Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/06A899FECCF311EC86719729C4F9AE02.roa
File: 06A899FECCF311EC86719729C4F9AE02.roa (raw, json)
Hash identifier: aXuFAPx3sTT3XGxZkToSNXJ/vwo2rNiJs7Ikunvy7v4=
Subject key identifier: 97:98:02:BA:7D:7D:62:F3:EE:37:33:8E:4B:A8:EC:6B:18:7F:93:37
Certificate issuer: /CN=A91ED6B5/serialNumber=4117D76C3EC04B6211334850A5CD6EA30553505C
Certificate serial: 040B
Authority key identifier: 41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/06A899FECCF311EC86719729C4F9AE02.roa
Signing time: Mon 03 Feb 2025 00:34:43 +0000
ROA not before: Mon 03 Feb 2025 00:34:43 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 4764
IP address blocks: 203.24.73.0/24 maxlen: 24
203.32.71.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1035 (0x40b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ED6B5
Validity
Not Before: Feb 3 00:34:43 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=67a00f23-a2cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1d:dc:7a:61:87:12:8b:9e:48:da:23:52:96:
2b:09:04:20:22:fc:ce:a4:45:b9:2f:61:64:fa:e8:
b1:35:f6:66:32:91:02:ef:00:e2:17:dc:79:56:48:
a2:64:29:22:a0:0b:bf:72:49:44:a6:02:a4:f0:cb:
5a:3f:78:c6:24:0d:aa:1f:e5:b1:f4:6d:3a:99:5b:
cc:8e:8c:5d:9e:2e:fe:f2:b8:54:dd:d8:4c:66:14:
e3:60:9b:97:9e:f4:e2:ca:9c:30:e3:a2:ad:a0:5f:
7c:b7:39:ea:7f:05:b8:e7:8a:0f:07:03:d2:fe:dc:
70:90:40:2b:da:5a:39:b1:98:97:a8:fb:4c:a4:9b:
27:45:5d:c9:f3:a9:3d:0b:8a:9b:fc:91:1b:85:95:
49:85:0c:21:05:7c:ad:2a:2d:4a:ef:9a:10:d9:b5:
8b:e9:a6:0b:52:29:78:d4:ed:36:95:e9:52:43:ea:
bd:66:f2:71:48:bb:92:66:ed:ae:d0:f6:cf:44:22:
3b:0f:e4:35:31:94:26:ff:26:ca:37:7f:59:66:41:
11:40:40:1e:d0:ff:f2:ba:c8:2c:8f:4e:63:05:b3:
c4:7e:9d:c0:3e:7d:99:a3:73:dc:a5:4b:ab:2f:7c:
d9:ff:09:c9:e5:61:34:49:56:2e:5b:bd:bf:aa:2b:
e8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:98:02:BA:7D:7D:62:F3:EE:37:33:8E:4B:A8:EC:6B:18:7F:93:37
X509v3 Authority Key Identifier:
keyid:41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/06A899FECCF311EC86719729C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.24.73.0/24
203.32.71.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:b0:db:97:9e:ce:e1:20:7d:c1:9c:81:fe:0b:1f:7a:66:d9:
bc:64:ac:c2:5e:48:42:47:0f:d0:05:db:d5:8b:40:3f:97:ca:
f9:70:b1:d9:ed:99:f1:2b:36:c3:14:ab:37:09:12:7b:2f:0c:
0a:68:82:59:b0:d6:64:3d:4e:37:2e:e5:72:7f:11:70:b4:08:
2e:ed:78:f6:e8:1e:fe:db:50:f8:c9:94:3b:7f:fc:42:b1:ea:
ca:7d:e9:04:58:d8:fb:a8:59:a4:42:f7:b4:80:1b:8a:f5:37:
8e:3a:07:0c:9e:8e:e6:bd:f6:db:74:9b:d0:a8:83:15:70:48:
e2:55:2f:94:3a:a6:ad:02:93:29:10:0f:05:a1:cf:ee:c5:fd:
e4:dc:d7:4e:f2:b0:b7:32:3c:6d:7d:56:c8:2b:73:4b:8b:8e:
d6:26:b4:37:82:d0:01:eb:40:eb:3e:80:71:c1:0e:10:60:68:
61:56:75:84:0a:00:b6:56:e1:99:93:66:eb:09:7e:5c:6d:05:
02:b7:db:0b:3b:94:60:1e:a4:08:d8:90:1d:81:06:0d:31:1c:
e3:cb:21:b5:61:32:8b:6c:ad:af:09:41:8f:01:a6:04:ea:03:
62:2f:76:c3:f0:e5:da:d7:b8:92:64:9f:21:c2:cb:8e:02:22:
cc:60:d0:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:56:15 2025 by rpki-client