:CA:44:C1:0E:A5:92:E4:2B:13:6E:59:D0:8F:67:51:D1:81:8F:AB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/6722D08898C711ED81343D33C4F9AE02.roa
Signing time: Wed 15 Jan 2025 02:28:48 +0000
ROA not before: Wed 15 Jan 2025 02:28:48 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 58678
IP address blocks: 103.61.224.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 381 (0x17d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E9004
Validity
Not Before: Jan 15 02:28:48 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67871d5f-67fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:38:6f:63:27:a0:ac:e2:f4:da:ba:05:b9:7c:
46:c6:bb:ac:02:58:92:f0:de:8e:43:ba:80:34:75:
78:94:51:30:05:62:2c:4a:69:2d:61:33:2d:44:17:
db:22:83:f9:bd:80:7b:1b:4b:d6:b9:c7:f1:9a:68:
f8:79:bb:93:33:8c:62:9b:0a:50:73:b7:94:b3:eb:
c1:74:86:6d:f3:cb:da:77:de:f2:df:e7:ee:21:12:
af:67:c7:9a:fa:f3:8a:6b:54:df:d3:a7:84:b6:24:
68:4e:3c:31:f3:c4:d4:24:49:55:15:64:4c:51:f1:
a2:ec:1f:bb:a4:05:a8:80:57:3a:28:2a:90:39:b0:
db:3d:1a:99:e7:0f:a6:ff:26:92:94:59:54:c9:18:
74:65:29:a3:e9:b5:a2:2d:5b:aa:74:61:af:c8:0e:
e7:95:a3:d0:3b:02:94:ce:3c:c4:3d:d2:42:4d:d7:
b2:e4:ba:a2:f6:d2:57:c0:91:f7:e8:cf:5e:b9:fc:
4c:2a:de:91:2c:87:99:4c:1b:38:02:1b:c5:79:90:
36:6f:af:40:ba:da:ed:af:82:21:67:d2:23:dc:aa:
08:0d:ea:d0:a1:82:3a:93:7b:ca:e8:b6:73:5b:d3:
66:c6:cf:d8:03:d6:e2:c7:7b:ac:7b:7f:99:8c:ee:
38:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:9B:1F:96:EF:5A:55:C9:39:6A:CC:F6:7B:C2:76:DD:4A:72:C9:7A
X509v3 Authority Key Identifier:
keyid:25:CA:44:C1:0E:A5:92:E4:2B:13:6E:59:D0:8F:67:51:D1:81:8F:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/6722D08898C711ED81343D33C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.61.224.0/23
Signature Algorithm: sha256WithRSAEncryption
99:e4:ca:a0:5c:82:7c:5e:2e:73:e1:5a:7a:6c:6b:ab:f0:ca:
a4:7a:bc:97:d7:57:4f:38:de:3e:d4:a4:62:00:1c:df:86:87:
9d:9c:e8:70:5c:2e:d0:75:80:69:13:52:96:74:f4:f0:31:de:
4a:8c:7f:f2:9e:07:88:69:51:f7:94:06:81:d7:42:8a:9e:e6:
8f:a8:e4:e8:60:8d:17:a8:76:10:ee:fe:1a:31:1b:0a:0c:9a:
64:d0:74:b0:d0:8a:96:7e:7f:be:be:01:fb:dc:59:4b:b5:1e:
0a:74:bc:ca:68:fd:52:66:c2:0a:4b:35:ee:3e:5c:2a:be:48:
81:e0:4b:5d:5b:70:f5:6b:0a:06:5c:58:1f:e7:1b:4e:27:41:
a9:5b:83:e5:35:4b:1c:99:d9:8d:ef:c8:f4:e4:d0:7a:bd:25:
f1:40:9e:3a:40:c8:b3:41:f5:bb:09:c0:3a:8f:e0:f5:a2:3b:
9b:05:64:6e:40:85:33:30:f5:7a:c8:dc:8c:58:10:5e:f1:b8:
b8:cd:e5:28:38:1a:b1:4a:8f:40:d9:3e:d4:d1:2a:4b:6a:98:
0b:d7:7e:8b:2f:22:01:f2:f2:77:c8:f9:fd:da:aa:f9:2e:d5:
d1:bf:2b:59:db:bf:f2:5c:de:8e:8c:4f:13:5b:b0:b0:19:bf:
53:19:f0:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:26:30 2025 by rpki-client