Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/168BE8747EEE11ECAB036C59C4F9AE02.roa
File: 168BE8747EEE11ECAB036C59C4F9AE02.roa (raw, json)
Hash identifier: ftvhnzXdw5KRVDKn9LZuR/Je36inLhxCbKOybLuc7M4=
Subject key identifier: 40:88:44:98:32:ED:DD:A4:48:83:76:22:49:5B:5D:85:7C:49:9C:DE
Certificate issuer: /CN=A91FDAD4/serialNumber=5430A414AA05B6731DC2D64A70C619C669346A0E
Certificate serial: 03FA
Authority key identifier: 54:30:A4:14:AA:05:B6:73:1D:C2:D6:4A:70:C6:19:C6:69:34:6A:0E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VDCkFKoFtnMdwtZKcMYZxmk0ag4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/168BE8747EEE11ECAB036C59C4F9AE02.roa
Signing time: Thu 13 Feb 2025 02:13:43 +0000
ROA not before: Thu 13 Feb 2025 02:13:43 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 149440
IP address blocks: 103.179.142.0/24 maxlen: 24
103.179.143.0/24 maxlen: 24
223.165.6.0/24 maxlen: 24
2400:8d60:1::/48 maxlen: 48
2400:8d60:2::/48 maxlen: 48
2400:8d60:3::/48 maxlen: 48
2400:8d60:4::/48 maxlen: 48
2400:8d60:5::/48 maxlen: 48
2400:8d60:6::/48 maxlen: 48
2400:8d60:7::/48 maxlen: 48
2400:8d60:8::/48 maxlen: 48
2400:8d60:9::/48 maxlen: 48
2400:8d60:10::/48 maxlen: 48
2400:8d60:11::/48 maxlen: 48
2400:8d60:12::/48 maxlen: 48
2400:8d60:13::/48 maxlen: 48
2400:8d60:14::/48 maxlen: 48
2400:8d60:15::/48 maxlen: 48
2400:8d60:16::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1018 (0x3fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FDAD4
Validity
Not Before: Feb 13 02:13:43 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67ad5557-4a2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:58:f1:5a:64:df:6f:44:75:4a:9b:d0:e2:83:
d9:90:5b:e3:e0:30:b3:12:d4:13:85:71:da:78:7f:
ee:88:18:d4:b5:fa:37:39:a1:37:0a:27:ee:95:2d:
03:79:a6:94:c6:ba:ec:b5:9e:1e:4b:7a:24:8c:bc:
fe:54:96:62:81:88:27:0a:c1:34:b9:be:e5:4f:d8:
47:29:19:ac:0c:6b:44:67:f9:4c:7e:71:5a:61:1a:
62:ee:39:f8:8c:60:c0:5d:da:0c:d2:38:dc:5b:e3:
7c:de:7a:a5:8a:6b:72:fa:47:55:a1:8e:0a:95:ed:
e8:68:20:16:9e:76:ed:25:4c:43:96:4f:d4:d2:89:
bd:96:4b:bd:55:d6:79:b8:3b:32:50:fd:17:38:95:
4a:86:f9:2c:3a:ed:9f:6f:68:bf:68:3f:b4:9e:53:
c5:4a:03:f5:22:82:72:23:37:0d:4c:fa:ee:fc:48:
d4:f5:7e:ef:fa:01:28:49:7a:63:cd:1c:90:a4:ab:
ae:f3:90:50:db:b5:ee:97:b4:9a:bc:f6:c1:9b:89:
fa:5a:cf:82:d8:77:be:0f:35:0b:b6:e0:ed:5e:58:
da:6a:67:ae:60:91:49:52:c6:3d:ff:42:3e:0c:3c:
b7:47:69:b1:b1:96:92:40:19:45:67:fc:78:21:22:
72:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:88:44:98:32:ED:DD:A4:48:83:76:22:49:5B:5D:85:7C:49:9C:DE
X509v3 Authority Key Identifier:
keyid:54:30:A4:14:AA:05:B6:73:1D:C2:D6:4A:70:C6:19:C6:69:34:6A:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/VDCkFKoFtnMdwtZKcMYZxmk0ag4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VDCkFKoFtnMdwtZKcMYZxmk0ag4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/168BE8747EEE11ECAB036C59C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.179.142.0/23
223.165.6.0/24
IPv6:
2400:8d60:1::-2400:8d60:9:ffff:ffff:ffff:ffff:ffff
2400:8d60:10::-2400:8d60:16:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
33:27:45:83:70:6f:f5:ef:c5:4d:52:a1:f3:4e:70:b3:e4:c9:
01:99:80:81:dc:6d:9a:4f:ac:75:07:a9:4a:6f:8d:87:90:65:
24:29:f8:a3:66:9e:19:63:dc:4f:b4:49:43:9d:ca:04:b0:6d:
29:e7:76:74:3c:9b:96:d3:66:76:af:13:5d:dd:6e:a8:15:a3:
5d:cd:2b:01:cd:dd:15:6d:9c:57:da:72:1c:03:33:6b:38:be:
77:58:1a:db:ae:77:94:9d:50:1a:ef:20:54:3b:28:c2:17:07:
5b:a1:1d:9f:01:3c:a2:01:a0:d1:ee:f0:fc:47:29:bd:af:a7:
ae:9a:1a:47:e4:33:e8:6c:08:ed:9e:a7:fe:d1:4c:bd:d8:45:
98:37:54:7e:dd:45:f1:d6:c8:74:b0:de:d8:21:55:78:7b:95:
1d:fc:5f:1d:7f:f5:64:c5:14:0a:4f:63:03:e4:50:86:f8:e2:
7e:22:a0:f2:07:4b:a5:4a:c6:28:1d:3d:61:67:17:f0:cc:2e:
22:4e:18:d2:aa:89:8a:97:28:25:52:ce:d9:f5:75:47:f8:98:
44:2b:c8:8f:d6:dd:95:dc:e6:c8:4c:5e:98:28:08:14:ee:94:
46:cc:1e:7e:58:63:61:e3:21:d2:62:57:10:70:ae:49:4b:34:
79:a9:37:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:48:47 2025 by rpki-client